Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/UwKbAk0njkjwCFrwjjKyY1QJ16w.roa
File: UwKbAk0njkjwCFrwjjKyY1QJ16w.roa (raw, json)
Hash identifier: pwgiEshiElcPW8et4YLYTJb2rFjWDklcAqo0CfQkLAw=
Subject key identifier: 53:02:9B:02:4D:27:8E:48:F0:08:5A:F0:8E:32:B2:63:54:09:D7:AC
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 0187DB807A3D0EA94A68B784F7E3A9BEB96C
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/UwKbAk0njkjwCFrwjjKyY1QJ16w.roa
Signing time: Tue 02 May 2023 08:07:22 +0000
ROA not before: Tue 02 May 2023 08:07:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 194.147.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Sep 2023 07:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:80:7a:3d:0e:a9:4a:68:b7:84:f7:e3:a9:be:b9:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: May 2 08:07:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53029b024d278e48f0085af08e32b2635409d7ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:fd:57:64:6e:9f:e7:70:33:f9:89:39:91:00:
3e:e3:63:a1:c4:4d:5c:21:8a:a4:c0:97:4d:81:24:
b1:79:ad:dd:f7:71:42:91:b0:9e:4d:15:ae:f5:25:
35:7a:78:34:98:76:85:35:54:0a:4e:16:07:36:06:
85:75:2c:d1:b9:8f:16:8d:34:56:3a:6f:7d:c5:6a:
d1:5b:97:a8:5f:43:b3:4f:a3:b7:23:db:b7:8f:be:
d9:46:c2:92:61:45:47:1f:da:6e:3d:c9:4e:47:f1:
d2:1a:a4:fa:0c:ab:b1:ce:44:89:f2:5f:92:6d:e5:
93:3c:b4:15:94:50:89:42:e8:43:2f:c1:ef:8b:10:
31:42:df:66:91:e1:64:11:e0:d8:7f:e1:c6:f6:f6:
82:95:92:2c:5a:2e:33:74:63:5e:0d:2a:7b:3c:7a:
3c:6f:21:1f:4e:11:d8:86:8e:cb:60:b9:d6:5c:34:
3f:4b:f6:02:c0:62:f7:55:22:ac:d8:76:f4:5c:27:
02:89:c8:23:ae:9a:9f:e4:d1:c0:0d:b8:be:78:77:
ac:be:48:f7:17:90:8f:13:d0:c4:c3:8a:81:64:23:
f3:ba:fc:c4:85:6c:24:71:39:97:f9:ac:13:04:f6:
99:4d:bb:80:d5:de:fd:b8:76:a3:37:4c:03:d6:40:
f5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:02:9B:02:4D:27:8E:48:F0:08:5A:F0:8E:32:B2:63:54:09:D7:AC
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/UwKbAk0njkjwCFrwjjKyY1QJ16w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.44.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e8:27:40:cf:1b:b1:84:09:f1:42:63:1d:4d:30:f8:85:09:
78:01:1f:1c:a0:1c:8c:46:73:c0:61:d6:b0:c7:3a:32:7c:06:
73:22:f9:2c:17:48:f9:33:54:32:fe:7b:d3:b3:84:32:35:06:
53:d2:1b:69:b2:a3:9f:df:b1:5a:df:38:2a:be:45:9b:e9:a8:
04:a8:60:b1:a0:25:81:4a:5a:43:07:8e:4e:33:33:df:c8:c5:
98:29:95:a9:b9:d6:59:3f:f9:49:6f:ba:c1:8d:6c:fe:b9:25:
ec:d8:91:cf:21:b9:5c:b7:8d:4c:b4:4a:45:e8:52:38:ef:21:
e1:b0:e1:47:05:52:00:f3:25:c5:9a:23:65:ff:1d:68:64:88:
33:61:f6:ec:4e:40:e7:d1:27:57:d5:2e:ac:1b:c6:ca:81:1e:
d0:9f:8b:b1:b1:c8:94:1f:6d:0e:11:b7:b2:e0:68:57:0b:0f:
ae:ed:0f:65:84:ea:75:ed:da:1f:9e:5d:aa:78:d7:36:bf:51:
4b:eb:e4:12:11:23:08:cd:86:92:77:e7:4d:1b:b8:17:b2:cd:
9b:69:c2:a2:28:28:59:f7:f4:37:f5:e5:f9:e5:8f:66:6f:41:
53:cd:7a:c6:6e:76:a3:d5:39:16:cc:0b:e1:50:2d:93:bc:73:
d7:17:a1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:23 2024 by rpki-client on console-fra.rpki-client.org