Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a73f09-1b9d-4c26-b01d-0e8a9485a9a2/1/Uxkd9c7qGVpMhvrktKCbftra1u8.roa
File: Uxkd9c7qGVpMhvrktKCbftra1u8.roa (raw, json)
Hash identifier: QwVCx5iWDDfAVcxszDYV3eB3GpBYWkgtWndwjmDRORo=
Subject key identifier: 53:19:1D:F5:CE:EA:19:5A:4C:86:FA:E4:B4:A0:9B:7E:DA:DA:D6:EF
Certificate issuer: /CN=1aaaba7da7c8f36c8b275ca738491cedccb5e312
Certificate serial: 0188B165DEABEBAC115BCBA8C038251919CE
Authority key identifier: 1A:AA:BA:7D:A7:C8:F3:6C:8B:27:5C:A7:38:49:1C:ED:CC:B5:E3:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gqq6fafI82yLJ1ynOEkc7cy14xI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a73f09-1b9d-4c26-b01d-0e8a9485a9a2/1/Uxkd9c7qGVpMhvrktKCbftra1u8.roa
Signing time: Mon 12 Jun 2023 20:57:03 +0000
ROA not before: Mon 12 Jun 2023 20:57:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201228
IP address blocks: 193.5.184.0/24 maxlen: 24
193.5.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:65:de:ab:eb:ac:11:5b:cb:a8:c0:38:25:19:19:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aaaba7da7c8f36c8b275ca738491cedccb5e312
Validity
Not Before: Jun 12 20:57:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53191df5ceea195a4c86fae4b4a09b7edadad6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:87:82:31:87:61:37:eb:46:c9:58:45:51:de:
3f:a1:2b:9d:ca:63:67:64:a3:1a:e3:52:99:a7:dd:
d3:cd:fe:7d:84:9d:5b:91:08:bf:94:70:84:d2:f5:
5e:11:10:5f:96:87:c2:c1:8d:fd:48:34:d0:3f:60:
9e:37:91:4c:b7:57:8b:06:21:65:fa:b1:aa:35:73:
3a:cf:5a:65:1c:d0:ef:d4:58:08:f4:ef:33:a3:13:
77:1e:fb:5c:76:13:df:5f:e5:8e:69:56:54:36:7f:
b6:18:ba:6e:0e:48:e2:3a:04:1b:dd:52:ce:db:14:
77:7f:c7:b0:a8:bd:38:f3:34:54:92:a7:e5:b2:ad:
57:2e:5f:bd:1d:38:cd:38:68:fe:b6:64:82:90:89:
dc:0e:0c:db:9f:b1:fa:04:df:0c:b4:75:2b:0c:88:
14:09:b6:53:a9:2d:57:49:94:82:de:6a:5e:9e:79:
b2:c8:14:9a:82:b6:5e:a4:20:ff:af:58:a4:b8:1b:
1a:c4:ae:cd:4e:33:d2:3f:2b:e6:cc:9f:fb:f8:03:
90:ef:ca:0d:c6:48:26:d2:41:01:f7:88:f3:04:30:
2b:ce:42:c1:d4:5f:8a:3e:31:df:ea:4a:81:63:b1:
c7:c1:b0:c8:71:28:6e:b3:0e:f6:d5:6d:1e:fe:a1:
57:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:19:1D:F5:CE:EA:19:5A:4C:86:FA:E4:B4:A0:9B:7E:DA:DA:D6:EF
X509v3 Authority Key Identifier:
keyid:1A:AA:BA:7D:A7:C8:F3:6C:8B:27:5C:A7:38:49:1C:ED:CC:B5:E3:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gqq6fafI82yLJ1ynOEkc7cy14xI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a73f09-1b9d-4c26-b01d-0e8a9485a9a2/1/Uxkd9c7qGVpMhvrktKCbftra1u8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a73f09-1b9d-4c26-b01d-0e8a9485a9a2/1/Gqq6fafI82yLJ1ynOEkc7cy14xI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.184.0/24
193.5.190.0/24
Signature Algorithm: sha256WithRSAEncryption
28:73:76:6a:00:45:ad:09:c1:58:01:77:fe:29:45:a8:6e:d8:
ba:fc:8e:29:50:db:b0:d7:fc:39:3a:c0:b8:03:35:f5:a6:e3:
92:1c:ce:6b:06:bf:99:ec:3e:df:a7:1e:64:ff:a2:07:26:ce:
2a:48:e3:f3:07:83:fd:4e:25:23:f1:08:af:5c:87:55:80:f9:
44:af:a5:e8:d8:00:4e:3f:93:d3:b9:be:c2:11:de:7c:30:b7:
7d:e6:21:9a:38:f2:8c:1a:8f:30:f9:3e:21:89:e8:59:e1:66:
d0:50:73:78:ba:00:3b:30:24:d0:ed:66:7d:0f:ac:f4:54:bf:
3b:36:34:34:99:11:1b:db:c7:64:49:63:4b:cd:0e:9a:95:b0:
a8:7d:b3:62:cd:6a:bf:1b:2a:d6:64:de:10:92:25:3c:0a:d0:
2a:84:23:4d:5b:f3:ae:2d:7e:35:e5:86:1b:c4:c7:8b:0c:3c:
39:33:70:b7:33:1b:76:be:d9:17:2c:4d:b8:5e:fc:6f:f6:cc:
f1:77:5c:bb:55:24:af:26:c6:af:2f:72:12:16:39:73:3c:d2:
ed:44:05:c3:53:52:75:2a:e6:b4:2c:ad:4f:70:53:8a:a9:f6:
ac:d5:a0:e8:50:8f:28:1e:43:4d:a4:99:89:b5:c5:94:50:d9:
a8:7b:d9:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:16 2024 by rpki-client on console-ams.rpki-client.org