Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/2UVg4hvqSeMWgsXKQkI6en4CeRE.roa
File: 2UVg4hvqSeMWgsXKQkI6en4CeRE.roa (raw, json)
Hash identifier: VHUYK/qSBPBgem4QX/MdFWwXXQ92F0zZ8pk/A2GRVlU=
Subject key identifier: D9:45:60:E2:1B:EA:49:E3:16:82:C5:CA:42:42:3A:7A:7E:02:79:11
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018570028C33F79A7E0F75EC9394F8717E67
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/2UVg4hvqSeMWgsXKQkI6en4CeRE.roa
Signing time: Mon 02 Jan 2023 01:04:53 +0000
ROA not before: Mon 02 Jan 2023 01:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 65552
IP address blocks: 81.8.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8c:33:f7:9a:7e:0f:75:ec:93:94:f8:71:7e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94560e21bea49e31682c5ca42423a7a7e027911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3d:d7:96:10:67:e5:6f:0c:30:f4:89:cf:b0:
1f:c0:75:a3:e3:2f:bf:10:f0:c0:ae:eb:4f:39:dc:
34:3e:d2:53:fb:81:38:f4:99:71:3f:80:1c:43:65:
16:f7:e0:db:29:ff:46:89:a8:fb:e0:c2:8f:ff:af:
4e:b2:74:5b:f4:b5:7c:31:9f:88:f1:fc:ef:a8:02:
19:f7:96:38:3d:de:bc:06:31:ac:15:a8:31:90:3f:
26:3d:ac:0f:4b:65:5e:11:ca:ba:ee:32:e5:6f:aa:
75:20:bc:71:37:69:8a:08:f5:d1:84:7c:b5:68:26:
39:ac:84:cf:f0:af:cf:aa:90:5d:f5:92:29:e8:b4:
71:fe:f5:66:81:9a:f4:71:02:b2:95:80:6b:fc:dc:
81:2b:01:f9:34:37:3d:02:ad:05:1d:b7:23:09:dd:
20:35:5b:ef:6d:f3:f3:02:69:13:8e:29:b2:73:1c:
7d:e9:d9:75:5a:51:54:5b:73:b8:7c:35:64:c8:4c:
f5:cd:de:98:0f:95:0d:79:a4:e4:07:28:9e:78:2b:
c6:4e:10:2a:4b:e0:ef:1a:4b:ab:16:9a:9f:6f:f8:
38:77:df:20:44:28:8e:e6:0f:06:60:59:36:50:ec:
77:cd:b9:38:88:71:26:60:81:67:65:04:31:df:46:
47:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:45:60:E2:1B:EA:49:E3:16:82:C5:CA:42:42:3A:7A:7E:02:79:11
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/2UVg4hvqSeMWgsXKQkI6en4CeRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.8.34.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:da:48:04:50:49:0b:16:ce:45:41:30:f8:44:93:e8:1d:aa:
df:12:31:72:1a:bc:48:92:dc:9c:af:77:ba:14:a9:5f:33:54:
7e:5a:86:1e:16:a4:ba:71:91:cc:28:fb:de:ee:51:55:aa:b1:
48:71:bb:ab:fd:89:8d:08:b5:2e:68:0c:1d:de:94:63:c7:e6:
16:c6:1a:5f:ab:e7:a5:a3:85:82:2f:bf:88:1c:2c:25:2b:16:
cc:e8:d0:31:25:72:7a:b8:d8:92:02:1c:40:ed:3e:63:49:53:
4c:cb:22:ff:75:c7:7b:73:cf:a2:a3:c5:88:4f:78:1b:76:7c:
cf:c1:b9:d6:7e:c9:16:fb:16:4e:95:1b:d9:09:5b:f0:f3:ad:
68:6b:f2:ff:07:92:cd:28:e2:f4:58:a0:05:a2:e7:19:12:47:
f5:71:91:3f:a4:0d:03:2e:6f:06:0f:9e:4d:00:cd:29:be:93:
33:85:9e:87:3d:1a:79:c8:30:fe:e5:a4:41:95:f8:58:47:c2:
2e:b4:70:12:7a:02:f3:28:ec:42:9b:62:1b:d3:44:71:23:f6:
bc:28:fc:5e:f1:1b:83:20:31:6b:5d:7a:f4:7a:cd:e5:05:d8:
64:f0:66:43:c9:4e:a9:7b:3b:07:6b:8a:71:56:bb:7d:4e:2c:
d2:56:db:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org