Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uUwN5fr-74tPdTJJDlwXQreMgEc.roa
File: uUwN5fr-74tPdTJJDlwXQreMgEc.roa (raw, json)
Hash identifier: VuqPCPei1gjYbqVX1E/tXwD2m9rPA2Wo1llfAPXbJCw=
Subject key identifier: B9:4C:0D:E5:FA:FE:EF:8B:4F:75:32:49:0E:5C:17:42:B7:8C:80:47
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0185F819F1CEDAA4B7D16A3B87487A4EE631
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uUwN5fr-74tPdTJJDlwXQreMgEc.roa
Signing time: Sat 28 Jan 2023 11:18:47 +0000
ROA not before: Sat 28 Jan 2023 11:18:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25098
IP address blocks: 193.30.241.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f8:19:f1:ce:da:a4:b7:d1:6a:3b:87:48:7a:4e:e6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 28 11:18:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b94c0de5fafeef8b4f7532490e5c1742b78c8047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c5:ac:e1:28:f4:36:79:e8:b9:43:96:57:d4:
52:fc:ca:04:bf:6f:01:83:ea:2d:e8:fe:b5:63:e2:
50:40:b1:8c:b6:a4:d8:47:a5:47:e9:b4:b6:e1:50:
84:d9:26:4d:27:28:cf:b6:d9:65:e7:5e:6e:6b:66:
b6:66:10:a8:40:f9:d8:13:95:b5:30:3f:a9:68:6a:
a3:44:39:27:32:60:41:8e:a5:4f:7c:e8:4a:8d:38:
6d:f6:13:75:53:aa:e5:d5:38:4b:08:99:ea:89:18:
5b:a2:29:37:3e:b9:63:47:99:6c:ea:45:82:50:ed:
f6:6e:94:a7:6b:96:ba:b9:c1:64:be:5f:30:2f:4f:
16:b4:98:ce:60:c5:dc:56:1f:c7:9d:88:48:95:7d:
4e:dd:6b:c2:2d:18:a6:74:b4:18:5c:8f:c1:c2:50:
3f:2b:bf:2a:4f:3f:84:0b:85:e0:61:4c:3f:8b:4a:
f9:0f:ff:b7:ba:90:c2:ed:aa:00:22:4d:cb:99:2a:
9c:82:d1:86:e6:26:0f:38:5c:15:57:91:71:ba:7e:
a5:f2:e8:8e:fd:1d:bc:8a:1c:5a:8f:df:b8:ce:38:
7b:73:b1:de:b0:55:51:ce:e4:a4:dc:6b:3d:f7:90:
28:1c:47:2a:ad:21:54:e9:d6:65:f0:46:92:0c:bd:
b0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4C:0D:E5:FA:FE:EF:8B:4F:75:32:49:0E:5C:17:42:B7:8C:80:47
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uUwN5fr-74tPdTJJDlwXQreMgEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.241.0/24
195.62.24.0/24
195.177.95.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:9c:d3:e7:9e:d9:07:cb:ce:53:1b:6d:46:1f:bd:47:1c:81:
01:03:5a:e9:f0:15:ac:fc:2e:4f:c3:4b:99:f6:7d:47:ca:25:
3f:cd:28:13:d8:7c:d6:80:21:90:24:ea:e1:3c:ca:b2:3d:3a:
04:cb:70:22:9b:73:dd:b7:5d:47:1a:f3:8b:e3:d9:d6:84:5b:
fe:33:fa:b8:9f:99:17:90:38:a5:63:9f:89:c7:fd:85:27:fa:
fa:c3:c5:1a:4c:47:bc:b1:78:46:6c:d1:78:74:e0:f8:5c:55:
ad:48:c1:e9:91:4c:42:d2:0e:a3:48:29:ae:fc:8d:1f:ea:ff:
ca:03:74:ce:4d:64:eb:e4:da:78:e4:87:e6:d5:5a:5c:0e:23:
af:f1:9c:8f:03:52:c9:8f:3e:ee:bd:81:cc:d2:6c:da:dc:42:
6c:ac:27:15:b8:e2:9a:4d:3f:ba:c2:d6:ce:9d:5c:c2:e7:1d:
c5:34:c4:f1:f4:23:c6:53:b7:b5:02:a1:b8:79:64:c1:12:2d:
3a:33:3d:c3:14:93:dd:c8:38:a9:c5:34:1b:07:86:16:0a:8b:
7a:c9:6c:80:0c:f6:f6:3c:51:8c:96:bb:36:3e:c1:9c:df:1a:
01:43:22:07:60:80:c7:51:f4:ca:65:e0:6f:36:96:db:8b:0d:
e6:f0:64:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-ams.rpki-client.org