Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/uBmB5_NLOzA3BU5OdRn8yB-O_lw.roa
File: uBmB5_NLOzA3BU5OdRn8yB-O_lw.roa (raw, json)
Hash identifier: 4nnCDG5C27y675ZNROnmdoEttQgWZWskXk+kbLQm+Tw=
Subject key identifier: B8:19:81:E7:F3:4B:3B:30:37:05:4E:4E:75:19:FC:C8:1F:8E:FE:5C
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 01856C53D11899E0ADCF93C5B0609A0417A1
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/uBmB5_NLOzA3BU5OdRn8yB-O_lw.roa
Signing time: Sun 01 Jan 2023 07:55:10 +0000
ROA not before: Sun 01 Jan 2023 07:55:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212260
IP address blocks: 213.135.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d1:18:99:e0:ad:cf:93:c5:b0:60:9a:04:17:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 07:55:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b81981e7f34b3b3037054e4e7519fcc81f8efe5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b1:47:f4:38:6e:69:de:45:12:b6:6a:58:45:
50:3b:0b:79:8a:2b:3b:5e:68:4f:3e:ac:6e:58:9b:
c3:80:fb:5d:81:7e:e1:37:03:f1:78:1b:f6:1c:ce:
ff:5a:d1:e1:4f:79:02:c7:ee:7a:bf:44:91:3f:27:
10:0d:ad:ae:02:1f:e1:4e:22:8c:e4:83:12:8c:c5:
dc:ef:a8:78:05:f8:8a:5a:17:b2:24:09:bf:33:b7:
5e:cf:7e:bb:96:3b:2b:64:39:92:6c:98:6e:0d:d7:
f6:fd:7d:6e:4d:d8:e8:b8:a9:08:14:5e:34:fc:2a:
a0:a0:5d:dd:a3:18:d5:ca:f6:73:88:76:d0:15:73:
89:e5:04:11:74:1a:f6:48:27:9b:cc:a3:48:1e:6c:
9b:a6:78:d9:17:32:ea:90:9a:55:a6:45:f3:e5:da:
8e:64:a8:73:87:45:ea:41:ff:3d:3f:2a:db:c0:f0:
dc:20:f6:53:24:3d:e1:9b:8c:51:72:17:8c:29:b6:
d5:f1:aa:11:7f:65:68:4e:c4:78:95:73:70:3e:96:
b4:e0:10:84:a5:e2:fd:80:07:67:62:e2:b8:65:e7:
ab:0e:56:a4:e8:17:ef:84:7d:25:20:23:de:5a:89:
7d:a9:bb:49:65:f3:46:4e:7c:06:56:98:91:75:af:
0a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:19:81:E7:F3:4B:3B:30:37:05:4E:4E:75:19:FC:C8:1F:8E:FE:5C
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/uBmB5_NLOzA3BU5OdRn8yB-O_lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.66.0/24
Signature Algorithm: sha256WithRSAEncryption
91:af:77:d5:98:a1:dc:14:69:bc:b3:d3:39:5b:38:a9:57:54:
dd:46:29:96:15:fe:2b:b7:a2:7f:ad:87:3e:6e:2c:4c:93:e6:
b4:b8:66:60:43:e2:17:04:f8:01:c4:f5:60:ed:38:cd:e1:00:
21:c4:07:d8:c1:a8:4e:7b:1b:8c:b5:97:57:c9:84:63:c1:14:
4e:5c:f5:d4:d5:6b:45:62:4d:0d:76:0d:38:25:f1:f8:5b:19:
89:a0:8a:c7:87:00:49:5c:88:22:c9:3f:25:1c:ad:58:99:e0:
41:d8:1d:9f:26:77:b2:59:f7:15:bd:c9:e4:86:1c:7c:96:05:
36:1c:35:cb:d1:1c:93:0f:ec:0c:a4:bd:a5:fd:1e:ca:40:4b:
1e:1a:0e:19:01:c3:b9:a3:b2:58:b3:c7:c5:7e:21:ac:69:fb:
98:60:b0:b2:8a:15:7d:65:b4:5a:b7:16:99:37:5b:8c:59:6a:
a6:06:81:b5:09:c1:38:e1:a6:a8:d4:43:77:b0:76:9c:97:ed:
5c:f0:86:2b:10:38:11:cd:1b:19:6e:52:7d:6c:e7:87:97:8f:
c8:b6:54:7c:1d:0b:7a:75:e5:7b:ca:d5:bc:b7:85:33:dc:68:
91:ba:51:5d:10:85:69:51:44:a0:88:39:39:11:8e:9d:42:56:
be:91:34:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org