Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/uCZVtiYeXQGru0aUjuzBKnFy-Gk.roa
File: uCZVtiYeXQGru0aUjuzBKnFy-Gk.roa (raw, json)
Hash identifier: ew3wO4xS9O0YU8GmI8N9uE/NQye/2p0SWS3/ZwfrCDA=
Subject key identifier: B8:26:55:B6:26:1E:5D:01:AB:BB:46:94:8E:EC:C1:2A:71:72:F8:69
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018A894EFEC42505B90C3D702F3109355362
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/uCZVtiYeXQGru0aUjuzBKnFy-Gk.roa
Signing time: Tue 12 Sep 2023 12:12:50 +0000
ROA not before: Tue 12 Sep 2023 12:12:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198587
IP address blocks: 87.251.74.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:4e:fe:c4:25:05:b9:0c:3d:70:2f:31:09:35:53:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Sep 12 12:12:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b82655b6261e5d01abbb46948eecc12a7172f869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ab:23:c2:fd:c5:79:60:ac:a1:ee:87:b2:81:
5a:c2:a3:62:ba:e7:7a:a1:1b:90:fb:cc:2e:f0:e4:
a9:dc:82:0f:14:b0:9e:4b:a8:cb:1a:21:65:6a:39:
3b:98:34:c8:ef:70:6e:8b:3d:c3:a5:04:9b:ca:65:
ea:bf:58:64:1d:10:38:50:1a:69:0e:3a:c2:9e:99:
4b:90:fb:6c:6a:f4:ae:ec:05:ae:04:c9:be:4a:ec:
80:68:75:64:e6:15:e9:a6:88:22:68:b4:f5:cd:d2:
0d:d6:b5:ec:79:b3:31:9c:3d:35:29:0c:2e:5a:92:
a0:de:e1:fa:1d:56:f3:d8:15:f3:70:f8:00:37:80:
37:45:cb:69:45:30:2f:34:97:30:8a:34:7a:40:34:
f2:95:bb:e0:f6:d9:2f:a4:62:b9:6e:d8:df:ec:44:
06:40:8f:b5:77:fc:17:ae:56:6b:58:21:0c:86:7f:
dd:2e:88:9b:83:f1:91:c3:95:1b:f8:2f:17:4a:99:
80:3d:3d:d6:8e:c5:f9:94:8b:df:8d:24:e7:af:44:
26:70:e3:c1:d0:e8:bd:d3:75:b1:59:f9:a0:8c:93:
16:f8:70:5f:76:bf:08:58:7d:b6:78:c9:e4:52:a9:
c2:28:24:19:cf:95:dc:c0:0f:74:d4:e3:6d:26:7e:
bb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:26:55:B6:26:1E:5D:01:AB:BB:46:94:8E:EC:C1:2A:71:72:F8:69
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/uCZVtiYeXQGru0aUjuzBKnFy-Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.74.0/24
Signature Algorithm: sha256WithRSAEncryption
06:06:2f:5d:2d:72:4f:48:a2:43:e9:59:ee:b9:62:69:6a:f2:
cb:92:77:41:38:1b:72:50:97:e3:a9:ef:c7:4b:f2:e4:0d:cd:
f0:4a:e3:8d:2b:5d:5b:44:31:67:61:ec:47:3a:44:e7:82:25:
86:29:47:20:4f:20:79:66:64:d5:84:13:90:8d:05:53:84:c9:
71:00:ab:ab:ef:79:8c:39:5c:b1:ff:1a:0b:06:b4:98:48:96:
21:cc:aa:c8:6f:6c:a2:16:02:cd:ef:88:36:be:18:80:89:c3:
a9:b9:27:2f:79:74:95:d1:18:d8:a1:f7:c3:f3:b8:8f:a8:00:
77:56:1f:e0:55:1b:fd:39:0c:40:c3:d5:57:1c:e2:46:fb:79:
ef:7b:1b:b9:e3:17:6b:04:a9:9d:32:8d:7c:3b:83:a1:c5:d6:
76:21:dc:c3:51:7c:da:45:a1:91:f7:7d:4c:23:93:12:5b:e7:
4c:56:84:0f:cb:e2:e5:23:50:73:8b:41:64:6b:07:69:86:01:
38:30:a0:aa:1f:8b:03:85:a2:73:42:01:51:9f:0c:7c:b7:c2:
80:6e:8d:97:d1:8a:7b:fd:85:ee:6a:42:ee:09:4d:46:43:ac:
bc:c8:8a:fa:24:7d:4c:a7:9a:fc:2f:3c:8f:8c:51:51:e2:31:
77:c2:1c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:25 2024 by rpki-client on console-ams.rpki-client.org