Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UIM75sWAyJsHzrph55SP7ah8tCg.roa
File: UIM75sWAyJsHzrph55SP7ah8tCg.roa (raw, json)
Hash identifier: KF25kDe2nIZMtoaMJgxh1iamMDlzTVSMvI70bIP/gy4=
Subject key identifier: 50:83:3B:E6:C5:80:C8:9B:07:CE:BA:61:E7:94:8F:ED:A8:7C:B4:28
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0185734CB8C595362FEA6AE129BF9948C3C1
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UIM75sWAyJsHzrph55SP7ah8tCg.roa
Signing time: Mon 02 Jan 2023 16:24:45 +0000
ROA not before: Mon 02 Jan 2023 16:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200682
IP address blocks: 212.161.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:b8:c5:95:36:2f:ea:6a:e1:29:bf:99:48:c3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 2 16:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50833be6c580c89b07ceba61e7948feda87cb428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3f:4e:d1:d9:aa:c8:41:8d:47:bc:55:c0:76:
de:3c:b7:12:d4:1a:55:b3:c7:bc:2b:d8:c8:4a:5f:
55:cd:4e:45:37:e9:b8:e9:6e:b6:c7:8b:80:85:04:
6b:3c:73:52:d9:aa:f3:24:70:95:cc:a2:26:c5:4c:
f1:00:12:4b:ee:ba:3c:3b:a9:8f:ae:b8:3d:5b:22:
d6:34:7f:2f:70:e4:e1:c0:f5:be:b5:08:90:42:4a:
6c:6b:d4:6d:fb:6b:d8:72:b0:14:fe:2b:fb:22:3e:
6a:07:b1:28:cb:ea:37:4a:87:a7:a7:b4:9d:19:d1:
fc:b5:b8:5f:4e:f3:e9:4e:8f:5c:5f:88:ab:7f:c6:
25:c2:c6:14:74:07:47:de:ed:b2:2a:d2:ee:0e:f0:
5b:fa:2a:8c:f7:03:76:fa:3f:38:f5:97:d1:b0:f9:
a3:ac:ae:3d:05:51:01:a8:60:59:b4:06:c4:51:f4:
1b:a2:d8:0b:71:46:95:d5:e2:1b:25:34:de:15:d3:
ca:13:ed:e0:fd:d8:26:4a:71:df:5b:41:03:90:1b:
9b:5d:55:9f:bd:fb:53:0f:7f:11:b9:98:56:c6:61:
bb:25:50:fa:38:71:de:9c:02:a1:92:4c:45:81:b4:
04:2a:2b:62:57:b1:d7:d4:19:c3:22:29:fd:82:b5:
49:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:83:3B:E6:C5:80:C8:9B:07:CE:BA:61:E7:94:8F:ED:A8:7C:B4:28
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/UIM75sWAyJsHzrph55SP7ah8tCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.161.59.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:83:5e:e5:a4:37:7e:4e:4f:e1:6d:48:46:6d:31:a2:55:c0:
b9:9a:fb:0b:b9:67:dc:e4:54:c2:69:1a:14:dc:f0:4a:ac:0e:
84:44:50:c5:c2:b0:e7:76:79:61:d5:73:6d:5b:75:50:e1:7f:
44:1b:54:61:c9:d1:8c:8b:65:bf:d0:81:27:df:3c:df:2a:a0:
8e:af:3d:cf:dd:a3:80:66:c1:95:5d:e9:d4:cb:b9:71:c5:f0:
8f:04:1d:4d:25:7f:4d:65:05:9d:23:a2:98:b1:d8:aa:36:3d:
7f:96:ec:8f:08:f1:3e:9f:6f:23:57:18:6a:f9:2e:4f:94:80:
f9:83:72:c6:00:1d:17:1d:8a:85:63:9d:d4:05:e1:d0:65:9c:
d3:23:f3:1d:d6:ac:88:c4:ae:38:e1:3e:86:16:d1:09:16:0d:
4f:4f:c7:2e:e1:4b:c5:5d:38:0b:7a:db:f8:ac:47:62:b9:fd:
de:b2:99:13:2f:ff:19:79:b8:86:48:5b:1e:8a:f1:63:ff:0c:
33:21:24:f7:7d:1f:d0:7f:74:e1:d0:7c:6f:45:a3:2a:6b:00:
16:a6:d4:aa:56:e2:b9:4d:02:b3:41:b2:8f:af:8f:f7:bc:f8:
3f:1e:8f:57:93:86:f2:19:31:e3:76:18:71:b8:36:34:0b:dc:
8d:70:e8:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:42 2024 by rpki-client on console-fra.rpki-client.org