Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uMU7SPcH50NUjPe5n3IoIW-ugbA.roa
File: uMU7SPcH50NUjPe5n3IoIW-ugbA.roa (raw, json)
Hash identifier: ZcuEP6LI6kyE7fOt4KMFFSMEKeE6evuHiq8kQTJvpCo=
Subject key identifier: B8:C5:3B:48:F7:07:E7:43:54:8C:F7:B9:9F:72:28:21:6F:AE:81:B0
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0187A2BE3B30C39C9BEA34B8490479072D59
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uMU7SPcH50NUjPe5n3IoIW-ugbA.roa
Signing time: Fri 21 Apr 2023 07:36:28 +0000
ROA not before: Fri 21 Apr 2023 07:36:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 193.57.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a2:be:3b:30:c3:9c:9b:ea:34:b8:49:04:79:07:2d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Apr 21 07:36:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8c53b48f707e743548cf7b99f7228216fae81b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:be:f3:71:9d:75:bc:28:34:3e:96:ef:8d:1d:
32:0d:b6:9d:45:71:62:f3:a3:a5:a0:fe:32:75:90:
90:ff:7d:b9:e0:f5:49:5e:91:09:01:3d:b8:6f:a6:
bf:ea:be:70:6e:04:f3:22:20:3b:e4:a4:c4:9a:c5:
4b:29:63:89:28:f2:0c:5e:e0:c7:5b:44:06:30:91:
a1:64:f8:a4:50:2c:dd:c5:46:64:85:04:f3:96:26:
d5:36:79:8d:91:d3:54:7f:84:d5:b6:9a:de:0e:a0:
8b:d0:1a:df:ec:d7:78:c6:2f:1a:71:6a:ab:25:16:
0e:66:2e:12:75:54:1a:31:be:34:55:ed:86:f6:e3:
8a:6f:dd:b7:61:4b:2b:ef:6c:8f:3b:f3:a6:dc:87:
97:df:c7:f6:00:54:94:e6:50:9b:3a:cd:c5:d9:1d:
3d:42:5c:69:58:3a:cb:ec:73:67:f8:ff:9b:b8:88:
59:24:c0:cc:fb:d1:70:de:a1:ed:3a:4a:ea:32:b5:
49:f0:69:d7:2b:46:c2:86:10:b6:1f:70:0f:7f:77:
71:a7:b8:37:82:b3:bf:e9:ca:5d:40:6e:05:8e:aa:
e4:82:51:69:5c:4a:9b:8f:87:99:4b:f0:19:ca:de:
c1:5a:e7:a6:66:20:42:05:f6:05:18:f4:c8:d4:ad:
4e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C5:3B:48:F7:07:E7:43:54:8C:F7:B9:9F:72:28:21:6F:AE:81:B0
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uMU7SPcH50NUjPe5n3IoIW-ugbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.41.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e7:02:35:22:3f:80:e4:a6:16:d9:ba:6a:af:35:92:f5:be:
c6:71:fd:40:23:b2:46:62:2f:f5:18:d8:62:3e:76:bf:1f:08:
e5:27:9e:7e:6b:32:c9:26:a2:c1:ad:11:d3:6f:86:87:df:dd:
7f:d3:40:31:be:79:e9:99:ef:c6:7e:67:42:95:ba:c6:5f:b5:
13:1e:35:10:a9:81:69:91:41:67:b6:35:31:c1:ab:c8:41:1b:
ea:8b:51:db:f0:4d:2f:eb:b5:97:7e:d9:6c:fd:2d:41:32:62:
f4:86:99:5e:e1:7b:60:52:b4:6c:e0:6b:34:45:11:0c:ed:3e:
e5:05:83:44:84:62:8a:b6:ff:21:8a:b4:67:ed:1c:c8:9d:49:
b3:0f:68:6d:3b:4a:c3:41:41:82:37:c1:24:65:05:0b:27:a8:
ab:5a:50:55:43:29:c6:ae:ab:68:1f:d1:54:d8:50:b0:98:c0:
1d:29:13:b4:44:7a:e8:5e:ec:40:48:64:47:15:b7:e0:4b:07:
7e:80:6f:61:49:62:1c:dc:c7:11:01:fc:80:66:cf:e7:fa:4b:
6e:96:62:0e:73:b5:ca:71:d0:89:d5:2e:bd:69:85:6d:c6:49:
ee:7e:7c:06:7b:0a:70:8f:1b:31:19:25:c6:a5:9f:a8:76:9f:
be:d0:b4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:33 2023 by rpki-client on console-fra.rpki-client.org