Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/uJ-PZ4zFlcYXaYYptWAFwTFZqiA.roa
File: uJ-PZ4zFlcYXaYYptWAFwTFZqiA.roa (raw, json)
Hash identifier: xrxTWeryuJfqe9P4h+RUHJpfHRE1j3I5CnhvLfxyc+w=
Subject key identifier: B8:9F:8F:67:8C:C5:95:C6:17:69:86:29:B5:60:05:C1:31:59:AA:20
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 01878624C8E36179F8A90B8750FF54FCE586
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/uJ-PZ4zFlcYXaYYptWAFwTFZqiA.roa
Signing time: Sat 15 Apr 2023 18:19:30 +0000
ROA not before: Sat 15 Apr 2023 18:19:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202251
IP address blocks: 2.188.224.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 15 Apr 2023 19:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:86:24:c8:e3:61:79:f8:a9:0b:87:50:ff:54:fc:e5:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Apr 15 18:19:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b89f8f678cc595c617698629b56005c13159aa20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:68:c2:ff:3b:69:99:21:cf:79:c8:7e:be:6b:
d4:c5:fc:9c:61:8b:b1:dc:1b:c3:f9:87:fe:86:51:
b7:ea:de:69:7a:ff:97:a5:59:73:24:e5:b8:fd:03:
ce:18:a1:cf:26:13:76:7e:95:48:61:37:66:2c:f5:
d8:0d:2a:d9:fa:b2:9e:0e:ad:ad:d2:fa:9e:0f:60:
e0:79:36:7d:89:38:0f:b9:10:4e:08:10:e7:59:a8:
17:70:d1:f8:2a:41:d1:bb:01:2b:21:b4:2f:3b:54:
1b:1e:05:2b:de:c9:38:d6:5a:f4:1f:aa:f5:38:f9:
fd:50:4b:3f:df:bc:26:e4:46:5b:2e:7b:a6:3c:52:
0f:85:4e:59:83:9d:c6:67:00:98:1b:6b:dc:9e:29:
ee:74:84:1c:ce:52:9c:07:b2:7a:73:d0:85:b7:4c:
33:bc:90:e8:e0:62:97:cf:b4:61:15:c4:77:0d:80:
01:f2:28:af:a0:2f:e3:61:c1:f1:61:99:55:7e:d5:
c0:c8:ee:eb:86:d7:f5:4d:d6:f4:40:04:6c:65:b1:
9e:42:05:3d:71:d6:cf:05:33:9b:48:13:9a:8f:2a:
10:34:81:25:06:d0:8d:a0:3e:98:54:81:72:2b:43:
a0:3d:94:6b:75:84:bf:b6:00:a1:e7:fb:68:53:00:
7b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9F:8F:67:8C:C5:95:C6:17:69:86:29:B5:60:05:C1:31:59:AA:20
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/uJ-PZ4zFlcYXaYYptWAFwTFZqiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.224.0/20
Signature Algorithm: sha256WithRSAEncryption
70:c4:20:4b:c3:75:c7:8a:e9:8d:01:93:43:04:62:00:d8:12:
1a:43:64:df:f8:93:c9:9e:bb:e4:82:22:aa:25:f4:eb:99:09:
f4:88:dc:ed:dd:57:90:2f:04:22:00:28:ea:77:83:44:ee:70:
76:3d:7a:de:82:6a:02:0c:df:05:fa:5e:30:a6:10:e4:74:7b:
e9:10:84:00:ef:ac:33:b2:85:a4:f5:66:54:b1:79:7d:b3:85:
4f:80:0e:20:e0:2f:65:a4:6a:4b:f7:e0:88:9e:15:cb:cb:a4:
0e:c5:6d:e0:c4:ad:d7:45:04:53:d7:95:d5:04:48:96:e7:75:
a7:19:01:2c:9f:68:67:b1:45:4c:43:0c:fa:98:4f:8a:ed:50:
f3:88:a2:96:83:59:9c:b3:0a:db:23:be:bf:08:d1:93:e0:38:
97:05:e5:c2:45:47:b8:0d:76:12:95:49:bb:8e:0f:df:77:fe:
2f:2b:8f:88:3c:c1:c4:b0:aa:fe:9b:4e:54:4a:24:2e:f9:18:
47:c4:3d:56:b6:fa:6b:46:5f:c1:7d:12:92:80:3b:84:3e:bc:
be:06:96:a0:e0:8b:8c:4b:ea:30:78:78:71:73:db:7f:fd:84:
b9:19:e2:04:6a:1c:aa:ab:62:4a:44:fe:4d:c2:ea:cb:ce:e4:
75:f7:7c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org