Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/uiC0BuLxpH790b9DHMwCJNFnLX4.roa
File: uiC0BuLxpH790b9DHMwCJNFnLX4.roa (raw, json)
Hash identifier: MRj/PwyG4zWnCk5lZG+muOkHIbnDqDZmGfR61BlNUmk=
Subject key identifier: BA:20:B4:06:E2:F1:A4:7E:FD:D1:BF:43:1C:CC:02:24:D1:67:2D:7E
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CCA28714B59A7C6CB70E869AA48E241FC
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/uiC0BuLxpH790b9DHMwCJNFnLX4.roa
Signing time: Tue 02 Jan 2024 12:31:37 +0000
ROA not before: Tue 02 Jan 2024 12:31:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43754
IP address blocks: 178.239.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jan 2024 03:14:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:71:4b:59:a7:c6:cb:70:e8:69:aa:48:e2:41:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 2 12:31:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba20b406e2f1a47efdd1bf431ccc0224d1672d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8e:0d:a5:fb:4e:90:f7:0c:76:0d:33:6d:e1:
d2:34:98:88:24:23:3d:d4:5b:e1:71:73:99:41:cf:
89:de:3e:e5:91:08:1b:f9:f0:8f:03:0d:95:21:c0:
c2:d6:53:02:28:91:a2:02:19:a9:ea:58:58:96:e3:
4a:52:4c:73:bf:3e:9b:00:17:b0:03:67:bf:09:6a:
18:a7:ba:9e:40:6a:cf:de:78:3c:ac:ad:c9:bd:bf:
8c:6e:ce:17:0d:6a:04:47:f7:9a:80:9a:da:71:76:
1f:83:af:64:89:50:e2:e1:8e:b9:48:2c:22:16:c7:
25:c3:81:70:7d:3f:88:21:9e:fd:23:59:a4:0e:be:
1c:54:42:91:bf:0f:20:ec:69:ce:8b:e7:2e:a6:1a:
9b:b1:1b:1e:0e:3a:d1:8c:14:19:fd:d8:5d:1d:5a:
5d:16:12:de:ac:f4:14:c9:67:53:30:eb:50:fa:2a:
43:ff:34:23:0b:8d:b7:06:12:22:f7:2d:ee:dd:a9:
2d:22:07:67:19:ad:a3:a8:b6:76:25:ba:11:07:be:
f0:7a:c8:5e:1d:e6:7a:13:26:df:f3:9a:34:fd:6d:
50:0e:e2:54:f9:ee:7f:eb:1e:f9:53:5e:76:48:9e:
7b:4e:08:b2:72:48:23:04:39:86:57:65:c6:9f:9e:
d0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:20:B4:06:E2:F1:A4:7E:FD:D1:BF:43:1C:CC:02:24:D1:67:2D:7E
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/uiC0BuLxpH790b9DHMwCJNFnLX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.155.0/24
Signature Algorithm: sha256WithRSAEncryption
80:53:c4:11:f0:a0:b6:07:e8:16:fe:ae:f5:17:99:5b:d5:da:
dd:74:f1:9e:db:10:37:b0:2e:d2:96:5d:91:2e:00:67:89:34:
fa:0d:7e:de:ea:40:ce:46:c3:03:af:d9:27:ae:5c:42:6a:5c:
33:6e:ed:94:45:16:78:c7:95:0e:ac:26:ff:bb:ef:fc:83:bf:
18:31:9c:4f:4a:7a:4f:68:5c:3f:72:f3:3b:9c:01:96:73:10:
a8:2c:37:c2:bd:c8:bf:ed:ac:4d:77:9d:5a:42:39:fa:3e:4f:
c0:02:bc:49:43:1d:a8:3e:03:9f:b0:18:be:04:54:83:97:e3:
e7:a1:fd:f4:88:bb:eb:e6:be:3f:fc:67:ff:32:90:cb:22:ed:
47:d8:76:13:e4:62:b3:de:69:8a:91:94:08:9a:45:ae:7f:83:
f1:dd:7c:ff:a3:0d:7b:f4:f6:14:45:e0:f6:25:e1:03:85:16:
6a:51:70:ce:6d:50:1f:b4:03:d8:b6:a7:16:5c:05:8a:c2:e3:
b3:ef:11:9f:e9:15:39:ff:84:dd:9d:71:1c:2a:9f:8a:95:01:
29:27:e3:55:e0:8c:c7:a8:ae:3f:c6:d8:21:71:38:d7:ce:ce:
23:97:55:1e:ec:e2:a5:9e:cf:1a:13:cd:c6:16:8e:65:5b:43:
5e:cc:1a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:26:24 2025 by rpki-client