Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/U5E1rdKcktkC2E0Kf2xvARpx828.roa
File: U5E1rdKcktkC2E0Kf2xvARpx828.roa (raw, json)
Hash identifier: V3ZTocZKU1Eb0/3sVCYbqtbMsIUDLJKT60QYi0qgr64=
Subject key identifier: 53:91:35:AD:D2:9C:92:D9:02:D8:4D:0A:7F:6C:6F:01:1A:71:F3:6F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81F1F6EDAE6CFE27B35CF23D0D95F3
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/U5E1rdKcktkC2E0Kf2xvARpx828.roa
Signing time: Sun 01 Jan 2023 13:25:10 +0000
ROA not before: Sun 01 Jan 2023 13:25:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50360
IP address blocks: 87.121.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 11:42:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:f1:f6:ed:ae:6c:fe:27:b3:5c:f2:3d:0d:95:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=539135add29c92d902d84d0a7f6c6f011a71f36f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b9:d5:be:71:be:bc:65:7b:50:bc:9a:dc:ac:
2f:f9:37:f0:0c:e0:39:fc:0e:84:f5:c1:58:47:d9:
c6:86:0c:41:9c:fe:69:de:7d:b9:26:50:d0:6d:44:
ae:ff:61:d3:ae:5a:41:f2:50:d2:85:5f:04:35:53:
ee:a2:ad:de:89:e4:49:b9:35:d6:fe:60:cf:bd:7e:
d4:9f:57:4e:3b:f4:56:df:2c:ce:3b:b5:7d:37:bc:
22:7d:56:59:a1:49:9c:ef:bd:7b:ab:ec:d2:95:59:
65:78:94:6a:8a:63:55:34:1f:f1:49:48:e6:38:3f:
e4:24:75:18:7d:ab:64:07:64:ff:0d:2e:6e:a2:77:
7c:20:c6:c5:f6:ae:dd:33:74:a0:bd:23:af:5a:49:
e0:df:7a:97:ff:47:ce:c2:74:57:b3:73:f6:19:89:
01:a7:f3:f5:eb:7c:93:75:94:57:07:97:58:1d:31:
6e:45:ef:70:75:45:44:69:d2:37:2d:b2:45:44:f0:
8e:fd:73:ff:e6:ee:f4:7a:6b:de:5b:89:92:d5:20:
52:53:b2:84:d0:49:c3:fe:4d:14:c1:ce:87:e8:e8:
5a:2b:81:5b:a1:eb:4c:46:75:2b:fd:cc:f0:31:d6:
68:58:41:f9:e2:b1:47:25:a9:46:1d:71:6c:1c:ff:
d7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:91:35:AD:D2:9C:92:D9:02:D8:4D:0A:7F:6C:6F:01:1A:71:F3:6F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/U5E1rdKcktkC2E0Kf2xvARpx828.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.98.0/24
Signature Algorithm: sha256WithRSAEncryption
84:1c:ca:69:d4:a9:d3:0f:03:a5:81:8e:8b:e1:83:e9:ba:63:
b8:5b:2d:18:44:3e:a4:09:84:dc:de:3a:f0:03:a1:1d:27:ea:
73:86:3e:a9:a3:d9:9c:84:c3:96:fb:83:53:62:1c:36:f5:56:
6f:e9:c0:a3:e7:91:e6:90:2b:be:a7:87:4f:b5:29:d6:7c:63:
63:70:e7:c8:08:7c:25:39:3d:41:36:69:e4:59:60:7a:7d:7b:
00:b5:35:22:eb:93:b2:fc:1a:0a:14:db:0a:50:50:6b:b7:e8:
5e:80:40:c7:66:f8:9d:92:29:b3:5d:ba:b9:b5:18:c1:c6:33:
c0:05:5a:2e:c8:39:30:90:7a:7d:9f:a8:a2:28:10:1a:aa:bb:
42:68:bf:c1:32:69:27:1c:e0:d3:d5:de:3e:f0:c3:32:ea:e9:
f7:d5:ab:f1:48:d0:60:dd:6b:4c:02:f5:7d:fa:3f:b8:11:4b:
c2:85:bc:80:1b:cd:27:56:76:f1:7c:b0:4b:4e:c4:04:86:e1:
96:77:9b:72:9d:6e:fa:bd:7f:5f:da:0a:56:81:0f:c4:65:76:
1a:b2:2f:30:37:99:10:92:70:d2:61:7b:da:bb:e5:13:b6:86:
81:97:78:83:d9:cc:85:68:6b:86:4b:98:55:63:6f:42:63:a5:
32:12:fe:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:08 2024 by rpki-client on console-fra.rpki-client.org