Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/uRqxl6VtBjgXu8pJpW-yKCajCv4.roa
File: uRqxl6VtBjgXu8pJpW-yKCajCv4.roa (raw, json)
Hash identifier: aT7x9fPg5AoKj34Z4tF3aAr56ClI20axX3dKdeYdZ3k=
Subject key identifier: B9:1A:B1:97:A5:6D:06:38:17:BB:CA:49:A5:6F:B2:28:26:A3:0A:FE
Certificate issuer: /CN=bc903403c20a6cdb22366cc7acf48e9f99be34ff
Certificate serial: 01856D6F49F91FFA60BEF103529CD7AC3C8F
Authority key identifier: BC:90:34:03:C2:0A:6C:DB:22:36:6C:C7:AC:F4:8E:9F:99:BE:34:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJA0A8IKbNsiNmzHrPSOn5m-NP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/uRqxl6VtBjgXu8pJpW-yKCajCv4.roa
Signing time: Sun 01 Jan 2023 13:04:47 +0000
ROA not before: Sun 01 Jan 2023 13:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39385
IP address blocks: 195.254.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:49:f9:1f:fa:60:be:f1:03:52:9c:d7:ac:3c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc903403c20a6cdb22366cc7acf48e9f99be34ff
Validity
Not Before: Jan 1 13:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b91ab197a56d063817bbca49a56fb22826a30afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:c5:28:a7:e5:28:08:64:9a:d2:06:13:89:
1a:d9:3b:be:e3:6e:e7:c3:10:96:08:1f:42:d1:11:
0a:e0:8c:0b:da:7d:67:ed:ee:24:e1:f7:06:23:60:
ed:0e:ae:ac:80:be:a6:1d:aa:99:29:ec:67:a3:30:
2f:cc:c4:52:eb:b8:88:6c:34:d9:35:2b:bb:e5:86:
93:5c:a0:ec:c1:21:48:34:37:01:16:5f:8b:a6:16:
82:1c:d5:9c:ea:31:31:ab:03:83:da:71:2a:ca:34:
3e:f2:42:21:11:7b:d0:63:ff:5a:0b:62:63:82:5f:
c4:22:15:7d:13:34:9e:d3:b0:d1:35:f3:e3:20:8f:
29:f7:68:0e:15:08:f7:cf:b5:1e:4b:d4:31:cd:af:
82:53:0d:96:f0:c9:4d:a7:a4:d0:7e:a5:bf:53:8b:
71:b4:42:d3:93:ff:a1:a8:1c:cd:7f:b6:a9:99:a5:
d3:a6:aa:6c:8b:5b:e7:1b:a6:df:93:e9:d5:08:f7:
d2:96:db:38:11:e8:97:81:3b:0f:c7:a6:03:a1:47:
60:f4:25:6a:5e:5a:0c:21:85:41:ff:15:20:9c:16:
83:0d:3e:58:f4:6e:e5:de:c9:fa:d3:15:ec:7f:16:
a7:b2:08:eb:8d:e7:03:00:38:b6:1e:25:59:01:85:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1A:B1:97:A5:6D:06:38:17:BB:CA:49:A5:6F:B2:28:26:A3:0A:FE
X509v3 Authority Key Identifier:
keyid:BC:90:34:03:C2:0A:6C:DB:22:36:6C:C7:AC:F4:8E:9F:99:BE:34:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJA0A8IKbNsiNmzHrPSOn5m-NP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/uRqxl6VtBjgXu8pJpW-yKCajCv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d5e5cb-5b27-47f6-8acb-0350787225c8/1/vJA0A8IKbNsiNmzHrPSOn5m-NP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.133.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:51:d6:e3:ec:d3:51:85:4d:8a:10:30:2c:b4:de:74:fd:f1:
8d:fc:4a:2d:c7:8d:5f:58:8d:fd:85:7b:90:d6:a5:b6:71:45:
75:2b:f2:10:98:65:30:2f:e5:b6:05:f2:29:61:84:9f:af:c2:
dd:90:3b:bb:ac:16:a5:cc:4e:dc:f8:86:e2:c1:b2:30:be:25:
f5:a3:29:08:a0:ca:b0:e8:06:a3:1a:8a:27:74:86:0f:2c:ea:
a3:2b:a6:88:59:87:33:6b:84:73:99:1c:3e:59:8b:cb:e5:5c:
6e:84:a1:6b:64:8b:a9:8b:52:04:a5:10:56:42:c7:10:98:07:
3a:a8:15:00:41:ee:4d:43:98:4d:76:3b:04:36:b5:7c:68:74:
78:ee:e8:25:1c:12:60:46:b6:a0:27:f7:70:d7:25:bc:28:b7:
28:36:b8:5c:b2:22:2d:e5:4a:31:04:2d:d6:fc:5b:2e:8c:b8:
d5:b4:90:7d:93:eb:58:49:88:8f:c9:e0:df:d1:c0:96:0a:e1:
3b:42:8d:9b:d6:1e:80:3e:db:93:c4:ea:37:c8:bb:52:19:db:
49:c4:41:aa:cd:b2:b4:20:63:39:1c:9e:2c:02:bb:17:ae:1d:
a8:1d:85:4d:16:9e:2e:34:b5:1a:69:95:ad:43:e8:00:90:ad:
22:c2:c6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:31 2024 by rpki-client on console-ams.rpki-client.org