Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fcfd8c-8871-4d6a-b4a5-d65b654c99c5/1/uWsOuqQxZ6Dh2skOiRFpaeWpDD8.roa
File: uWsOuqQxZ6Dh2skOiRFpaeWpDD8.roa (raw, json)
Hash identifier: wahlOM3zOlS1PJeeuw4uAsJnj1LNPhVRQCIlJQCIY8g=
Subject key identifier: B9:6B:0E:BA:A4:31:67:A0:E1:DA:C9:0E:89:11:69:69:E5:A9:0C:3F
Certificate issuer: /CN=2e7d6f55a13b001e7401f40eaaaeb82f67bd422e
Certificate serial: 01857039934873F43C69FB244FDAB566B0B4
Authority key identifier: 2E:7D:6F:55:A1:3B:00:1E:74:01:F4:0E:AA:AE:B8:2F:67:BD:42:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ln1vVaE7AB50AfQOqq64L2e9Qi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fcfd8c-8871-4d6a-b4a5-d65b654c99c5/1/uWsOuqQxZ6Dh2skOiRFpaeWpDD8.roa
Signing time: Mon 02 Jan 2023 02:04:59 +0000
ROA not before: Mon 02 Jan 2023 02:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28824
IP address blocks: 46.250.192.0/19 maxlen: 24
213.162.224.0/19 maxlen: 24
185.115.244.0/22 maxlen: 24
2001:4da8::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:93:48:73:f4:3c:69:fb:24:4f:da:b5:66:b0:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e7d6f55a13b001e7401f40eaaaeb82f67bd422e
Validity
Not Before: Jan 2 02:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b96b0ebaa43167a0e1dac90e89116969e5a90c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:22:de:18:a2:6a:4e:e2:8e:ff:a8:08:74:d9:
d2:df:df:30:de:57:f4:b4:07:d6:3e:4a:a3:36:5a:
d6:63:ce:dd:6f:22:97:a1:c5:ff:93:ca:c8:ab:af:
12:d3:0b:a1:d6:b4:56:07:69:67:a5:16:58:ca:93:
06:b8:22:0b:84:ef:d4:e3:f3:c5:3d:be:1c:1f:fe:
af:b2:e7:d2:fc:3d:e1:02:e5:ee:e3:5e:70:3d:f6:
d6:ef:49:c0:83:38:8f:20:a0:74:ef:58:03:c0:05:
09:fd:d5:ef:6c:d8:8b:d1:b5:68:63:d0:3d:a3:20:
85:ab:b8:4d:d1:a0:83:fd:4a:52:f4:0a:be:25:66:
57:d2:61:bd:08:7a:9e:e0:26:63:af:c6:08:3d:e2:
fb:19:33:d4:06:9f:cc:6f:0a:7d:7b:93:fd:9d:c0:
dd:89:43:f3:c3:49:fb:31:95:8c:08:70:2c:5d:9b:
ca:16:62:9f:5d:df:03:d7:29:22:be:84:c9:93:ab:
92:89:c9:e7:15:70:b0:ec:04:39:7b:69:24:12:3f:
82:a3:0a:8b:c6:de:ad:44:f4:d6:c5:8d:6f:fc:4b:
50:4e:1e:62:aa:df:8e:a7:41:3f:67:05:13:c0:16:
ce:12:4e:39:a5:48:31:91:c8:cf:93:f9:13:66:06:
45:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6B:0E:BA:A4:31:67:A0:E1:DA:C9:0E:89:11:69:69:E5:A9:0C:3F
X509v3 Authority Key Identifier:
keyid:2E:7D:6F:55:A1:3B:00:1E:74:01:F4:0E:AA:AE:B8:2F:67:BD:42:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ln1vVaE7AB50AfQOqq64L2e9Qi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fcfd8c-8871-4d6a-b4a5-d65b654c99c5/1/uWsOuqQxZ6Dh2skOiRFpaeWpDD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fcfd8c-8871-4d6a-b4a5-d65b654c99c5/1/Ln1vVaE7AB50AfQOqq64L2e9Qi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.250.192.0/19
185.115.244.0/22
213.162.224.0/19
IPv6:
2001:4da8::/32
Signature Algorithm: sha256WithRSAEncryption
b7:cc:2a:eb:6f:0f:d4:a8:45:de:87:47:3e:b0:68:d7:db:09:
eb:28:fc:80:26:18:70:c1:cf:f4:66:26:2f:d7:3e:88:b3:c2:
63:02:c0:43:99:61:a2:cf:c5:1c:2f:ed:bd:26:5d:ce:86:44:
ef:08:70:86:c3:84:74:63:50:8a:d1:a2:62:88:a3:a3:52:45:
62:ff:6a:e9:6c:13:83:37:23:e9:8e:b0:4c:f4:3e:4a:bb:c6:
ce:0a:c6:87:5e:ea:3a:eb:c9:01:46:83:9a:fc:6b:2c:c3:6c:
e6:0f:09:72:60:50:37:c5:51:87:6b:57:4e:97:0d:7d:02:dc:
21:33:67:0b:f3:55:9e:d7:d5:85:af:0e:3b:82:2e:92:2d:c8:
04:08:4a:b9:c6:8b:f9:b1:31:e6:0d:3b:67:07:94:a1:98:bd:
cd:17:eb:8c:5d:bb:f8:4a:6e:f0:c8:52:f8:db:14:b7:13:e0:
76:23:a3:9d:d6:31:95:08:e2:8c:86:37:d5:8e:42:65:81:e4:
ec:71:24:40:04:8a:70:85:34:50:49:67:39:6c:9d:5c:1a:90:
78:5a:dd:b5:7b:72:71:27:41:8f:a9:ee:d1:75:29:d6:ab:d1:
31:44:c7:a8:ba:d9:6b:89:a2:65:5c:23:ad:39:b9:a8:d8:18:
88:2f:ec:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:40 2024 by rpki-client on console-fra.rpki-client.org