Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/uXMyi9IXcyLRPJ8lvMKn-uTZiws.roa
File: uXMyi9IXcyLRPJ8lvMKn-uTZiws.roa (raw, json)
Hash identifier: nKK1d+DCoX6kOwl/TlE0XeNOVH8DQFWs5JFVRI5EGDo=
Subject key identifier: B9:73:32:8B:D2:17:73:22:D1:3C:9F:25:BC:C2:A7:FA:E4:D9:8B:0B
Certificate issuer: /CN=e35a056c8242971d1a90b0bfa98b1b7a93052884
Certificate serial: 01856CC1593E60AB52F862B47104BAAB7A51
Authority key identifier: E3:5A:05:6C:82:42:97:1D:1A:90:B0:BF:A9:8B:1B:7A:93:05:28:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/41oFbIJClx0akLC_qYsbepMFKIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/uXMyi9IXcyLRPJ8lvMKn-uTZiws.roa
Signing time: Sun 01 Jan 2023 09:54:48 +0000
ROA not before: Sun 01 Jan 2023 09:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57672
IP address blocks: 192.146.137.0/24 maxlen: 24
2001:67c:26b4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:59:3e:60:ab:52:f8:62:b4:71:04:ba:ab:7a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e35a056c8242971d1a90b0bfa98b1b7a93052884
Validity
Not Before: Jan 1 09:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b973328bd2177322d13c9f25bcc2a7fae4d98b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bb:62:50:48:35:a2:10:22:2b:36:a3:54:ce:
71:e2:af:89:e1:59:ad:1c:68:66:49:a8:bd:4b:d7:
30:43:bf:bd:80:34:bd:49:52:80:a8:2a:ca:4a:69:
47:ad:34:6d:1b:24:63:b7:c1:a2:c0:f1:c2:35:ea:
8b:3f:36:5c:f5:8c:02:ce:1d:53:50:6d:7f:2b:a0:
81:c9:f9:f7:69:54:98:e2:d6:7c:b8:c5:74:be:b9:
6d:d0:80:11:3b:bf:56:ff:75:2b:ef:61:5d:29:d9:
24:33:ee:3b:c5:a0:e0:14:35:00:40:cb:7a:37:3f:
f8:56:5d:8b:04:c0:1b:28:de:8c:80:da:c9:19:85:
d1:da:77:d6:78:64:fa:3c:3f:f3:46:34:80:88:10:
ff:0a:47:6e:5b:e5:b4:2e:74:29:31:2b:50:f5:f7:
22:28:1d:8f:3a:85:46:93:62:07:b8:1c:b5:c2:c4:
4b:57:7e:89:0a:96:a5:d9:c0:cb:20:4f:4f:df:31:
c9:ad:90:10:80:74:bc:75:d5:cc:77:12:40:da:72:
a6:c1:2e:43:54:86:9b:8c:ae:76:f1:73:c8:50:a9:
ee:65:0c:6d:ec:a9:b0:0e:e7:a0:44:e7:34:14:1c:
dd:df:bb:dd:74:ba:8d:93:78:98:51:11:70:20:8d:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:73:32:8B:D2:17:73:22:D1:3C:9F:25:BC:C2:A7:FA:E4:D9:8B:0B
X509v3 Authority Key Identifier:
keyid:E3:5A:05:6C:82:42:97:1D:1A:90:B0:BF:A9:8B:1B:7A:93:05:28:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41oFbIJClx0akLC_qYsbepMFKIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/uXMyi9IXcyLRPJ8lvMKn-uTZiws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8cd3ba-9d72-434f-8f82-aab4bd8fce9d/1/41oFbIJClx0akLC_qYsbepMFKIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.146.137.0/24
IPv6:
2001:67c:26b4::/48
Signature Algorithm: sha256WithRSAEncryption
a9:fc:0f:41:15:f2:3b:9c:21:8a:e7:61:e4:a1:21:4b:c9:63:
46:75:0e:f2:4a:65:8e:1d:21:95:e3:46:55:e2:48:f9:fb:34:
14:37:00:3b:18:22:1e:7c:49:ef:cc:56:3b:9b:bc:43:bd:3a:
88:7b:53:58:bd:41:1f:7e:83:4e:3a:86:6b:e8:41:09:de:3e:
87:d0:74:cc:c5:7e:45:6f:e5:17:3c:26:d2:9e:08:47:fa:43:
83:3d:87:64:ca:88:7b:8c:25:58:20:aa:30:63:12:dc:4a:85:
8f:a7:3b:73:d7:83:3f:13:f0:d3:c3:55:a9:b7:bc:a3:1c:eb:
b0:77:46:41:a0:29:74:38:ea:be:95:75:e3:09:25:46:13:6b:
77:01:d5:f4:c3:48:fb:3f:4a:9a:76:db:d1:30:9e:31:79:f4:
7a:aa:02:24:89:f9:f8:83:72:92:c7:9b:84:36:b6:90:8c:51:
1a:f7:3f:48:39:ce:73:28:16:97:49:b1:6d:11:0c:3a:f7:64:
df:fe:f6:4a:11:73:e4:0e:45:14:74:be:c5:0a:0c:c4:db:3d:
0f:af:4e:08:13:84:03:c7:8d:57:20:70:7e:1c:28:5e:f1:6b:
37:54:b5:ec:c8:84:27:b4:2d:34:bc:b8:a7:3f:c3:af:34:eb:
a5:61:13:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:34 2024 by rpki-client on console-ams.rpki-client.org