Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UjyN9mr-xXL-nISYnF-h6HYz9Io.roa
File: UjyN9mr-xXL-nISYnF-h6HYz9Io.roa (raw, json)
Hash identifier: z2NujWF2/20WWVMaS7r7gGsGiXOQbHGs2Sc0KwoGz7g=
Subject key identifier: 52:3C:8D:F6:6A:FE:C5:72:FE:9C:84:98:9C:5F:A1:E8:76:33:F4:8A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01882FEFA4754B4BD6C5273493FE1FD87AC0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UjyN9mr-xXL-nISYnF-h6HYz9Io.roa
Signing time: Thu 18 May 2023 17:36:54 +0000
ROA not before: Thu 18 May 2023 17:36:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 94.156.10.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 May 2023 13:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:ef:a4:75:4b:4b:d6:c5:27:34:93:fe:1f:d8:7a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 18 17:36:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=523c8df66afec572fe9c84989c5fa1e87633f48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:db:63:a2:95:3c:e6:40:25:a9:26:ae:2a:07:
72:3c:0d:e9:07:a8:bf:e4:c5:43:76:e1:b3:82:de:
4d:e5:05:ef:f0:ee:83:43:a8:fd:bf:38:17:52:8f:
c7:e1:30:32:87:6d:07:4b:f0:f3:2e:10:d7:a7:0d:
de:93:c6:23:94:80:0e:3f:3d:5c:33:61:45:ef:8b:
d9:ec:1a:b2:bd:91:0d:f7:08:f7:71:1f:b2:0e:5d:
3c:75:43:c2:6e:61:42:cd:bb:f0:81:22:aa:92:95:
3d:63:da:c7:f1:74:97:bb:26:3b:e9:df:35:98:b6:
ad:f7:ce:4b:9d:41:32:fa:d7:02:0e:4e:92:34:10:
a3:cd:5b:c7:83:1c:09:c6:c0:39:03:db:40:4e:ab:
43:57:85:8c:09:95:ad:e0:0f:b5:76:5d:b3:ec:18:
99:25:67:e0:fe:2a:18:44:25:a4:6d:24:b6:c7:18:
fa:6d:0c:7c:34:6d:2a:e6:94:b2:98:70:03:93:49:
c5:5f:e9:3b:2c:14:c5:66:05:8b:3e:f3:9b:b9:e2:
d1:54:47:f7:73:54:93:e7:bc:43:a9:5e:12:c1:b4:
4e:f9:33:e6:fc:b0:31:30:7d:d5:29:fc:f5:c5:dc:
8f:86:5e:39:73:6f:fc:59:ac:c1:b3:a5:92:f5:86:
32:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3C:8D:F6:6A:FE:C5:72:FE:9C:84:98:9C:5F:A1:E8:76:33:F4:8A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UjyN9mr-xXL-nISYnF-h6HYz9Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.10.0/24
94.156.239.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f0:71:f0:78:14:1c:e7:58:22:08:d6:9d:aa:13:89:d0:40:
bb:72:76:64:5a:38:eb:36:db:6a:fa:d2:59:81:03:50:d4:89:
df:82:6d:1f:7e:eb:c1:7b:6d:c2:b3:0d:2a:4f:18:3a:64:e1:
15:f1:58:5b:c0:87:3b:06:02:f0:68:94:2c:24:25:d1:63:6d:
3d:7f:98:17:21:c6:8f:1f:3b:71:27:23:b3:ae:57:e9:ff:c9:
c7:a8:48:ee:db:c3:52:6d:60:c1:ff:cd:32:f5:00:e2:5d:1b:
24:43:c3:2a:f4:16:d1:fe:54:20:f2:81:f0:2d:94:fb:e9:17:
5f:31:61:22:ec:f1:ee:01:6c:06:63:dd:f0:b1:18:c5:4f:03:
ff:73:59:f6:15:4f:59:61:b0:be:3a:55:37:0d:a6:1e:e4:e0:
19:23:03:12:83:93:3a:88:91:bc:eb:93:76:5b:a0:35:3f:c4:
71:82:6a:53:16:6c:23:13:24:c9:53:97:66:78:33:03:c8:86:
30:d0:cd:cc:06:13:48:73:04:1c:64:c6:03:b5:6a:d3:14:d5:
b4:18:a7:98:fe:98:fd:20:23:b8:ab:a6:60:b0:62:1a:d9:c3:
17:17:ea:f4:2c:3e:8d:32:8b:d5:66:57:c6:0c:1a:7c:9c:90:
43:41:94:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:08 2024 by rpki-client on console-fra.rpki-client.org