Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/41012e-7885-4f40-bdf4-3497ce1b71bf/1/UBBresiZtUDg1SRjqPP-dydhnI8.roa
File: UBBresiZtUDg1SRjqPP-dydhnI8.roa (raw, json)
Hash identifier: jCt3DmKbwuAUbQZNlcX58FIbFO7UDWdvpPZRmnq5nHM=
Subject key identifier: 50:10:6B:7A:C8:99:B5:40:E0:D5:24:63:A8:F3:FE:77:27:61:9C:8F
Certificate issuer: /CN=ee2259f158b9aa76aad0b1adfa62c1eed4559d14
Certificate serial: 018573716CE77410F10119FFF68BE734CC58
Authority key identifier: EE:22:59:F1:58:B9:AA:76:AA:D0:B1:AD:FA:62:C1:EE:D4:55:9D:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7iJZ8Vi5qnaq0LGt-mLB7tRVnRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/41012e-7885-4f40-bdf4-3497ce1b71bf/1/UBBresiZtUDg1SRjqPP-dydhnI8.roa
Signing time: Mon 02 Jan 2023 17:04:51 +0000
ROA not before: Mon 02 Jan 2023 17:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34476
IP address blocks: 45.139.200.0/22 maxlen: 24
212.102.103.0/24 maxlen: 24
2a0f:8c80::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:6c:e7:74:10:f1:01:19:ff:f6:8b:e7:34:cc:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee2259f158b9aa76aad0b1adfa62c1eed4559d14
Validity
Not Before: Jan 2 17:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50106b7ac899b540e0d52463a8f3fe7727619c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e7:8f:d8:58:3a:05:fe:c6:a8:2f:80:5e:9e:
46:a8:c6:c9:67:98:76:36:5b:50:da:96:cd:87:bd:
ec:69:51:e4:03:68:19:6c:d3:2a:68:48:ba:5e:b8:
48:5a:55:72:b9:59:50:87:fd:b6:2b:d1:bb:c3:85:
ab:5b:3d:c8:7c:24:62:cb:e1:6c:2b:ae:f7:15:33:
44:eb:96:e0:b8:fd:b6:00:da:7d:28:19:b3:68:a3:
99:69:3a:8a:36:03:45:0e:35:d4:82:e3:11:35:33:
30:75:61:4a:50:c6:6c:8a:17:87:ca:84:0d:4c:1f:
26:dc:9a:cd:f4:d2:b9:46:95:86:1f:ce:4c:f3:46:
f9:05:02:aa:e8:e6:61:11:b1:78:86:31:e9:b1:31:
ee:db:7b:cf:07:cb:13:76:38:6b:d0:fe:5d:47:83:
7b:8f:a0:53:14:08:2a:38:24:5c:dd:97:d6:bb:f8:
78:80:8a:ac:65:e8:6a:6d:57:f4:95:b0:d8:9c:d8:
4e:30:d3:2e:33:3a:56:12:7b:ce:11:5a:77:ea:9a:
8f:28:48:fd:a1:ca:c2:65:ea:d6:98:c5:ea:ac:0c:
d6:17:51:59:48:bf:53:18:c0:a0:da:12:66:93:bc:
a7:94:e0:28:7d:c7:60:cd:7a:a2:b7:67:fc:ce:3e:
95:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:10:6B:7A:C8:99:B5:40:E0:D5:24:63:A8:F3:FE:77:27:61:9C:8F
X509v3 Authority Key Identifier:
keyid:EE:22:59:F1:58:B9:AA:76:AA:D0:B1:AD:FA:62:C1:EE:D4:55:9D:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7iJZ8Vi5qnaq0LGt-mLB7tRVnRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/41012e-7885-4f40-bdf4-3497ce1b71bf/1/UBBresiZtUDg1SRjqPP-dydhnI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/41012e-7885-4f40-bdf4-3497ce1b71bf/1/7iJZ8Vi5qnaq0LGt-mLB7tRVnRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.200.0/22
212.102.103.0/24
IPv6:
2a0f:8c80::/29
Signature Algorithm: sha256WithRSAEncryption
5c:92:47:b2:15:ba:fd:59:0c:53:37:be:11:cb:6e:81:d6:11:
f5:b9:95:db:66:3d:a5:1d:46:78:c5:b3:0c:bd:39:f8:82:0d:
28:0b:a9:b3:c1:1d:1d:cf:9a:52:b4:fd:3d:bd:7c:7f:e8:8f:
bf:a7:18:9d:27:83:5a:ef:22:b0:ad:8f:bb:72:bf:5b:20:23:
46:f0:a5:2f:18:ae:34:42:4d:9b:34:6d:d8:c3:18:31:35:d0:
d7:54:4b:1d:0f:a8:e2:4b:eb:fe:ac:23:5f:b6:a9:05:d6:13:
c9:08:9d:cc:ce:71:27:35:9d:fc:6a:83:9d:e8:0a:d8:e4:18:
a9:a6:33:37:1f:f8:3f:e9:68:62:66:c5:4c:83:04:0f:d9:2e:
65:ab:2d:92:7a:bf:ce:e0:98:ac:53:fa:31:3f:00:a2:67:55:
cd:6a:f4:f5:ee:09:4f:82:99:f6:16:05:9d:14:d1:e2:37:64:
f4:03:38:f7:8a:56:92:ff:6b:40:ea:f7:fd:78:07:d5:5d:18:
75:f9:ac:34:95:46:90:a2:45:46:85:1a:54:9e:f2:c3:fc:21:
b1:36:8e:fc:d7:ad:22:b9:16:fb:94:05:39:29:8f:b3:62:cb:
71:d4:a4:c1:b1:90:b9:27:b7:d0:26:a3:9c:ed:6c:24:6d:4d:
e6:12:0a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:46 2024 by rpki-client on console-fra.rpki-client.org