Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ug4b_Uk1d_-1LCUHIg1C_zoO5-k.roa
File: ug4b_Uk1d_-1LCUHIg1C_zoO5-k.roa (raw, json)
Hash identifier: r6Vzem4x/zOLxQMIXDGbUMw5ayQfU8tSky5rqS0hkOU=
Subject key identifier: BA:0E:1B:FD:49:35:77:FF:B5:2C:25:07:22:0D:42:FF:3A:0E:E7:E9
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01865F9F5D2F3084FA4B8A20B14B0D793DD4
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ug4b_Uk1d_-1LCUHIg1C_zoO5-k.roa
Signing time: Fri 17 Feb 2023 13:45:24 +0000
ROA not before: Fri 17 Feb 2023 13:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 194.36.32.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:9f:5d:2f:30:84:fa:4b:8a:20:b1:4b:0d:79:3d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Feb 17 13:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba0e1bfd493577ffb52c2507220d42ff3a0ee7e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3f:bd:5c:b2:da:20:cd:f4:90:57:df:9d:5e:
25:f3:ac:73:f8:d7:78:63:76:24:30:41:87:47:67:
e5:83:43:5d:b0:69:38:ce:d5:da:e7:b3:94:a3:a0:
ea:eb:ef:64:40:13:58:63:b6:7d:d2:c6:63:b1:23:
93:c8:6a:23:c8:67:9c:77:83:65:e7:64:ed:ce:e4:
c0:68:1b:37:4a:06:4b:68:d6:d2:eb:6a:69:dc:89:
76:6e:4d:0d:4c:f6:bf:70:87:c5:f6:8b:dd:8d:d0:
e6:a9:de:f1:ea:20:0f:0d:12:bc:0f:54:d5:37:9e:
79:5f:2b:80:e7:b5:d3:ff:48:d5:e2:46:fa:9e:a7:
e1:46:53:29:c2:22:b7:4b:b0:ea:39:45:ae:ec:64:
0a:d1:fe:b7:96:67:cc:11:90:3b:e2:b6:80:45:3a:
3e:01:95:82:3c:9d:0a:20:d9:c8:be:3f:ac:19:1e:
47:82:c7:1a:de:f1:8c:6b:53:f8:e0:ec:af:25:c9:
5a:3a:e8:02:e6:28:19:ab:cc:c9:bc:5c:e6:90:17:
a7:70:db:cd:75:62:0d:04:05:79:8a:ed:bb:60:6d:
e6:e3:30:cf:7a:a7:5c:fd:c4:14:dd:40:5d:5c:ca:
77:2f:06:bf:80:83:0c:4e:7a:08:20:2b:e4:c5:fc:
10:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:0E:1B:FD:49:35:77:FF:B5:2C:25:07:22:0D:42:FF:3A:0E:E7:E9
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/ug4b_Uk1d_-1LCUHIg1C_zoO5-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.32.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:e8:76:d3:75:7d:db:a1:9c:f8:17:4c:a9:4a:52:38:a4:1e:
86:53:30:ef:9b:c8:97:06:0a:0e:7f:e1:72:fa:84:5b:a0:99:
1d:92:62:80:f0:12:b1:62:c7:31:90:dc:94:60:10:3e:66:90:
2b:80:ad:97:a5:24:fa:63:e4:3d:06:77:2b:8a:5a:72:55:e0:
86:4d:73:79:09:6b:08:77:9c:be:b5:bd:19:0c:20:f5:cc:6a:
fc:9a:b7:67:0f:1b:73:6b:e9:74:b9:26:ee:b6:62:bc:c5:05:
32:34:d7:75:8c:00:2f:52:ad:c3:0f:23:77:9c:52:32:f3:18:
8e:a7:01:fe:27:d0:79:35:3b:8d:aa:3a:42:17:cd:e5:58:cd:
10:ed:72:82:19:83:f6:a5:61:c3:14:a5:65:2c:b0:0b:eb:25:
44:23:26:38:d0:86:72:95:71:46:46:e7:e7:41:46:38:0a:b6:
c6:3c:b6:5b:36:fc:6a:af:61:bd:7f:87:b4:a0:df:ae:cd:e2:
c2:e5:75:21:1c:fa:ed:9d:3a:0e:c1:b0:ec:2c:a8:89:ea:e7:
1f:aa:65:d8:b0:0c:e2:6a:8c:d3:8f:a9:c5:02:e9:b5:0f:14:
10:cf:4b:b3:74:9b:86:7e:b1:da:06:f6:3e:6e:2c:48:8b:12:
4c:3f:c0:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:50 2023 by rpki-client on console-ams.rpki-client.org