Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e8c264-be46-46f1-928e-48c10a978bd0/1/UBsmzeaoVeAocCSjEWEuewIEWWI.roa
File: UBsmzeaoVeAocCSjEWEuewIEWWI.roa (raw, json)
Hash identifier: QTRe4JnjYIeU4nhtw2B/JjX3F2iiHC8L9oix/lYto9k=
Subject key identifier: 50:1B:26:CD:E6:A8:55:E0:28:70:24:A3:11:61:2E:7B:02:04:59:62
Certificate issuer: /CN=ba443d86435578576b4231555a0ed213f522bef3
Certificate serial: 0187B2024142219BDA87BE02157C36677272
Authority key identifier: BA:44:3D:86:43:55:78:57:6B:42:31:55:5A:0E:D2:13:F5:22:BE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQ9hkNVeFdrQjFVWg7SE_UivvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e8c264-be46-46f1-928e-48c10a978bd0/1/UBsmzeaoVeAocCSjEWEuewIEWWI.roa
Signing time: Mon 24 Apr 2023 06:45:04 +0000
ROA not before: Mon 24 Apr 2023 06:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20914
IP address blocks: 80.76.0.0/21 maxlen: 21
2a00:ce8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:02:41:42:21:9b:da:87:be:02:15:7c:36:67:72:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba443d86435578576b4231555a0ed213f522bef3
Validity
Not Before: Apr 24 06:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=501b26cde6a855e0287024a311612e7b02045962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ed:e7:07:c1:fe:26:3a:5a:6a:6d:24:13:07:
3e:ad:0e:39:49:05:9a:b9:57:88:12:e4:24:7e:bc:
92:35:08:74:36:a1:9b:e8:47:4c:04:70:2f:99:28:
74:98:99:35:36:0b:33:53:76:58:e3:34:04:02:5c:
98:15:87:12:11:6e:85:95:a1:9d:82:2e:24:a4:07:
8f:c1:52:10:26:d0:cd:23:9f:29:9b:2e:91:be:f7:
2a:24:1c:97:09:df:06:90:e4:be:ca:47:64:d2:51:
73:55:ac:15:de:44:a6:af:58:e8:16:ea:bc:36:3a:
c0:96:25:5f:c4:29:70:2d:6b:cb:77:2c:03:3d:c3:
fa:96:bb:7e:dd:be:23:bd:47:2e:10:d5:7c:c5:e1:
3b:3d:d6:8e:0c:a8:66:9c:19:de:4f:04:29:fb:8b:
3f:55:57:0d:62:5e:4e:f6:42:8a:63:5a:0a:59:7a:
12:28:98:91:48:d9:e0:f9:3b:04:c8:5f:30:65:0c:
96:6e:b4:47:53:de:c2:f8:ff:07:8a:b2:46:34:e7:
02:84:0f:23:60:9c:3f:68:b6:39:ac:43:b6:d0:fc:
47:e0:1a:8d:48:f6:7c:8f:54:3b:2b:be:52:ef:4a:
8b:37:52:6a:64:9f:f7:f3:7e:62:43:1a:63:74:7e:
52:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:1B:26:CD:E6:A8:55:E0:28:70:24:A3:11:61:2E:7B:02:04:59:62
X509v3 Authority Key Identifier:
keyid:BA:44:3D:86:43:55:78:57:6B:42:31:55:5A:0E:D2:13:F5:22:BE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQ9hkNVeFdrQjFVWg7SE_UivvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e8c264-be46-46f1-928e-48c10a978bd0/1/UBsmzeaoVeAocCSjEWEuewIEWWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e8c264-be46-46f1-928e-48c10a978bd0/1/ukQ9hkNVeFdrQjFVWg7SE_UivvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.0.0/21
IPv6:
2a00:ce8::/32
Signature Algorithm: sha256WithRSAEncryption
6d:28:0a:98:ec:9d:b6:75:02:e5:43:b3:92:9c:9c:8f:5c:31:
18:9a:eb:75:ac:54:42:2c:d1:16:39:14:f5:f4:ba:00:1c:bc:
4d:cf:a2:c5:b2:ee:69:20:87:6f:98:76:08:05:8b:44:ca:38:
fe:57:c1:d3:2a:d7:ec:d9:ed:da:44:ab:6d:30:16:b5:21:25:
ed:b8:45:26:99:7e:c1:9f:12:32:6f:83:c6:d1:c5:6f:73:ff:
30:c5:16:dd:e7:f4:90:ac:5a:58:88:50:6d:38:da:a3:d3:e4:
9c:a8:52:7a:01:19:c3:7b:46:0a:93:48:c1:2c:12:58:72:ad:
60:51:06:20:47:cb:9d:ec:90:0a:48:8c:c0:95:21:cc:2a:f2:
f4:2a:59:4b:12:7d:6d:18:d6:35:5c:f9:cb:c8:16:fb:95:95:
a3:db:e1:62:81:e2:50:50:8a:02:95:d9:c7:32:e6:14:c3:15:
06:dd:46:ba:00:54:aa:08:cd:9b:95:d0:27:bf:c0:11:0f:00:
a3:e4:a6:53:59:e6:1a:a8:6c:4b:74:82:6e:1a:d7:28:f7:76:
57:2a:e5:01:f0:57:a5:70:83:93:d3:79:65:a2:89:31:0a:cc:
17:ba:40:4a:e1:c0:41:87:4c:8a:37:ff:80:d6:81:0e:e4:09:
77:c7:7a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:57 2024 by rpki-client on console-ams.rpki-client.org