Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/uiIeDoe6BAyzoF_iui5qMP8_bdE.roa
File: uiIeDoe6BAyzoF_iui5qMP8_bdE.roa (raw, json)
Hash identifier: E4qb/P2F6UzRMXY8jKszb21kllB1+LdE7Ev+0LJAVsk=
Subject key identifier: BA:22:1E:0E:87:BA:04:0C:B3:A0:5F:E2:BA:2E:6A:30:FF:3F:6D:D1
Certificate issuer: /CN=4b0cde4c4f93299963680d6c4fc0604f7c84243b
Certificate serial: 01856ED4981AEEF25526920228E86DAA95FB
Authority key identifier: 4B:0C:DE:4C:4F:93:29:99:63:68:0D:6C:4F:C0:60:4F:7C:84:24:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SwzeTE-TKZljaA1sT8BgT3yEJDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/uiIeDoe6BAyzoF_iui5qMP8_bdE.roa
Signing time: Sun 01 Jan 2023 19:35:04 +0000
ROA not before: Sun 01 Jan 2023 19:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.43.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:98:1a:ee:f2:55:26:92:02:28:e8:6d:aa:95:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b0cde4c4f93299963680d6c4fc0604f7c84243b
Validity
Not Before: Jan 1 19:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba221e0e87ba040cb3a05fe2ba2e6a30ff3f6dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9f:65:47:91:a2:f2:fc:3d:b2:d3:2e:e9:61:
9c:3b:6a:f3:60:2b:84:d9:24:ee:a3:23:21:ce:7d:
e5:81:fd:47:35:67:a3:63:f4:50:63:23:17:5f:bd:
6c:f0:97:f8:9d:eb:7d:22:5b:9f:bf:b6:ca:2a:a8:
bf:10:99:b9:21:02:2e:4c:0b:87:af:f4:dd:1e:e1:
13:bd:8e:6d:c2:6d:3e:ca:dd:d3:13:b9:57:18:31:
e1:55:07:5c:7c:40:33:7f:08:8c:56:a3:1c:bd:00:
ba:40:e0:81:97:44:f6:df:0f:24:88:0d:aa:e6:0b:
41:6b:f3:4f:28:c0:5a:73:40:86:f2:f6:9b:6f:8d:
74:d6:48:21:02:e1:f1:2e:72:78:fe:48:7b:07:7f:
cb:ab:93:43:59:62:20:50:63:06:7a:e0:0f:ef:5f:
83:5d:7d:26:92:85:70:4e:3c:a8:a1:f1:7f:b4:da:
5d:d8:7d:94:b5:ef:da:72:32:62:d1:64:5b:57:26:
4d:64:a4:89:75:3e:10:5f:bd:5f:1f:2c:36:b6:2d:
7d:c4:3e:f6:2d:dd:7c:ca:c5:e6:cb:7a:db:30:8f:
79:f3:81:b5:5a:6b:5a:f3:b5:73:ac:96:e5:d3:72:
8d:2d:8b:5f:23:53:66:87:fa:c7:34:4f:9a:1b:0a:
f2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:22:1E:0E:87:BA:04:0C:B3:A0:5F:E2:BA:2E:6A:30:FF:3F:6D:D1
X509v3 Authority Key Identifier:
keyid:4B:0C:DE:4C:4F:93:29:99:63:68:0D:6C:4F:C0:60:4F:7C:84:24:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwzeTE-TKZljaA1sT8BgT3yEJDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/uiIeDoe6BAyzoF_iui5qMP8_bdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/6a3bb7-7067-42e8-8097-89620c25150e/1/SwzeTE-TKZljaA1sT8BgT3yEJDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.43.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:17:99:4a:1b:47:2a:de:3a:ea:e7:91:c0:24:9e:ae:56:fa:
29:55:e9:d3:19:cf:bf:e7:de:c9:44:be:a8:28:db:bc:84:29:
f9:dc:ac:7e:c6:b1:9e:50:cc:33:12:23:af:f1:b4:e3:3b:39:
d4:d7:25:ee:94:aa:84:b6:f9:79:01:73:08:0e:a6:62:a0:d6:
a7:15:5e:cf:06:f2:8d:e9:38:a9:54:de:21:72:90:fb:4e:1b:
46:a2:24:fe:26:7a:53:85:bb:db:f0:1b:b9:2d:ff:c0:73:1b:
18:9d:76:8c:69:50:e6:9f:ad:44:c4:2b:56:49:d4:4b:bb:a0:
89:d5:91:33:8e:b9:77:b2:f9:b6:9d:25:1e:16:5b:5d:16:46:
e6:e2:8f:a7:2c:00:08:cf:13:f8:1a:65:36:14:59:53:dc:6c:
34:b8:f7:9e:32:9c:c3:1c:36:dd:12:31:d4:70:05:c1:db:0c:
4a:1f:71:88:a6:13:fa:b0:76:c1:ca:8c:9a:04:1f:bc:6f:88:
40:52:27:09:88:e3:b1:56:9b:65:cb:d5:7e:4d:9b:2f:e8:d3:
68:5a:0f:6f:f8:b3:02:97:9d:d3:bb:15:54:20:d5:58:72:61:
3c:54:57:9f:a5:03:d0:cd:13:88:94:10:31:63:21:21:9d:48:
0d:ac:2a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:21 2024 by rpki-client on console-ams.rpki-client.org