Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Uvep5kgN9inp5qEV60U5WzdbjDk.roa
File: Uvep5kgN9inp5qEV60U5WzdbjDk.roa (raw, json)
Hash identifier: rtJo/98kUoQOd+HtNHLUA1g3/FfwvoqdJ8RfmNUatgE=
Subject key identifier: 52:F7:A9:E6:48:0D:F6:29:E9:E6:A1:15:EB:45:39:5B:37:5B:8C:39
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE6094FF69A3BAB67787FAE0B5CDC88
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Uvep5kgN9inp5qEV60U5WzdbjDk.roa
Signing time: Sun 01 Jan 2023 10:34:53 +0000
ROA not before: Sun 01 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 2.58.196.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:09:4f:f6:9a:3b:ab:67:78:7f:ae:0b:5c:dc:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52f7a9e6480df629e9e6a115eb45395b375b8c39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:37:c2:cd:ee:21:40:79:11:c8:6e:e2:fd:77:
ff:1c:03:e7:20:e0:b1:ac:29:40:a0:73:86:dd:07:
fd:cb:75:7a:12:1a:52:5c:31:fa:20:4b:b5:85:3f:
07:a0:65:59:64:bb:49:00:8d:4b:9a:cb:35:0f:5c:
6e:66:d2:ee:c9:1e:15:fc:5c:ce:ba:f3:44:12:45:
e7:c7:0e:ad:a5:82:e3:6f:c6:1d:43:db:f1:b4:98:
ed:2d:d2:f3:e4:33:cd:c2:2f:63:52:ab:0c:3e:72:
05:d3:4e:3b:77:81:95:88:b1:7e:8d:e4:a2:4f:88:
26:a1:22:fc:11:b9:aa:c8:30:fb:f9:9b:78:df:36:
0d:7a:47:0f:4a:c9:94:22:28:5f:88:a4:7c:a6:b3:
10:81:22:2a:be:fb:24:ae:7d:a7:7a:e2:ab:0e:90:
8c:08:f9:fa:9c:b7:37:36:c2:5e:40:58:c8:a4:50:
79:1d:43:5b:f0:9b:07:62:d0:f8:c4:9a:ad:a2:05:
9f:bc:19:6e:af:e0:90:db:51:50:24:83:0d:c7:d3:
a3:8a:e0:f5:d5:21:48:3b:5a:e9:1a:08:6d:b2:2e:
36:6c:bc:28:f9:36:e9:93:8a:83:cd:d2:19:92:d2:
e4:58:8f:21:ca:59:3f:65:e2:5c:be:e9:48:41:06:
7f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F7:A9:E6:48:0D:F6:29:E9:E6:A1:15:EB:45:39:5B:37:5B:8C:39
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Uvep5kgN9inp5qEV60U5WzdbjDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.196.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:d7:03:96:7e:1c:6e:4b:8b:d4:d5:d2:37:5a:a6:b3:f3:81:
81:bb:1a:ea:3d:07:5a:3b:6b:62:45:fe:d0:fc:dd:b3:ee:c7:
e8:39:cf:22:db:96:e1:fc:ce:b0:16:6f:63:cb:5a:7e:35:b9:
93:61:02:f3:94:c1:3d:01:f6:56:cf:5e:93:7f:74:83:84:c5:
59:ce:a1:80:c4:2b:45:d7:ff:a1:04:f6:07:16:a7:52:2c:55:
30:d2:c6:14:91:f1:49:2d:fd:a4:7f:fa:bc:f9:24:ab:3f:1b:
90:61:50:5f:12:9f:42:73:43:c6:6d:c5:e8:92:6b:0d:16:4f:
e7:ca:8b:91:f6:3c:f3:7b:61:2f:90:ef:21:9b:be:69:65:5c:
2d:6c:de:3e:e1:fd:f7:1c:6a:b0:c5:70:5e:be:fb:94:4a:99:
ce:51:0f:aa:0e:ef:7e:99:b0:a6:b0:69:ce:87:66:d6:9e:96:
8a:b6:af:14:5f:20:33:bc:57:f6:0f:50:1a:6d:b9:a1:ef:f6:
51:7e:17:4b:1b:86:f4:e5:1a:97:00:9c:37:03:56:bd:fa:be:
eb:b7:bb:6e:9e:e2:f9:24:6c:4a:32:74:aa:47:51:f3:89:0d:
d1:82:4f:5d:9b:05:b4:e1:d3:1b:dd:0a:b0:cf:1b:37:94:d5:
5b:a5:9f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org