Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/UCgR9AbknQ-7L0GIyhnONC8G0G4.roa
File: UCgR9AbknQ-7L0GIyhnONC8G0G4.roa (raw, json)
Hash identifier: 9HNM0hnCeMQLR0plg+B5q5wFzgKghsCslcV4DScxEQE=
Subject key identifier: 50:28:11:F4:06:E4:9D:0F:BB:2F:41:88:CA:19:CE:34:2F:06:D0:6E
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F1510C5E8D5CDC3EDD642F03E5B9753
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/UCgR9AbknQ-7L0GIyhnONC8G0G4.roa
Signing time: Sun 01 Jan 2023 20:45:29 +0000
ROA not before: Sun 01 Jan 2023 20:45:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210822
IP address blocks: 193.230.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:10:c5:e8:d5:cd:c3:ed:d6:42:f0:3e:5b:97:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=502811f406e49d0fbb2f4188ca19ce342f06d06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7c:16:62:df:70:f7:d6:00:47:e0:28:2d:d0:
89:b3:28:9a:bd:94:61:a9:08:e3:0b:da:97:79:ba:
d3:83:e2:8a:3a:03:00:2e:05:d9:5e:60:54:de:55:
f9:05:07:18:9d:99:ac:14:7c:2c:ed:4e:94:ee:f6:
aa:a5:4a:6b:4f:a9:7d:96:37:36:5a:15:0c:db:5c:
cb:5a:df:03:3f:29:08:3c:ef:db:18:b1:f8:84:e4:
1e:47:c7:9b:59:1b:9a:6b:fb:df:18:31:35:87:7c:
2a:f6:d5:f9:d4:0c:10:48:13:d5:d6:ce:c1:83:7e:
d6:20:12:f9:55:38:ff:0f:8d:3c:3f:24:bd:cb:bc:
0f:bd:4d:77:9f:97:c4:89:7b:c0:b6:c4:4c:75:e8:
e2:a5:2f:4e:4f:12:07:57:1a:eb:ba:a5:30:5e:6b:
3f:d8:d0:fd:a4:83:43:c0:7c:1e:73:a8:7d:c3:fb:
4e:25:7c:43:58:de:94:f7:c9:71:87:df:54:52:d5:
9e:ec:00:da:ce:fe:6c:9c:07:da:57:c4:1a:b2:5b:
75:70:8e:ce:c0:8b:86:45:e7:f2:8d:6c:cf:80:57:
2f:c5:e8:02:b1:6f:41:5e:c4:6b:c7:93:b2:bc:f4:
a2:95:0e:51:56:84:3a:3e:19:e5:18:20:53:ae:08:
a1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:28:11:F4:06:E4:9D:0F:BB:2F:41:88:CA:19:CE:34:2F:06:D0:6E
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/UCgR9AbknQ-7L0GIyhnONC8G0G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.133.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:7c:a6:a0:4f:fc:5d:3a:47:e8:a6:41:4d:75:9e:06:39:a3:
83:34:a3:9d:2c:0a:dd:11:ee:a3:b8:eb:4b:b6:cf:dd:01:2a:
57:d9:cf:3c:60:2b:4f:18:7e:72:ae:37:d4:fc:cd:e9:d1:04:
5f:9f:fb:9f:67:08:d9:01:66:e8:85:1f:a4:74:8d:fb:92:77:
a6:27:24:2d:ad:1c:2f:1d:9b:a0:7a:97:8d:8d:78:40:e4:dd:
4c:dc:0f:77:ab:7b:73:fb:a6:dd:28:0b:01:96:88:3a:e7:60:
3b:12:0d:1c:fd:1f:45:f4:ff:65:79:ba:07:32:2e:56:94:30:
ee:9e:3d:c5:1c:06:a2:b5:96:cd:e2:5a:c8:ac:69:f3:ee:d6:
17:a1:fb:04:c1:b5:0e:86:77:07:09:53:92:4d:54:ec:d0:d9:
5f:b1:28:d5:73:ed:fb:e9:e3:56:b5:80:d0:96:a9:0c:21:22:
0a:35:bb:9a:6b:71:6b:ba:89:6b:a0:85:aa:3a:92:8d:4f:60:
3d:53:58:74:57:87:0e:d9:6b:a5:ff:90:f1:bd:0e:dd:a2:31:
db:2b:03:cd:67:ce:e1:ae:e6:91:5e:71:5e:0d:a2:f5:00:a9:
40:38:20:75:ba:4b:ba:87:5a:50:c7:df:61:67:c5:51:af:57:
a5:ad:ee:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org