Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b0cd2e-4864-4a34-82a5-e7c444346760/1/hBdwFq0KZwbMYU1p5Yc5Wvhaurc.roa
File: hBdwFq0KZwbMYU1p5Yc5Wvhaurc.roa (raw, json)
Hash identifier: 0rqcB0+u5vIxXbmQ6SEpSWu6nyApLggMmbTwLJZXuYA=
Subject key identifier: 84:17:70:16:AD:0A:67:06:CC:61:4D:69:E5:87:39:5A:F8:5A:BA:B7
Certificate issuer: /CN=50656cb4777d14b5eb264c6b032c8ba3756f2ae5
Certificate serial: 018572CCC035B3BE4D512D3DA8E0177E5018
Authority key identifier: 50:65:6C:B4:77:7D:14:B5:EB:26:4C:6B:03:2C:8B:A3:75:6F:2A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGVstHd9FLXrJkxrAyyLo3VvKuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b0cd2e-4864-4a34-82a5-e7c444346760/1/hBdwFq0KZwbMYU1p5Yc5Wvhaurc.roa
Signing time: Mon 02 Jan 2023 14:04:59 +0000
ROA not before: Mon 02 Jan 2023 14:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12335
IP address blocks: 212.53.32.0/19 maxlen: 20
2a02:2f8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:c0:35:b3:be:4d:51:2d:3d:a8:e0:17:7e:50:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50656cb4777d14b5eb264c6b032c8ba3756f2ae5
Validity
Not Before: Jan 2 14:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84177016ad0a6706cc614d69e587395af85abab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:29:db:f3:ba:8e:f8:e6:40:81:c2:27:b1:b0:
1e:9f:d7:b1:91:72:08:f8:60:4d:01:8e:d0:1b:8b:
dc:5c:b0:9c:42:1d:5a:09:d4:45:34:81:55:af:68:
33:26:32:93:8d:20:d2:df:cc:97:97:80:02:57:de:
20:56:c0:b6:27:c7:cb:e0:3b:38:ca:9e:65:52:48:
dc:62:64:ed:57:d7:17:b6:73:59:57:79:60:33:9a:
b8:71:a3:db:f0:62:15:09:03:02:ea:a5:ec:30:a5:
47:9f:ca:2c:45:24:cb:1c:22:c5:d0:d5:46:58:3d:
94:f6:23:79:fe:3f:e8:ea:52:03:2f:10:ae:6b:63:
1b:28:3b:71:df:a8:43:44:e7:c3:3b:67:4e:d3:10:
0a:9c:70:77:5b:3f:92:72:16:5b:ae:ad:a3:61:15:
5d:f8:78:69:09:56:c3:f2:da:8e:09:f6:c7:11:84:
0b:54:fc:1d:fd:9a:28:45:44:6c:86:aa:c4:e5:cd:
35:e2:4c:9c:19:e1:bb:f3:11:13:f7:66:99:e0:bd:
8e:12:b2:7d:46:99:94:b5:35:07:8d:38:6e:43:dc:
1b:c5:1f:f1:98:c3:a1:81:a3:a6:09:34:3f:2d:0a:
43:9e:18:44:5b:30:14:7e:99:18:2e:8a:6d:a4:3c:
25:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:17:70:16:AD:0A:67:06:CC:61:4D:69:E5:87:39:5A:F8:5A:BA:B7
X509v3 Authority Key Identifier:
keyid:50:65:6C:B4:77:7D:14:B5:EB:26:4C:6B:03:2C:8B:A3:75:6F:2A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGVstHd9FLXrJkxrAyyLo3VvKuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b0cd2e-4864-4a34-82a5-e7c444346760/1/hBdwFq0KZwbMYU1p5Yc5Wvhaurc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b0cd2e-4864-4a34-82a5-e7c444346760/1/UGVstHd9FLXrJkxrAyyLo3VvKuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.53.32.0/19
IPv6:
2a02:2f8::/32
Signature Algorithm: sha256WithRSAEncryption
1b:54:db:ca:e2:6b:73:4a:ee:ba:c3:1a:ef:ce:a4:eb:27:c5:
c1:85:2d:87:cc:77:f0:5c:65:28:a9:51:08:00:4c:28:ad:af:
64:3c:5f:89:2a:6d:e7:92:16:86:55:03:2f:85:2d:21:ba:49:
fa:6f:26:07:6e:f6:36:b8:8c:74:33:d6:e1:8f:6c:d4:3c:2a:
75:d0:18:7d:5e:72:a7:b0:43:ea:65:cb:2a:54:0a:cc:2b:9c:
69:79:30:71:81:5e:66:4f:eb:b2:87:8e:c3:84:cf:7a:96:37:
5b:9e:0f:3d:1b:52:56:ec:1d:93:6e:e2:1d:c4:0f:3a:90:da:
f0:f0:35:73:45:cd:44:cd:64:13:a8:f8:e5:69:b2:b1:8e:f8:
d0:94:91:5b:af:bb:7f:0d:72:aa:a9:f5:72:8b:78:cc:3f:a2:
0e:da:78:92:ce:69:3f:63:3a:42:a9:bf:45:de:05:a0:1d:f0:
54:aa:ff:30:a9:83:43:cc:a6:3b:09:57:ea:07:a7:4b:91:82:
b4:ba:47:05:91:81:78:52:51:1d:a8:7c:8f:cf:7f:62:ee:4d:
a8:05:11:b0:4b:52:30:b5:86:9b:8f:1e:8e:98:77:e7:bb:1d:
a9:ff:ea:da:c1:57:1f:65:1f:2e:74:40:4e:a7:4e:b1:16:7c:
8c:ba:50:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:13 2024 by rpki-client on console-fra.rpki-client.org