Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/uPWMS8lwsK_jWLNWFDkmyH7viOI.roa
File: uPWMS8lwsK_jWLNWFDkmyH7viOI.roa (raw, json)
Hash identifier: inQEffKIJ+y60Vr0tRzRMDeeGWohGf069D6sOvh58TA=
Subject key identifier: B8:F5:8C:4B:C9:70:B0:AF:E3:58:B3:56:14:39:26:C8:7E:EF:88:E2
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 01856F42BA3B336B6E4804ADCFFF4D76F219
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/uPWMS8lwsK_jWLNWFDkmyH7viOI.roa
Signing time: Sun 01 Jan 2023 21:35:21 +0000
ROA not before: Sun 01 Jan 2023 21:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43415
IP address blocks: 79.127.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ba:3b:33:6b:6e:48:04:ad:cf:ff:4d:76:f2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 21:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8f58c4bc970b0afe358b356143926c87eef88e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0d:1b:56:c6:3f:67:8f:20:85:cf:0b:f1:9f:
8c:cb:a1:ab:c1:d9:f5:78:16:94:40:bc:38:06:af:
28:ec:3d:ae:1d:44:6c:fc:27:9c:27:42:b1:bd:df:
c5:64:71:8c:9d:75:b5:76:77:d3:07:96:05:4e:74:
e8:2d:ca:f1:5e:1d:d4:e0:52:d0:a4:0a:e1:32:ac:
65:7c:f6:e0:e0:8d:9f:e7:7d:9a:b5:bd:b9:65:5d:
5a:84:39:e8:98:ef:f3:0b:29:64:a5:6f:40:6c:ef:
65:50:96:1c:d2:57:7b:76:cd:88:f9:bc:64:5f:71:
4e:44:58:4a:9c:ef:70:0f:51:b6:8f:5e:c8:89:5f:
06:e4:b2:24:64:85:0f:a3:ca:ea:71:8d:e7:a9:68:
c5:af:9b:7e:18:32:64:92:5f:64:a2:82:84:70:cd:
26:92:f6:94:92:2c:17:a2:a3:ca:ea:7e:db:df:a9:
72:49:97:5a:56:6e:4b:49:37:a8:4b:a1:98:21:e3:
ae:d1:5a:cf:0a:3e:86:ff:d2:8c:21:70:69:75:f5:
31:c9:e2:43:5b:d3:67:70:fd:85:16:9d:7a:d8:cf:
23:1d:4e:c1:9c:25:c4:0a:0c:81:c0:ff:99:09:f1:
f5:21:2a:4d:47:ae:40:be:9b:3c:fc:0e:73:8e:9e:
7b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F5:8C:4B:C9:70:B0:AF:E3:58:B3:56:14:39:26:C8:7E:EF:88:E2
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/uPWMS8lwsK_jWLNWFDkmyH7viOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.127.46.0/24
Signature Algorithm: sha256WithRSAEncryption
76:cc:20:bb:b3:e7:5a:ff:8b:c9:b4:6f:63:63:ff:63:12:f5:
1c:d0:2a:ef:09:f2:62:c5:dc:4b:70:b9:98:1a:4f:ae:fb:21:
7b:c3:c8:89:19:a9:c1:95:5d:7f:37:b5:b2:cf:8f:2a:cf:ef:
4d:81:8f:bb:e8:ae:a9:56:bd:98:ef:58:a1:5a:af:d2:d2:57:
84:f4:88:62:3f:70:b7:3d:e1:6d:19:c1:39:2d:3f:65:dd:55:
56:ff:f0:c5:27:2d:93:f4:52:91:47:27:81:29:b4:92:30:7b:
38:b1:5a:60:89:52:8a:50:b1:06:19:5d:7c:62:38:90:a8:08:
38:8e:cd:cf:10:6e:b6:f1:58:59:1d:a9:7c:e5:b8:77:0f:98:
4c:97:a3:cc:00:ef:02:70:fc:84:c0:d9:08:68:73:d7:a7:9e:
b8:fb:13:34:aa:43:c2:6c:9d:a1:11:13:c7:97:be:6b:ec:22:
c9:38:49:e8:0a:32:a3:7d:17:25:58:52:a3:fe:e3:51:79:d8:
9e:bb:65:5b:46:e8:62:06:f5:df:c5:51:14:b0:25:e1:df:39:
11:30:0c:fc:15:a0:cb:49:b8:c2:86:17:e1:ac:bd:42:a6:1d:
3b:2d:39:fa:f2:3d:90:06:49:71:2d:1b:4f:d0:8f:0c:d9:0f:
32:c7:58:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:08 2024 by rpki-client on console-fra.rpki-client.org