Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/UlMUa9CvCWmztJo_V8QhGkmpcuw.roa
File: UlMUa9CvCWmztJo_V8QhGkmpcuw.roa (raw, json)
Hash identifier: GJPxiWdED8hMsnGdiPSRFRr0u5wY1fqwCkZ4NzNRjTM=
Subject key identifier: 52:53:14:6B:D0:AF:09:69:B3:B4:9A:3F:57:C4:21:1A:49:A9:72:EC
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01870D98718060A2674772E483E97778BCF3
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/UlMUa9CvCWmztJo_V8QhGkmpcuw.roa
Signing time: Thu 23 Mar 2023 08:31:46 +0000
ROA not before: Thu 23 Mar 2023 08:31:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 89.191.234.0/24 maxlen: 24
141.98.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:98:71:80:60:a2:67:47:72:e4:83:e9:77:78:bc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Mar 23 08:31:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5253146bd0af0969b3b49a3f57c4211a49a972ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c4:51:97:0a:15:eb:43:e1:1d:55:d3:79:65:
5a:9f:a5:77:0b:ef:36:1d:b5:4d:2d:4e:b6:03:3b:
18:03:c7:2e:4c:ef:bf:68:f7:95:76:26:4b:5f:ee:
84:77:98:a2:74:77:ad:63:71:92:78:f4:f7:3f:e9:
54:9c:fd:37:1a:d1:54:8a:d9:33:7f:d1:02:8c:7d:
17:a7:73:5c:96:f1:18:3a:72:6f:d3:2a:64:55:cc:
89:be:0b:d5:82:58:0c:45:87:12:d2:f8:af:5c:11:
80:3a:cb:bf:89:4f:d2:a9:98:c1:50:c8:c3:d5:35:
aa:99:84:2f:d6:54:8e:f5:67:da:83:ca:21:74:0e:
79:4e:cc:5b:f4:ef:ba:46:7a:ef:d5:eb:02:0b:d4:
bb:0d:62:80:70:70:fa:90:f6:c2:b9:9f:19:b0:65:
e6:0d:31:69:e6:67:6c:8f:ce:33:67:f3:f7:7c:d7:
9a:a3:34:a0:6b:58:61:7e:7a:16:cf:89:52:0a:ca:
67:b2:d3:13:21:89:eb:9b:63:db:08:97:f8:63:21:
07:bf:8e:e3:a3:8e:ca:ab:1b:17:09:a5:14:a8:3d:
be:e1:e6:f2:13:21:90:27:73:7e:16:25:f3:37:47:
1c:b9:07:88:6a:bf:b6:af:09:88:65:4c:eb:e1:cb:
ba:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:53:14:6B:D0:AF:09:69:B3:B4:9A:3F:57:C4:21:1A:49:A9:72:EC
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/UlMUa9CvCWmztJo_V8QhGkmpcuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.191.234.0/24
141.98.235.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b4:7c:f8:a2:ee:68:cf:1a:71:47:2c:ae:84:dc:e0:57:5c:
6c:0c:cd:fe:a8:6b:11:44:f8:32:82:7e:a8:d0:41:85:3a:72:
26:26:2e:90:04:ed:db:19:4c:fe:ff:bf:40:93:c4:95:e2:f2:
69:3b:e0:50:21:31:41:a2:fd:7b:f3:f0:01:c6:80:e6:36:9c:
03:9b:bf:cb:98:6f:b4:64:6e:f0:54:3c:b7:c8:98:d4:7e:90:
c5:fe:38:b8:9c:a8:c7:0e:c1:d9:bc:e4:16:2c:f2:51:1d:f4:
5c:92:38:59:e4:53:88:35:b0:4c:8e:fd:40:8b:01:2d:65:0b:
01:d8:78:3b:86:81:76:0b:21:8e:cc:70:1c:52:2a:94:db:f4:
7e:b6:53:d8:99:ac:5c:9b:11:30:59:51:de:0d:11:1b:90:f5:
e6:41:ed:41:93:77:22:8e:ad:01:3f:aa:9b:59:83:77:62:d1:
1d:fb:41:84:40:65:c5:f0:4c:99:88:98:91:62:b1:e3:dd:85:
55:86:d9:a7:30:60:1d:1f:01:57:a8:76:2a:d5:30:77:fb:47:
d6:b4:a1:94:f7:52:12:4e:83:1c:25:1d:d9:ee:71:9f:1d:62:
e3:b6:ea:f3:eb:8c:56:c1:ae:a9:81:d9:05:b6:27:ac:6f:8c:
71:43:c3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:54 2024 by rpki-client on console-fra.rpki-client.org