Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/82cc5d-d6a8-4667-b049-967c57d5a361/1/uhkjISkfOMLfpENqh171vh6nrXo.roa
File: uhkjISkfOMLfpENqh171vh6nrXo.roa (raw, json)
Hash identifier: w4dglyBJDAmEa6Pf3LiSh7GkvLkNHyhDQqbQQMY2fzc=
Subject key identifier: BA:19:23:21:29:1F:38:C2:DF:A4:43:6A:87:5E:F5:BE:1E:A7:AD:7A
Certificate issuer: /CN=0b62cf8cd90b69f936e82b57801cd779d72e3f3e
Certificate serial: 0186792ADBE5A17CDE52FACA6B3D9E4B994F
Authority key identifier: 0B:62:CF:8C:D9:0B:69:F9:36:E8:2B:57:80:1C:D7:79:D7:2E:3F:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C2LPjNkLafk26CtXgBzXedcuPz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/82cc5d-d6a8-4667-b049-967c57d5a361/1/uhkjISkfOMLfpENqh171vh6nrXo.roa
Signing time: Wed 22 Feb 2023 12:48:17 +0000
ROA not before: Wed 22 Feb 2023 12:48:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35467
IP address blocks: 194.53.216.0/21 maxlen: 21
194.53.222.0/24 maxlen: 24
194.53.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:2a:db:e5:a1:7c:de:52:fa:ca:6b:3d:9e:4b:99:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b62cf8cd90b69f936e82b57801cd779d72e3f3e
Validity
Not Before: Feb 22 12:48:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba192321291f38c2dfa4436a875ef5be1ea7ad7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:25:e1:cf:34:b1:c7:00:45:a9:cd:0f:b1:42:
e8:57:1a:1c:54:03:2a:2e:37:95:37:0f:52:bb:cb:
0d:84:2b:eb:9f:1c:d2:64:3c:1b:07:56:1a:80:78:
31:af:ab:9b:32:a0:33:55:8b:bb:3e:f9:c6:b2:75:
2f:08:af:3f:38:3c:6a:ef:b8:1f:77:8d:c2:a5:2d:
66:db:81:c7:a7:9b:04:d6:58:6a:7d:2d:0d:31:41:
4e:0a:0e:56:19:93:a7:c4:63:8b:7d:71:02:33:65:
44:52:4a:80:ea:a8:41:2a:5c:cd:c7:58:ca:eb:21:
1f:57:cb:e6:12:83:d0:2b:7e:c1:f0:40:e3:04:73:
c0:61:7d:65:37:5d:58:5d:79:27:3b:5f:85:4c:48:
c2:b3:18:f1:75:d3:4c:25:96:f3:96:67:44:19:a8:
cd:7d:eb:6d:a6:98:d1:a7:34:22:0b:fb:f8:06:2c:
49:da:df:3d:73:a6:3f:66:d0:6d:83:e8:8c:7d:96:
3d:c7:0f:c9:97:f5:b2:e2:31:3b:25:01:26:a3:35:
e2:93:aa:c6:ca:e1:e7:9e:c8:28:38:2c:56:b1:d8:
f5:f0:c1:81:e6:e1:83:97:19:74:dc:e7:91:7a:a9:
80:8b:7f:b6:7c:69:2b:2d:dc:f3:c0:b9:7e:3e:b7:
19:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:19:23:21:29:1F:38:C2:DF:A4:43:6A:87:5E:F5:BE:1E:A7:AD:7A
X509v3 Authority Key Identifier:
keyid:0B:62:CF:8C:D9:0B:69:F9:36:E8:2B:57:80:1C:D7:79:D7:2E:3F:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C2LPjNkLafk26CtXgBzXedcuPz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/82cc5d-d6a8-4667-b049-967c57d5a361/1/uhkjISkfOMLfpENqh171vh6nrXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/82cc5d-d6a8-4667-b049-967c57d5a361/1/C2LPjNkLafk26CtXgBzXedcuPz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.216.0/21
Signature Algorithm: sha256WithRSAEncryption
d2:a3:32:c9:fa:85:60:a0:4d:32:98:95:96:74:ee:c5:21:d4:
db:fe:7c:a5:7b:40:b9:db:7f:c4:30:85:62:3c:12:4c:91:0a:
24:b8:0f:df:c6:6b:86:00:f8:c2:35:70:1d:bc:8d:87:7d:90:
0d:d0:67:a1:c4:3e:9a:1a:a9:fe:b9:90:da:ea:ad:76:a0:6d:
a7:80:1c:f6:9a:45:25:18:ee:14:d7:d9:b4:a6:f9:01:87:bf:
b3:8a:e7:4b:7a:bf:08:f8:9c:67:fe:4e:01:48:31:bc:46:f6:
42:61:d7:76:e8:c9:e2:f3:1e:f2:55:36:1b:72:e3:f4:3a:12:
33:f5:76:54:ed:3a:4d:bc:f1:35:c0:3c:bf:27:15:8a:f8:c5:
55:9d:57:d8:1f:78:de:e8:fc:5c:84:31:8b:e0:71:47:4d:d7:
6c:d9:d9:7d:f8:e2:d5:ed:04:b1:a4:cd:af:f3:52:22:7d:7d:
b1:04:c6:84:e2:21:5c:78:5a:b7:97:ff:b7:e9:d3:df:a3:29:
db:c6:84:dd:27:ac:73:03:42:73:88:f1:90:8b:bb:bc:bf:a2:
d6:3f:a7:c2:ef:63:c6:01:eb:59:44:7f:40:ba:e1:3b:67:b5:
f6:f8:cb:82:73:1d:47:b9:60:4c:46:44:26:dd:ad:61:cc:ef:
be:41:ca:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:42 2024 by rpki-client on console-fra.rpki-client.org