Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/UZKRkdBj9oso4p1ocUHW1xrd_wk.roa
File: UZKRkdBj9oso4p1ocUHW1xrd_wk.roa (raw, json)
Hash identifier: lVfNKUXQh6sAHvhJVOdD0UKJzOHfFYA+iUhVic8Kyjw=
Subject key identifier: 51:92:91:91:D0:63:F6:8B:28:E2:9D:68:71:41:D6:D7:1A:DD:FF:09
Certificate issuer: /CN=c4b21c89bc7e2b214067f30707a4a03dc346ee05
Certificate serial: 01856EC23CA295B029CF2561BC053B5C1EC0
Authority key identifier: C4:B2:1C:89:BC:7E:2B:21:40:67:F3:07:07:A4:A0:3D:C3:46:EE:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLIcibx-KyFAZ_MHB6SgPcNG7gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/UZKRkdBj9oso4p1ocUHW1xrd_wk.roa
Signing time: Sun 01 Jan 2023 19:15:01 +0000
ROA not before: Sun 01 Jan 2023 19:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211335
IP address blocks: 45.11.41.0/24 maxlen: 24
2a0e:7d02::/32 maxlen: 32
2a0e:7d03::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:3c:a2:95:b0:29:cf:25:61:bc:05:3b:5c:1e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b21c89bc7e2b214067f30707a4a03dc346ee05
Validity
Not Before: Jan 1 19:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51929191d063f68b28e29d687141d6d71addff09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2e:44:25:0b:20:2f:fe:fd:0b:27:91:86:1d:
3a:3f:6e:eb:3f:7d:7e:34:14:f5:80:af:4e:a8:3f:
b2:c7:e1:0f:a9:68:f3:ae:2e:9d:2c:07:1a:ff:d7:
aa:97:f0:cc:e7:42:ec:7d:b7:3c:04:2c:e8:1e:0f:
69:dc:b7:c5:27:e8:12:37:d6:62:40:08:5b:6d:d4:
ee:e3:e9:64:36:76:42:93:15:9f:90:3b:7d:e4:2b:
9c:90:9d:4a:90:55:e3:01:e1:fa:b0:da:37:df:e5:
c3:9d:7a:32:8f:0e:43:fe:8d:4c:a5:05:a2:59:68:
e6:3d:f4:98:14:7b:8e:65:df:d8:79:e0:77:94:1d:
ad:da:f3:03:2b:4d:25:46:f4:5c:04:9a:3c:0b:e3:
94:c8:66:5f:18:9b:b0:e1:0e:6c:40:73:9d:bc:7c:
65:74:40:90:4d:b2:06:6c:6f:78:cf:72:5a:59:7a:
03:5a:ab:e5:3a:f2:9f:89:24:00:2c:08:59:7d:df:
33:aa:4d:7a:0c:57:22:51:84:87:f8:62:37:df:f7:
33:11:93:0a:4d:3f:0e:6c:a9:8b:81:f6:f9:6e:53:
d6:80:a8:7f:b3:79:59:a1:49:14:f9:ac:b1:26:fb:
45:8c:5b:32:bf:18:ab:87:f8:bb:89:5e:d1:31:42:
8e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:92:91:91:D0:63:F6:8B:28:E2:9D:68:71:41:D6:D7:1A:DD:FF:09
X509v3 Authority Key Identifier:
keyid:C4:B2:1C:89:BC:7E:2B:21:40:67:F3:07:07:A4:A0:3D:C3:46:EE:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLIcibx-KyFAZ_MHB6SgPcNG7gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/UZKRkdBj9oso4p1ocUHW1xrd_wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/6137b8-1383-4b71-a189-063b40174597/1/xLIcibx-KyFAZ_MHB6SgPcNG7gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.41.0/24
IPv6:
2a0e:7d02::/31
Signature Algorithm: sha256WithRSAEncryption
0b:f4:ac:e1:b7:34:85:c7:9e:7a:ce:bb:0d:3b:96:15:ea:f5:
cc:b9:da:6d:d9:43:df:3c:6e:76:8a:d5:6f:cd:68:1c:72:3c:
12:4f:3b:35:d1:43:4c:96:f7:b2:ba:d2:36:dd:77:0a:f8:eb:
ef:9d:f1:bf:63:27:5d:0a:44:57:55:e8:7b:e2:59:db:c8:ac:
d5:7c:59:ac:c5:98:91:eb:ce:00:09:dc:4d:5c:dd:2f:17:bf:
30:bb:8e:72:a1:d9:97:0b:06:36:5d:1b:f1:c2:47:e0:1c:f1:
c3:33:f5:34:f9:38:e7:c3:12:db:64:24:88:e1:f4:10:9d:8b:
11:ec:b0:8b:70:cd:2f:80:07:06:3c:06:a3:4c:d9:c8:a7:20:
f8:42:65:e9:96:44:b1:e8:ed:14:f3:be:a0:a2:2a:f8:ec:94:
1a:61:37:a0:88:4e:65:cb:46:79:e2:f8:0d:f3:9a:78:7b:e7:
b6:14:5c:7a:bc:f0:f7:b0:09:53:5e:c0:5d:65:34:7e:9f:65:
76:c2:b9:ba:31:8d:92:83:06:41:2e:4f:1a:80:03:8c:35:6f:
c1:07:e8:87:a3:fc:e7:29:5d:12:fc:a1:c6:aa:f2:43:b9:7a:
fe:a0:8c:2b:9c:71:ea:ac:9b:b0:2e:f4:b3:2a:d9:d1:72:82:
95:a4:7f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:49 2024 by rpki-client on console-fra.rpki-client.org