Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/uFfW2ZwcpSYKm9pqI2K47YI1b1Y.roa
File: uFfW2ZwcpSYKm9pqI2K47YI1b1Y.roa (raw, json)
Hash identifier: wjycTy48xmBZ2swuuaascq93mToYA2BMjU40BD9Yq2Q=
Subject key identifier: B8:57:D6:D9:9C:1C:A5:26:0A:9B:DA:6A:23:62:B8:ED:82:35:6F:56
Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Certificate serial: 018705B2AC6438B5C76A584E18A7F35E7FF0
Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/uFfW2ZwcpSYKm9pqI2K47YI1b1Y.roa
Signing time: Tue 21 Mar 2023 19:43:28 +0000
ROA not before: Tue 21 Mar 2023 19:43:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57797
IP address blocks: 193.22.129.0/24 maxlen: 24
2a12:8ac0::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 24 Mar 2023 12:59:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:b2:ac:64:38:b5:c7:6a:58:4e:18:a7:f3:5e:7f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Validity
Not Before: Mar 21 19:43:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b857d6d99c1ca5260a9bda6a2362b8ed82356f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d4:84:07:4f:00:c9:9c:21:85:5b:a3:86:2c:
b5:c4:c7:1f:6f:ab:9a:d4:fb:30:43:9f:62:09:88:
21:b2:9a:45:d5:d8:a7:8e:f8:75:ea:54:ce:41:b5:
b2:e7:68:7a:93:d8:14:c2:48:fe:e1:d6:f2:7f:a1:
7f:3c:f8:06:2a:91:12:a8:83:04:4b:ba:5e:0c:12:
40:7d:83:ea:09:0f:fe:17:95:14:da:b7:2e:a4:28:
96:5a:03:40:cf:6d:19:da:5b:67:d0:c3:ea:37:f9:
7c:99:29:56:20:49:de:3b:78:f6:62:2c:11:cc:6e:
e6:20:a6:45:1c:49:82:a4:b1:df:35:74:4a:c8:f3:
b6:62:65:46:1d:be:3c:76:a6:fd:47:b2:fb:9e:53:
40:7e:d1:53:ab:d7:8b:53:f0:45:e2:d6:2e:7c:89:
26:bb:1a:7b:42:75:fa:27:7c:3a:0c:b6:69:c3:6a:
9d:df:16:25:2f:b8:e8:e3:fb:80:90:96:09:a8:43:
8e:21:6c:08:64:a7:65:9a:48:c4:ea:a2:93:03:3b:
87:d7:36:22:6d:50:13:be:dc:af:11:a5:19:36:fc:
f0:d9:50:31:b0:96:f6:23:5a:14:9c:59:12:c7:98:
20:2d:30:74:c2:3e:f9:96:67:a8:f5:39:6e:1a:af:
62:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:57:D6:D9:9C:1C:A5:26:0A:9B:DA:6A:23:62:B8:ED:82:35:6F:56
X509v3 Authority Key Identifier:
keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/uFfW2ZwcpSYKm9pqI2K47YI1b1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.129.0/24
IPv6:
2a12:8ac0::/40
Signature Algorithm: sha256WithRSAEncryption
33:b8:b7:ac:eb:f5:ea:c8:5e:99:2c:cf:69:22:1e:03:ef:e3:
f5:43:8f:8a:c8:70:e7:c0:f4:98:f9:9f:d2:ac:7e:ac:13:4e:
6a:e2:95:3a:69:73:6b:ba:1a:e9:a5:41:87:59:dc:d1:55:30:
7c:e3:6f:f3:b8:85:59:18:9d:f2:2d:22:d5:11:30:d5:7c:e3:
14:0e:87:14:9b:dd:4f:37:54:a5:96:61:52:fe:05:0e:bb:79:
aa:3e:0f:2c:07:3b:ac:2d:04:3f:45:5b:0a:ab:5c:56:46:29:
42:97:c5:ed:ab:7e:d3:44:7f:57:01:fb:0f:a3:0e:50:eb:68:
a9:bf:15:3a:12:64:0d:ab:2e:24:3a:f4:57:34:d5:06:9c:43:
36:11:a3:e1:49:dc:04:a5:10:4d:14:73:52:c0:13:c4:98:fc:
84:67:6e:89:dc:08:44:c3:8b:19:64:a4:c5:7a:c2:e3:0e:33:
e9:29:49:e3:eb:d7:f5:94:0a:7c:7f:b0:fd:bb:13:a6:16:89:
e3:d6:9e:f9:70:af:fd:3e:ac:17:a1:1b:70:a0:45:14:a5:d2:
aa:a5:9e:6f:a9:b8:81:34:f5:79:44:c3:01:46:df:de:db:5c:
6f:1c:b4:4b:3d:b8:7e:f4:92:de:97:40:63:cf:c3:16:ae:e9:
fa:e0:f0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org