Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/UPKgYYS_rz2azymsCUfAE7yO-0c.roa
File: UPKgYYS_rz2azymsCUfAE7yO-0c.roa (raw, json)
Hash identifier: 38ohgHhSK5qqAf05RkCnmXW2QtSBVk9mjHZiPn9V7/g=
Subject key identifier: 50:F2:A0:61:84:BF:AF:3D:9A:CF:29:AC:09:47:C0:13:BC:8E:FB:47
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 018A5F71229C2FC927ECD098317B6ECF0600
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/UPKgYYS_rz2azymsCUfAE7yO-0c.roa
Signing time: Mon 04 Sep 2023 09:06:04 +0000
ROA not before: Mon 04 Sep 2023 09:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50771
IP address blocks: 178.218.16.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:71:22:9c:2f:c9:27:ec:d0:98:31:7b:6e:cf:06:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Sep 4 09:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50f2a06184bfaf3d9acf29ac0947c013bc8efb47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4b:9e:ee:14:ff:aa:53:91:94:76:dc:39:dd:
fd:5a:47:87:9d:2f:6f:0e:f3:53:4f:65:b7:29:15:
8f:53:a0:ef:9b:3a:6d:b3:20:13:2a:97:5e:66:7c:
1f:9d:36:b9:fd:97:11:d0:d6:1c:7c:69:32:c4:a3:
6c:06:8c:cd:8d:15:eb:f9:5d:94:6f:66:03:7f:cf:
21:c0:8b:4b:82:15:d6:a3:eb:1d:b3:40:01:d9:6b:
77:81:ec:86:81:a5:7b:2c:e4:60:a9:8f:40:bf:88:
3f:0a:45:e5:e2:15:12:8d:2b:ec:5d:0f:a9:6f:58:
bc:39:f0:03:62:ab:33:60:d6:5f:b7:3a:9e:8f:88:
05:bf:3d:8d:c0:0f:c2:3c:a8:11:83:8c:86:96:8e:
2f:d7:62:ca:d0:88:8e:32:2e:17:e6:57:16:c4:60:
fd:70:46:88:91:c5:97:e5:3b:da:e2:aa:48:19:93:
94:6c:68:09:d7:64:78:83:59:f6:66:d2:14:cb:bd:
85:46:cf:3a:a1:35:98:1f:c1:03:f3:e6:de:42:ac:
e5:64:04:22:45:af:f5:c3:c9:8f:77:11:9b:9f:b4:
3b:84:72:e6:57:27:0c:cf:b7:a6:bf:d3:de:19:13:
fc:d0:de:33:b5:f6:08:10:0e:3c:22:4b:64:7b:c2:
fb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F2:A0:61:84:BF:AF:3D:9A:CF:29:AC:09:47:C0:13:BC:8E:FB:47
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/UPKgYYS_rz2azymsCUfAE7yO-0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.16.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:67:31:3e:d8:7c:89:22:d8:b5:95:5e:1c:1e:e2:bc:61:62:
d1:3e:a1:9b:6c:62:2b:9d:d1:7c:00:bd:26:19:d7:3f:72:5b:
9b:d8:12:b5:d9:32:92:fd:6d:f3:70:c1:9f:0c:a4:28:b9:71:
c7:3e:30:f1:30:a1:bc:b9:fa:37:98:69:3b:c1:27:67:52:21:
ae:ad:9a:02:69:d0:bc:7e:80:d7:56:03:94:5a:1e:da:e7:fc:
7e:05:f9:ea:90:94:b0:2b:db:af:cb:14:fe:e1:ef:80:0f:a3:
cd:2f:9c:0e:36:b0:da:fb:8c:9b:7a:24:48:2a:3e:e1:cd:16:
e9:4d:8f:4c:54:59:86:b7:38:5c:05:54:9f:36:20:1e:ac:d7:
c4:2d:61:c1:9f:6c:06:52:3e:f9:45:3e:e4:14:f4:e6:6a:a6:
dd:f5:11:9e:db:f8:cb:61:6e:1c:56:7d:84:05:ef:33:43:14:
ad:0d:18:db:48:a2:1e:ea:01:72:a3:ec:a2:6d:1a:b7:e0:2c:
b2:eb:a9:d6:79:cb:ba:66:f5:ee:b2:0d:0d:6a:e0:e4:9e:4c:
83:b5:31:35:4d:d8:f3:23:9f:19:70:55:f7:6f:28:c9:44:fe:
8d:35:31:19:bd:b1:52:a9:91:ef:93:71:5b:63:78:32:96:0c:
af:97:5c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:49 2024 by rpki-client on console-fra.rpki-client.org