Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/UZtyes_ObBOWAuoh8x4NV0kZhj4.roa
File: UZtyes_ObBOWAuoh8x4NV0kZhj4.roa (raw, json)
Hash identifier: /J8tDDM9/D0pUWI25teUSiLSKbun+3JhswrW5YemWzo=
Subject key identifier: 51:9B:72:7A:CF:CE:6C:13:96:02:EA:21:F3:1E:0D:57:49:19:86:3E
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018CC72771389E1BFACE4352D731DCB5912A
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/UZtyes_ObBOWAuoh8x4NV0kZhj4.roa
Signing time: Mon 01 Jan 2024 22:31:40 +0000
ROA not before: Mon 01 Jan 2024 22:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8398
IP address blocks: 82.179.128.0/21 maxlen: 21
82.179.138.0/23 maxlen: 23
82.179.136.0/23 maxlen: 23
82.179.142.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 12 Apr 2024 13:17:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:71:38:9e:1b:fa:ce:43:52:d7:31:dc:b5:91:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 22:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=519b727acfce6c139602ea21f31e0d574919863e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0f:03:85:97:a5:e6:fa:5a:09:b6:65:3e:78:
1b:c0:ce:a8:f8:60:77:b2:6d:09:34:0e:ac:41:05:
8f:dc:a3:e9:17:70:ae:9c:c5:99:e6:14:3e:8b:3a:
91:86:12:e5:da:6f:74:e7:ca:11:ae:7c:23:77:b4:
49:55:98:94:e4:40:73:a6:7d:c8:93:d4:8e:40:07:
bb:8b:be:83:c4:8f:5c:93:5e:8a:53:43:6e:82:fd:
02:a7:11:d4:8f:a9:cd:40:cc:b5:52:61:01:91:5f:
7f:89:dd:2d:4a:79:14:37:7e:43:79:6d:61:b1:19:
a7:3a:ce:0c:85:ee:1e:f4:44:bd:7d:52:f6:27:1f:
ec:10:9c:94:ee:98:ad:3a:f0:bd:cf:78:1a:29:37:
fa:b7:70:48:14:87:04:a2:5a:91:27:a0:d1:a6:e5:
fb:a0:cb:10:fb:c6:87:30:9c:4c:60:82:31:a3:37:
43:67:85:96:57:1c:70:aa:ea:51:69:96:ec:93:60:
3f:fd:0c:43:73:c2:ad:ee:80:b8:40:80:7e:b5:78:
8c:22:8c:7b:ea:e2:fd:2f:ed:4d:ba:43:9c:85:14:
ac:9c:42:06:11:f0:25:54:ca:a5:19:b4:95:11:a0:
db:f5:77:0e:5b:b3:b4:92:c1:04:77:51:12:33:35:
13:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9B:72:7A:CF:CE:6C:13:96:02:EA:21:F3:1E:0D:57:49:19:86:3E
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/UZtyes_ObBOWAuoh8x4NV0kZhj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.179.128.0-82.179.139.255
82.179.142.0/23
Signature Algorithm: sha256WithRSAEncryption
77:31:dd:7b:ff:29:04:32:a4:21:0b:7e:29:9e:88:ff:7f:95:
a9:1f:79:dd:b6:a0:97:85:71:12:3f:5b:99:26:2d:fe:31:71:
d7:07:22:85:ff:ff:f8:f9:d6:4b:19:00:d7:5f:df:1d:e6:15:
27:1d:ce:f8:8d:db:2b:c5:40:1b:86:a7:b9:d4:bc:a6:fb:76:
a1:ce:d2:4f:f3:08:88:d5:69:09:de:bb:87:cd:f4:fb:d5:c7:
b5:78:f2:0a:3f:a5:e2:98:22:bf:31:b0:69:6e:58:2d:b8:34:
4a:bc:ad:60:74:1a:7a:ee:20:49:04:a7:82:b9:03:c2:4d:e6:
3f:5f:ed:9f:9e:fd:96:71:c3:4b:25:2b:63:ea:dc:e6:25:24:
5b:fa:09:74:e0:d8:11:fa:10:b2:4a:7d:0e:26:95:96:c9:41:
d4:67:0b:f9:dd:b2:23:f4:a7:3a:4b:a8:1a:85:c4:bb:00:71:
ad:b2:f2:c5:1a:55:85:2b:4f:71:19:4b:a0:11:91:64:33:66:
db:bc:c9:a2:69:cd:02:24:d8:f5:65:42:85:fe:ab:65:1d:c5:
af:34:35:e0:8c:a9:30:a0:96:f2:19:61:60:d0:bb:10:03:e1:
1b:89:07:47:93:5d:b5:a8:7a:b4:96:b2:e8:d3:2f:d1:1c:be:
0a:ae:76:93
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org