Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/5872c2-d53e-48aa-b581-bb44a828cea7/1/uzu7n_vq1eq4mLY9SoAMXdnrFy0.roa
File: uzu7n_vq1eq4mLY9SoAMXdnrFy0.roa (raw, json)
Hash identifier: +va3oHy8pE9+6OTbhny4HcPgCXxf+UAOHkcTJFvmdE8=
Subject key identifier: BB:3B:BB:9F:FB:EA:D5:EA:B8:98:B6:3D:4A:80:0C:5D:D9:EB:17:2D
Certificate issuer: /CN=b5e97fbe67d95df6e4a8065e2675e040d6e80efc
Certificate serial: 018CB053253FD305F17FE1DE31FA7F53240D
Authority key identifier: B5:E9:7F:BE:67:D9:5D:F6:E4:A8:06:5E:26:75:E0:40:D6:E8:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tel_vmfZXfbkqAZeJnXgQNboDvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/5872c2-d53e-48aa-b581-bb44a828cea7/1/uzu7n_vq1eq4mLY9SoAMXdnrFy0.roa
Signing time: Thu 28 Dec 2023 12:08:08 +0000
ROA not before: Thu 28 Dec 2023 12:08:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201593
IP address blocks: 194.49.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:53:25:3f:d3:05:f1:7f:e1:de:31:fa:7f:53:24:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5e97fbe67d95df6e4a8065e2675e040d6e80efc
Validity
Not Before: Dec 28 12:08:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb3bbb9ffbead5eab898b63d4a800c5dd9eb172d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:66:3a:ac:c1:b3:0c:e1:43:d3:7f:56:74:d5:
02:61:1b:aa:26:c5:30:a7:36:d8:c8:01:1e:46:c7:
b9:66:96:8d:34:f8:46:58:b3:a0:fd:e5:36:1f:97:
6a:58:21:9e:99:83:4c:c8:fa:be:28:21:b5:0f:99:
a2:ed:25:42:ab:00:90:cf:78:9b:d6:ef:a6:c4:ff:
44:85:37:cb:92:cb:d0:c9:80:d3:17:27:c0:f0:d3:
4b:f4:37:c8:91:d6:db:01:c7:63:c8:c1:37:e8:60:
c5:b9:34:8d:85:56:ce:08:e4:d1:42:73:38:db:a8:
2a:34:94:8d:7b:ff:11:bb:fa:f5:39:9f:52:b5:ce:
06:95:60:97:5d:69:2c:0d:46:a8:6f:ec:28:ee:71:
f3:12:e3:b8:ce:cb:fd:52:bd:f7:cd:40:49:6d:19:
98:b4:73:df:fc:b8:c6:68:b2:59:ea:fb:6f:a4:31:
f7:64:fd:5b:43:43:21:42:1a:6c:6a:a2:f5:5b:b0:
d4:94:14:fd:16:68:2c:0b:f5:c7:0e:4b:c1:e9:d4:
30:44:a5:0b:5b:0a:de:f8:ec:8b:7b:fd:90:4f:8e:
fb:2b:ca:9a:27:0f:26:40:52:e2:45:ad:76:a7:44:
bf:04:5e:57:d6:7b:e0:3c:ff:3c:85:dd:3e:0e:0d:
00:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3B:BB:9F:FB:EA:D5:EA:B8:98:B6:3D:4A:80:0C:5D:D9:EB:17:2D
X509v3 Authority Key Identifier:
keyid:B5:E9:7F:BE:67:D9:5D:F6:E4:A8:06:5E:26:75:E0:40:D6:E8:0E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tel_vmfZXfbkqAZeJnXgQNboDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/5872c2-d53e-48aa-b581-bb44a828cea7/1/uzu7n_vq1eq4mLY9SoAMXdnrFy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/5872c2-d53e-48aa-b581-bb44a828cea7/1/tel_vmfZXfbkqAZeJnXgQNboDvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.127.0/24
Signature Algorithm: sha256WithRSAEncryption
15:72:86:15:5b:98:25:ba:6d:d2:70:4d:e3:c2:8a:40:f5:0a:
db:7c:3e:82:64:8e:4e:5e:74:f9:97:6a:2e:e5:f6:87:67:ed:
3e:a6:d6:38:0e:b9:ed:e0:6b:e6:ed:39:47:e8:ef:92:bb:10:
10:fd:fc:e0:98:ea:ff:69:cd:69:6d:57:05:5b:57:4b:c0:27:
2b:f6:3e:d7:9e:2b:63:2a:e5:b9:f9:3d:a1:e0:39:a8:f8:0a:
1d:29:8d:f0:e4:66:18:53:6f:73:1d:45:79:f8:26:e6:5e:1c:
58:12:2a:e7:76:2c:26:5a:09:f6:57:34:a1:e0:28:4f:a8:39:
00:4b:8b:84:d7:0b:d2:7d:dc:90:3d:ce:ff:9a:f9:88:bb:2c:
14:b4:2c:30:60:8f:ce:27:b0:d3:53:25:5b:f9:9d:aa:00:62:
3e:71:f4:d0:d9:65:e0:06:49:a2:12:89:17:0f:82:ef:1b:ab:
61:84:79:07:07:31:ab:15:0f:8e:54:3f:66:cd:2b:d9:9d:c2:
db:19:f4:31:22:07:86:b4:91:12:f1:2f:32:14:51:e9:bf:c0:
80:b4:a8:f3:87:33:ba:1a:67:09:23:f7:27:2f:c5:e3:a6:b4:
9a:8c:c3:4a:83:12:f9:af:e0:6f:2c:25:89:d2:81:2b:7a:69:
3e:c5:81:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:35 2024 by rpki-client on console-ams.rpki-client.org