Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/U0ZCn4f5tUQxUYNqg8B9RpaM6Uc.roa
File: U0ZCn4f5tUQxUYNqg8B9RpaM6Uc.roa (raw, json)
Hash identifier: YO7Sn/MGhNVvdTRnTrKYBSVdV7R7gl5wewEx1tFb2bA=
Subject key identifier: 53:46:42:9F:87:F9:B5:44:31:51:83:6A:83:C0:7D:46:96:8C:E9:47
Certificate issuer: /CN=12d72718d155ac0e7d327f6384a2e4c95416d760
Certificate serial: 01856DDD58871321F9C5BEA656F84BB546A7
Authority key identifier: 12:D7:27:18:D1:55:AC:0E:7D:32:7F:63:84:A2:E4:C9:54:16:D7:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EtcnGNFVrA59Mn9jhKLkyVQW12A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/U0ZCn4f5tUQxUYNqg8B9RpaM6Uc.roa
Signing time: Sun 01 Jan 2023 15:05:00 +0000
ROA not before: Sun 01 Jan 2023 15:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51088
IP address blocks: 192.166.96.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:58:87:13:21:f9:c5:be:a6:56:f8:4b:b5:46:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12d72718d155ac0e7d327f6384a2e4c95416d760
Validity
Not Before: Jan 1 15:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5346429f87f9b5443151836a83c07d46968ce947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f5:8a:b2:0d:cf:bc:f0:81:d5:f1:ce:9c:9c:
84:29:04:e7:2c:95:8e:62:7a:f3:15:38:86:55:0e:
84:dd:6d:3b:53:5c:e4:4d:84:42:07:40:39:04:da:
09:22:6b:a3:c6:36:61:0f:2a:de:4f:39:e7:39:72:
17:d7:da:d3:32:d1:31:f3:2b:47:2d:88:b8:e1:51:
37:33:0b:86:f4:7c:e2:37:7d:4f:4a:96:04:97:34:
b8:67:d2:5b:c5:4d:c5:ae:10:a8:10:45:43:19:79:
aa:6b:0f:8d:2a:68:e9:a9:1e:ab:e0:6e:37:db:a9:
d9:c2:26:ab:49:77:84:53:9f:dd:18:f8:84:74:10:
11:0e:9d:f8:53:9d:53:8d:ad:cc:db:85:f9:66:d3:
62:2c:13:43:52:af:84:74:bb:67:c3:d6:f3:64:2e:
99:46:a8:88:f8:72:53:6d:09:17:bf:46:a6:73:84:
a9:44:4b:15:4d:b3:66:48:e3:42:6c:cd:dc:67:5a:
a7:8e:5f:3c:ce:e4:16:f3:da:e2:27:87:b4:37:24:
8d:49:56:58:a2:7d:a5:3b:13:27:07:d2:cc:72:59:
96:bd:f9:84:3a:92:fc:cf:7a:e6:50:61:93:38:c5:
5f:8a:4c:89:10:1b:e3:c7:7e:a0:71:34:1b:e0:69:
f8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:46:42:9F:87:F9:B5:44:31:51:83:6A:83:C0:7D:46:96:8C:E9:47
X509v3 Authority Key Identifier:
keyid:12:D7:27:18:D1:55:AC:0E:7D:32:7F:63:84:A2:E4:C9:54:16:D7:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EtcnGNFVrA59Mn9jhKLkyVQW12A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/U0ZCn4f5tUQxUYNqg8B9RpaM6Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/74f5b2-c7e2-4a7e-b6c4-58765f193fec/1/EtcnGNFVrA59Mn9jhKLkyVQW12A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.96.0/22
Signature Algorithm: sha256WithRSAEncryption
11:c8:35:a4:fb:b0:a4:a9:0b:91:62:92:9c:2c:81:b3:ac:a8:
fd:63:0a:9b:88:5e:0a:f4:20:95:ae:26:b9:20:85:34:29:34:
3b:0a:17:4c:42:96:1d:b2:4f:4e:f3:e6:9d:bf:a1:75:f3:45:
29:7b:3a:1f:ee:1f:e6:cf:ce:60:9d:8b:39:c7:ad:5a:a2:bd:
4e:09:6e:1f:cf:0b:8b:8d:36:27:d0:77:46:e9:a0:c2:a0:da:
e2:79:eb:50:f7:fa:17:bf:92:e1:45:ab:53:29:f9:90:5b:b1:
98:81:9d:be:d9:33:10:dc:94:85:4d:30:39:b3:c9:c9:ec:10:
26:f6:53:8e:13:1a:a8:d3:60:78:dc:e8:1a:c8:56:bc:f1:e6:
70:c8:b7:f0:9d:1b:b5:d6:75:49:72:60:12:2d:a3:4b:5f:2f:
ac:9a:fd:9f:0f:3b:30:d0:e9:b5:e4:96:8c:e8:31:4f:85:d6:
b4:a1:cd:df:fc:82:27:e1:3f:0b:f4:86:6f:58:fd:bc:06:f9:
d9:49:40:13:f4:90:f2:d0:7c:59:83:97:dd:20:9b:5e:fd:fd:
b7:37:09:65:e9:b8:67:8c:66:4b:9a:18:c1:8d:ec:a1:ce:20:
b6:3c:98:62:a0:84:0b:78:ed:32:cc:36:5c:d1:1c:f7:71:c1:
f6:8f:1a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:08 2024 by rpki-client on console-fra.rpki-client.org