Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/UZuyR3Fn0JtV1kzgnXYuts1YI-I.roa
File: UZuyR3Fn0JtV1kzgnXYuts1YI-I.roa (raw, json)
Hash identifier: W/C5+bs3dofPXwCymuO6/yifUL2B3+SMZE5De38TlFM=
Subject key identifier: 51:9B:B2:47:71:67:D0:9B:55:D6:4C:E0:9D:76:2E:B6:CD:58:23:E2
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 018A995837D3AB48348196AFFEADD0D58F76
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/UZuyR3Fn0JtV1kzgnXYuts1YI-I.roa
Signing time: Fri 15 Sep 2023 14:56:50 +0000
ROA not before: Fri 15 Sep 2023 14:56:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8330
IP address blocks: 193.203.5.0/24 maxlen: 24
5.57.88.0/21 maxlen: 21
2001:7f8:17::/48 maxlen: 48
2a00:eb20:abcd::/48 maxlen: 48
2a00:eb20::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:99:58:37:d3:ab:48:34:81:96:af:fe:ad:d0:d5:8f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Sep 15 14:56:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=519bb2477167d09b55d64ce09d762eb6cd5823e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f3:8f:95:e5:13:3b:40:c5:16:75:85:4d:b2:
d0:fd:b9:64:90:1d:79:ae:f7:4c:ad:2b:be:ae:e5:
9d:e7:db:c3:5c:e0:7e:34:82:e6:88:13:1b:1b:9e:
69:21:fb:c1:cb:6c:56:df:bf:9b:75:cd:05:e6:7b:
65:1e:5d:71:43:00:36:ff:6b:51:e7:70:0b:28:cf:
05:1a:6e:8e:e9:95:da:74:32:d2:6a:fa:e3:5b:8f:
53:23:4e:e5:72:e8:ea:96:59:96:4a:38:e6:c2:86:
4d:e2:45:37:27:87:23:38:9d:c9:1c:72:cc:aa:50:
91:f3:7f:c8:a4:6c:f5:e1:83:ef:94:16:47:ae:ee:
97:7c:77:6e:0d:98:5e:82:e2:f2:60:9e:f8:de:62:
d0:69:94:ab:a3:2e:e5:32:0f:86:b3:dc:10:76:bc:
18:93:89:7c:46:35:03:ac:b8:d5:ef:b1:0d:48:6d:
b5:ee:af:40:fd:1e:6b:b6:8f:00:39:dd:43:2c:2c:
dc:8a:e8:0b:d2:4c:90:4e:7a:7c:75:ba:b6:b1:84:
a9:70:d9:e6:66:14:ef:f0:e5:0d:0e:04:8d:b9:4f:
fb:79:ea:99:a2:54:9c:fa:ed:e6:8b:1d:a3:29:6f:
17:e9:dc:47:6e:41:c1:92:a6:08:a3:62:5c:f0:bf:
0c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9B:B2:47:71:67:D0:9B:55:D6:4C:E0:9D:76:2E:B6:CD:58:23:E2
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/UZuyR3Fn0JtV1kzgnXYuts1YI-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.88.0/21
193.203.5.0/24
IPv6:
2001:7f8:17::/48
2a00:eb20::/32
Signature Algorithm: sha256WithRSAEncryption
9b:19:ac:01:f0:c8:c0:d7:a5:9a:4e:95:c2:ba:ec:f4:d8:05:
05:50:b3:ad:ad:38:0c:fe:96:80:f7:67:33:ba:93:f1:65:48:
23:cb:e7:7c:d1:a5:5b:85:55:83:c0:f3:8a:20:d7:95:b5:fd:
03:50:06:a1:08:2b:ce:d8:96:3f:f9:62:98:c5:e1:ea:5c:ed:
5f:76:f7:64:e6:a4:c8:e6:85:43:80:eb:4b:16:6f:f6:f2:96:
5a:80:fc:38:ef:9c:4f:2e:27:be:67:4b:24:ac:b2:5b:c3:a6:
2d:7d:2f:44:fc:5a:8f:eb:ef:b2:a7:80:e4:37:f6:64:d5:c7:
f2:0f:d8:47:fd:a9:e7:28:55:29:20:45:d4:67:6e:7f:8d:9d:
e7:04:ff:79:5c:07:e8:6d:d0:99:66:0a:9e:cf:05:d4:05:21:
20:7a:bb:4c:6c:47:68:40:63:62:1d:90:aa:10:24:ab:6e:3c:
ba:26:93:56:1f:69:3d:33:51:b5:0f:f3:c9:b3:c0:15:bb:fd:
14:f5:77:38:62:17:c9:78:ea:5f:f7:5f:4a:40:8e:18:f9:2e:
c0:93:bc:fb:47:5d:8a:12:fd:8d:29:84:f3:11:26:29:07:43:
68:dc:bf:7c:91:42:b5:83:7f:58:78:69:be:ab:5a:3c:40:a7:
82:ba:17:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:42 2024 by rpki-client on console-fra.rpki-client.org