Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/uBBdedKe2dM76HT7YOW_NHGUh9s.roa
File: uBBdedKe2dM76HT7YOW_NHGUh9s.roa (raw, json)
Hash identifier: gEXpHGgf07bqTvt3jh+aM+hTLaa+dUDoTNM86MiFZPw=
Subject key identifier: B8:10:5D:79:D2:9E:D9:D3:3B:E8:74:FB:60:E5:BF:34:71:94:87:DB
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0187A756E1F2DA24E8F95DF683B9546AFAD6
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/uBBdedKe2dM76HT7YOW_NHGUh9s.roa
Signing time: Sat 22 Apr 2023 05:01:41 +0000
ROA not before: Sat 22 Apr 2023 05:01:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 194.15.96.0/22 maxlen: 24
188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 09:36:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a7:56:e1:f2:da:24:e8:f9:5d:f6:83:b9:54:6a:fa:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Apr 22 05:01:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8105d79d29ed9d33be874fb60e5bf34719487db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:66:0e:f8:15:ce:62:05:f0:10:26:79:c7:da:
7a:a7:c0:0a:2a:f7:bd:7d:9d:99:be:c0:b6:40:70:
24:93:8b:d0:e9:22:d9:4f:c6:8f:10:ea:21:50:f4:
be:74:d2:39:17:58:fe:07:1f:6b:89:0d:89:2d:b0:
5d:5c:9f:8c:04:85:67:4c:7c:21:c5:79:a8:c6:ed:
a2:a7:47:23:5c:af:9f:89:81:9b:96:b3:e4:28:2b:
61:b5:31:11:17:6d:b9:90:36:91:37:4f:bf:48:39:
3c:a8:23:3e:91:db:0d:90:e2:34:26:00:77:66:20:
7a:44:cb:82:fd:5d:7f:8d:1b:d2:11:b5:4a:e8:c0:
e6:09:04:49:46:f7:61:f3:2c:78:6d:34:ba:b4:d5:
62:9a:ea:f4:e7:20:42:4c:6e:18:68:28:a2:39:01:
b3:4b:f1:14:3c:37:10:5b:bb:6b:1d:8a:1e:30:08:
09:2f:4f:97:4d:0a:4e:16:2e:e8:cf:0e:d0:72:cf:
97:51:61:5f:23:77:48:d3:2f:60:08:49:cd:cd:7a:
4b:10:49:7b:40:ad:7c:72:83:0e:5f:63:62:f2:02:
50:81:f1:55:70:73:16:76:50:c6:f8:59:5b:d6:da:
cc:64:8c:bd:af:df:43:25:94:55:38:4b:ef:25:85:
f2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:10:5D:79:D2:9E:D9:D3:3B:E8:74:FB:60:E5:BF:34:71:94:87:DB
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/uBBdedKe2dM76HT7YOW_NHGUh9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
194.15.96.0/22
Signature Algorithm: sha256WithRSAEncryption
22:71:0c:1d:8a:54:1d:ed:95:59:a1:69:51:88:87:99:9c:fc:
c8:46:14:18:62:7e:5d:19:74:f7:ed:74:f7:5f:ac:1d:a9:f0:
f7:cc:87:41:ce:9b:03:9b:ac:66:a5:19:9e:0e:18:7a:59:fa:
b4:20:a0:3f:82:1d:af:78:ed:67:56:00:cb:53:e5:62:e0:4f:
94:33:10:f9:ea:3e:e2:5e:08:9a:b0:f8:26:1a:55:46:69:12:
7c:c0:80:48:db:4f:8b:1a:c7:66:30:87:c9:38:ea:9e:57:7c:
78:e4:e9:d6:d8:c5:39:01:a1:66:b5:31:81:dd:13:b3:95:c4:
92:b2:bd:33:8f:5c:c4:dc:5f:fd:e0:ee:8a:de:47:41:b6:12:
20:33:92:c0:52:eb:ac:52:e3:cb:ce:4a:50:5e:62:68:8b:0a:
18:7b:ba:0b:45:e2:b2:76:b0:a4:e1:ac:77:c2:91:85:73:62:
12:0e:cd:c7:26:f5:5f:ab:8c:de:d9:16:ae:ef:a6:cb:72:c2:
d3:6f:39:b4:98:ee:cb:e2:41:5a:d5:5f:ef:41:cc:24:03:ed:
42:5e:86:57:81:97:5b:f1:c1:e6:06:73:37:f2:16:84:7a:71:
f8:8e:06:e3:97:b6:f6:c7:79:ed:b2:f6:b3:8e:aa:23:46:43:
28:5a:8d:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org