Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/uzXzvN5bZ_a8AtDHhgdPCFuT5Zw.roa
File: uzXzvN5bZ_a8AtDHhgdPCFuT5Zw.roa (raw, json)
Hash identifier: hcQwk+2bnDFWNwjLidl3HuN/ZcVqibP81ybJ8z6oLBY=
Subject key identifier: BB:35:F3:BC:DE:5B:67:F6:BC:02:D0:C7:86:07:4F:08:5B:93:E5:9C
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 01856D0A91562F24C2F74F032FA2858E1212
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/uzXzvN5bZ_a8AtDHhgdPCFuT5Zw.roa
Signing time: Sun 01 Jan 2023 11:14:47 +0000
ROA not before: Sun 01 Jan 2023 11:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212829
IP address blocks: 193.36.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:91:56:2f:24:c2:f7:4f:03:2f:a2:85:8e:12:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Jan 1 11:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb35f3bcde5b67f6bc02d0c786074f085b93e59c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bd:80:68:6c:a8:d0:64:ce:ff:7d:48:5b:71:
7a:9c:0b:af:b5:fe:b7:6e:8d:ab:5c:85:d8:94:2e:
07:d0:a7:69:54:02:5b:73:43:26:a8:e0:ff:a4:eb:
55:92:34:c2:68:bf:47:5b:97:b0:4a:3c:e2:7d:75:
99:0b:39:f7:61:c9:90:bd:15:cb:10:3f:01:45:26:
f0:58:2d:f5:57:ed:6a:f3:2f:a5:5f:0e:78:ed:59:
b6:86:60:11:58:fb:cc:8f:bb:12:a6:69:84:9c:24:
1b:bc:84:91:b8:1b:26:90:7d:f9:27:92:b3:09:e7:
57:0a:4b:97:dd:34:7b:b1:5e:9f:d2:c1:b4:2a:a5:
c1:90:f3:0b:fe:d7:c5:5e:c5:9c:a5:cf:a9:86:55:
6a:83:ba:f4:a0:5a:3e:f0:7c:a8:20:21:ca:e0:08:
5e:d0:31:7b:45:7e:0b:c8:16:85:10:e5:81:25:6f:
4e:df:73:bb:94:71:de:6d:3c:5f:3a:8b:57:d3:fd:
59:75:43:fe:da:1c:81:58:26:8f:d3:38:86:6d:3d:
7c:de:d7:23:54:ec:c9:f4:96:51:b5:31:e6:27:50:
fd:62:fa:4c:b4:4e:c6:09:7b:b4:7e:75:0e:d3:47:
61:79:51:c5:76:5d:01:76:a4:73:fc:d0:b1:8b:19:
ca:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:35:F3:BC:DE:5B:67:F6:BC:02:D0:C7:86:07:4F:08:5B:93:E5:9C
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/uzXzvN5bZ_a8AtDHhgdPCFuT5Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.183.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:8e:1f:29:1b:7a:98:f1:d1:93:26:e5:b9:72:e7:2d:d4:bf:
cf:b8:3d:15:ca:9b:4f:29:29:30:c8:aa:a8:45:09:18:a8:4a:
3b:61:80:15:52:e9:59:82:d3:51:5e:11:1d:4f:65:11:4c:92:
a7:5c:27:49:53:0f:5c:d2:75:aa:5b:5c:e0:b9:c2:9c:a3:c5:
1a:ff:33:2c:8a:86:a7:3a:78:19:73:85:b9:c4:ad:8d:9c:09:
c4:f7:b7:9c:ca:a1:c5:27:31:09:92:93:62:e0:5c:94:99:fe:
bd:a7:03:58:3c:61:1b:da:e1:57:5b:1c:3f:24:8c:a8:62:27:
41:6d:d6:5a:82:07:1f:2b:46:3d:0d:96:23:84:ed:fe:bd:2b:
d1:79:11:2e:1d:1e:f9:28:93:e5:00:13:38:ee:8c:8e:f5:63:
6b:c8:32:9e:fe:5a:f4:06:5d:3c:df:61:74:6f:f7:77:12:c9:
97:e4:ef:cf:38:31:51:de:b3:bb:74:fd:c5:b1:73:59:85:e1:
df:04:36:d4:4d:47:55:9f:9f:81:02:a5:41:ea:ee:bb:85:15:
81:b8:45:12:83:2d:e7:35:db:a9:a6:1b:29:75:d6:92:1c:2a:
e5:7f:02:63:bc:5f:30:7c:98:59:2a:54:c9:21:24:e0:85:49:
34:5e:ee:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:10 2024 by rpki-client on console-fra.rpki-client.org