Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/RUMSW6C4CtBmXToCiyD-aEEGubA.roa
File: RUMSW6C4CtBmXToCiyD-aEEGubA.roa (raw, json)
Hash identifier: FQJVu9J6CEdRqVt+Ojjc9sfGoeQAogZoxlXsdIaMfrw=
Subject key identifier: 45:43:12:5B:A0:B8:0A:D0:66:5D:3A:02:8B:20:FE:68:41:06:B9:B0
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B24446AA0D1A896194B6FF19EF0AD
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/RUMSW6C4CtBmXToCiyD-aEEGubA.roa
Signing time: Sun 01 Jan 2023 18:14:50 +0000
ROA not before: Sun 01 Jan 2023 18:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 192.144.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:24:44:6a:a0:d1:a8:96:19:4b:6f:f1:9e:f0:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4543125ba0b80ad0665d3a028b20fe684106b9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:31:7c:ca:eb:fd:21:73:36:93:4b:6a:66:cf:
2b:c5:c0:b6:3c:c0:22:e9:0e:06:a5:2b:01:f1:02:
47:3d:95:23:a7:16:0f:1b:5d:31:09:15:ce:ad:79:
7b:91:f3:2a:d1:fd:ad:83:5f:4a:20:10:72:20:bb:
e8:38:13:dd:78:14:21:ad:67:a9:3b:42:b8:db:c8:
5e:5b:4d:5d:2e:db:96:6d:b9:f2:1c:0b:a6:0c:e7:
28:44:6c:b5:f6:85:e8:cb:f8:4b:34:71:54:c1:9d:
63:6d:df:8f:4f:dc:26:2e:43:7b:22:20:fc:ba:0e:
74:7b:89:9e:65:e5:54:f5:c0:b8:f4:3f:33:26:cd:
66:0e:f8:55:ec:49:61:65:bb:fb:4a:05:5c:dc:2b:
12:57:6d:e4:47:1e:55:3f:ff:60:6e:8a:66:01:72:
81:17:95:02:03:98:86:dc:24:8b:6d:80:a1:7b:90:
d6:83:4a:2c:a1:d8:17:ed:88:cb:da:30:23:16:80:
68:a2:95:12:b9:09:19:ad:4e:d9:3f:60:be:e4:cc:
9d:1f:b2:7f:0f:3f:2b:1a:30:7c:ed:f0:ca:2b:d7:
77:27:db:04:4b:e6:72:b9:a6:6a:f8:1a:e2:06:07:
46:f8:73:89:ac:ea:7a:3c:63:4d:48:b9:aa:a3:15:
ea:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:43:12:5B:A0:B8:0A:D0:66:5D:3A:02:8B:20:FE:68:41:06:B9:B0
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/RUMSW6C4CtBmXToCiyD-aEEGubA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:33:17:a6:6b:e9:03:d5:be:a3:af:5f:1b:3c:dd:0b:7d:88:
4e:58:b0:0e:18:07:ce:da:ad:43:d6:f2:a2:05:2b:e9:93:0c:
ef:4b:0a:37:63:54:37:87:8a:c0:25:5b:68:58:8b:5a:5c:38:
03:f9:36:42:61:54:88:19:ba:4e:84:70:15:31:2d:65:5f:88:
d4:44:a1:d2:dd:78:3d:29:2e:c3:09:c4:15:19:c1:7d:72:82:
cb:73:59:1f:07:3e:6c:03:d4:85:14:3e:0b:c1:b4:5f:37:1f:
41:21:43:7d:e9:61:9c:6a:6f:40:ff:80:f2:26:c4:5a:59:4b:
e9:68:85:e4:df:30:1d:66:28:d0:0f:27:10:d2:aa:0e:59:67:
56:4a:3c:fd:9a:94:eb:e4:7f:3f:e1:e0:d8:bb:26:db:fc:a5:
76:e5:6d:d6:10:b8:4f:e5:ea:2a:69:3b:bb:14:9f:eb:ef:3e:
83:33:48:c2:17:6a:cf:8a:26:0a:69:85:86:5d:f0:99:ac:ce:
10:72:8d:1c:50:05:c3:cd:45:e7:34:f5:af:d9:25:7d:94:ae:
38:20:ff:72:42:38:c3:2f:61:73:f6:f2:36:57:8f:0f:c2:9b:
81:5a:86:2f:3b:df:8e:9a:5a:f4:1b:5b:c0:45:e0:83:95:54:
79:c5:2a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 1 11:23:09 2023 by rpki-client on console-ams.rpki-client.org