Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/4040ee-07bd-43c4-8508-0583941eea71/1/uted0rkOa_MsQcYRn_FqRHJgiCM.roa
File: uted0rkOa_MsQcYRn_FqRHJgiCM.roa (raw, json)
Hash identifier: qe4rOBUdPOx2GrD11R5bOk0/Qp1wn1l20ExAGwplujc=
Subject key identifier: BA:D7:9D:D2:B9:0E:6B:F3:2C:41:C6:11:9F:F1:6A:44:72:60:88:23
Certificate issuer: /CN=bf5ebfe458c8990700f04c01b1132e3a37623de5
Certificate serial: 01857155500EAF4D64CA25D80A16A5CE2E28
Authority key identifier: BF:5E:BF:E4:58:C8:99:07:00:F0:4C:01:B1:13:2E:3A:37:62:3D:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v16_5FjImQcA8EwBsRMuOjdiPeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/4040ee-07bd-43c4-8508-0583941eea71/1/uted0rkOa_MsQcYRn_FqRHJgiCM.roa
Signing time: Mon 02 Jan 2023 07:14:54 +0000
ROA not before: Mon 02 Jan 2023 07:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 131.224.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:50:0e:af:4d:64:ca:25:d8:0a:16:a5:ce:2e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf5ebfe458c8990700f04c01b1132e3a37623de5
Validity
Not Before: Jan 2 07:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bad79dd2b90e6bf32c41c6119ff16a4472608823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:88:0e:fd:51:bd:1d:ac:c4:50:66:62:16:8f:
b9:fa:58:6a:28:81:76:22:2b:4f:92:31:e2:21:82:
c6:42:76:c0:61:62:eb:e3:a9:b3:ec:cf:94:65:d8:
fb:dd:7a:6c:23:cd:3e:34:19:ff:ac:92:44:2e:7b:
74:03:07:57:68:96:78:6d:7c:7b:00:f1:f1:d4:09:
3b:c4:9e:8e:ca:bd:43:a6:49:ba:c9:5e:70:08:3e:
78:dd:38:e4:64:2b:50:e8:30:8a:1b:36:73:46:a6:
10:64:cf:39:26:63:42:e9:4c:8c:32:be:1c:fb:b8:
88:d0:17:54:3c:70:5c:18:e6:a7:92:36:a6:41:38:
6b:b4:99:7a:4b:c1:db:6e:f1:0d:99:f1:a4:92:2a:
62:9f:d1:2c:59:bf:e2:2c:23:1b:91:5c:21:10:99:
60:29:31:e9:7d:75:61:80:96:47:f8:8c:9c:bf:c3:
06:a5:c5:2f:6f:21:9c:fc:c4:6d:d4:99:8c:91:30:
d7:c1:32:6d:f3:1d:0d:e2:a8:78:75:e1:d5:a6:4e:
88:33:a4:10:98:21:49:37:9b:46:d3:59:bc:6b:bf:
dd:85:d3:15:f3:93:e7:ff:ab:22:d6:ec:bd:58:10:
9b:a5:85:f3:38:83:f2:fc:ee:83:a8:b5:6e:c8:d8:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D7:9D:D2:B9:0E:6B:F3:2C:41:C6:11:9F:F1:6A:44:72:60:88:23
X509v3 Authority Key Identifier:
keyid:BF:5E:BF:E4:58:C8:99:07:00:F0:4C:01:B1:13:2E:3A:37:62:3D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v16_5FjImQcA8EwBsRMuOjdiPeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4040ee-07bd-43c4-8508-0583941eea71/1/uted0rkOa_MsQcYRn_FqRHJgiCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4040ee-07bd-43c4-8508-0583941eea71/1/v16_5FjImQcA8EwBsRMuOjdiPeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.224.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:cd:3d:8d:2f:02:29:45:15:2e:f6:ea:01:21:2a:a1:e2:ea:
89:4b:e2:c9:fd:1e:f7:03:df:16:41:4a:ee:98:c4:78:18:dd:
78:27:2c:30:c0:b6:71:1e:d6:1f:83:55:d7:ea:70:b4:62:b5:
2b:98:c9:f3:e5:1f:25:9b:d3:31:43:21:60:c9:de:7c:0d:f6:
fd:84:ea:ba:d7:9d:0e:d6:1e:c4:d3:50:75:e6:ad:bf:10:07:
42:f4:6d:89:3d:23:17:9e:1d:c4:74:d7:23:03:10:cb:7c:8f:
2f:fe:8e:50:e1:c8:66:97:ac:7c:1c:f4:7a:00:44:02:28:56:
3f:fb:e8:bd:45:6e:d9:2b:25:8d:e8:7f:18:87:f3:30:6c:da:
2a:ea:e8:14:03:43:84:c3:70:11:5e:c2:75:25:f4:d9:e3:8a:
e8:20:56:d3:7d:b0:26:92:88:08:de:ca:ab:be:98:bb:3a:06:
0a:21:54:9c:3a:09:4c:38:de:75:96:2a:32:9a:96:97:7e:16:
87:b1:fe:38:77:2b:0b:f5:e1:cc:b9:76:43:ef:69:75:eb:07:
db:38:fc:2e:17:4b:8d:08:37:87:2f:74:7f:da:eb:6d:ea:5f:
0a:97:ef:49:64:a2:23:02:76:50:39:6d:28:63:bf:2f:04:81:
98:9c:05:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:45 2024 by rpki-client on console-fra.rpki-client.org