Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/U81W9ioFjXbO-etTOZZNx_dxw08.roa
File: U81W9ioFjXbO-etTOZZNx_dxw08.roa (raw, json)
Hash identifier: Li9GTkl8GneakwvNUG+AxU0cslEzUzvRDfCmJ0obbq0=
Subject key identifier: 53:CD:56:F6:2A:05:8D:76:CE:F9:EB:53:39:96:4D:C7:F7:71:C3:4F
Certificate issuer: /CN=ed476a7486b785451293571126c5f9da3ec485d8
Certificate serial: 018570672CA887EB65665B35A65A5C02E399
Authority key identifier: ED:47:6A:74:86:B7:85:45:12:93:57:11:26:C5:F9:DA:3E:C4:85:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7UdqdIa3hUUSk1cRJsX52j7Ehdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/U81W9ioFjXbO-etTOZZNx_dxw08.roa
Signing time: Mon 02 Jan 2023 02:54:47 +0000
ROA not before: Mon 02 Jan 2023 02:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2119
IP address blocks: 193.160.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:2c:a8:87:eb:65:66:5b:35:a6:5a:5c:02:e3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed476a7486b785451293571126c5f9da3ec485d8
Validity
Not Before: Jan 2 02:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53cd56f62a058d76cef9eb5339964dc7f771c34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e0:78:c8:d3:d7:77:b3:cc:94:3c:93:1c:26:
09:43:0c:7e:2c:b2:8c:67:83:22:5e:88:dd:0f:23:
a5:fd:95:be:6b:01:39:63:a5:f0:86:de:ca:88:ab:
ce:7b:56:3e:ba:e0:bb:f4:00:cc:29:0a:42:57:f7:
32:11:99:6d:c2:16:a9:0b:25:d1:bf:35:9b:c6:b0:
b1:d4:4a:7b:9b:28:a6:33:1a:00:2e:1c:81:9d:6b:
55:c9:d8:80:12:fc:05:c4:93:06:68:83:73:7e:22:
ec:8e:3f:38:67:53:9a:4e:8f:70:1a:07:b0:d5:38:
a8:31:c2:3c:f2:f1:29:5f:6a:d6:37:db:f0:b0:4d:
4d:46:cf:48:3b:e1:11:1c:96:48:54:ba:2c:a2:ee:
b9:8a:58:6e:08:ba:9e:e7:17:be:6d:fb:41:89:c7:
c4:2a:bf:90:b7:79:5f:24:e0:28:05:17:b3:45:00:
a9:88:cf:0f:56:a1:be:05:0d:38:c7:4e:29:00:b6:
57:34:80:0c:c5:16:8c:2e:c1:a4:06:11:dd:8c:14:
f3:87:87:c7:82:2c:33:ff:36:80:cc:1d:19:e1:d3:
19:40:c0:ad:c5:29:e3:d6:07:23:ec:a1:2a:fc:bb:
84:77:8c:d0:e6:cb:ce:3e:ca:35:6c:9b:96:db:06:
5a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CD:56:F6:2A:05:8D:76:CE:F9:EB:53:39:96:4D:C7:F7:71:C3:4F
X509v3 Authority Key Identifier:
keyid:ED:47:6A:74:86:B7:85:45:12:93:57:11:26:C5:F9:DA:3E:C4:85:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7UdqdIa3hUUSk1cRJsX52j7Ehdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/U81W9ioFjXbO-etTOZZNx_dxw08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/7UdqdIa3hUUSk1cRJsX52j7Ehdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.28.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:8e:89:e7:61:40:0a:88:ff:46:ba:81:9e:35:d3:09:c3:28:
14:fe:01:9d:3c:03:8b:d6:7d:fa:5d:ea:d3:0a:bb:fc:87:de:
1c:0e:a2:16:d4:b7:13:1a:15:e2:d3:41:94:16:ca:2f:db:41:
90:04:8e:08:b3:e5:d4:2f:52:28:80:6e:9c:4f:3d:15:5d:1e:
69:b7:c3:19:95:a0:52:65:bd:2a:58:ac:83:a4:ac:28:1c:dc:
f2:d2:51:30:be:b5:27:9f:f2:67:6c:90:3e:46:03:c2:dc:69:
26:1c:53:64:22:58:64:ce:b5:65:bf:cf:f2:90:a2:80:c0:fd:
28:c2:20:b1:39:07:df:11:d3:c9:33:5a:91:26:d6:f1:44:18:
d6:18:24:77:b2:53:f3:f0:56:4c:f4:fe:2e:cb:cd:f2:ae:12:
64:12:79:46:88:ef:a5:db:ba:07:56:8d:64:1b:18:78:c3:83:
97:97:9c:a7:56:93:47:9f:49:e5:48:7d:be:a6:1f:7c:21:66:
fa:9a:62:a1:c5:c1:8c:18:9a:b3:f0:fc:4f:c0:13:ef:46:04:
3b:56:9b:df:87:14:1a:de:00:cf:0d:b9:71:c9:e0:d2:2c:08:
7c:e4:47:bb:14:ec:fd:65:01:2e:e6:56:5a:14:2b:89:03:98:
3f:98:aa:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:09 2024 by rpki-client on console-ams.rpki-client.org