Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UwGiculFoTU5w5ElaJ8KWDz_puw.roa
File: UwGiculFoTU5w5ElaJ8KWDz_puw.roa (raw, json)
Hash identifier: 42sJZgATs1Tn0zoEE2ZY3Bg3yfQVcKoiAIYRKiX72UI=
Subject key identifier: 53:01:A2:72:E9:45:A1:35:39:C3:91:25:68:9F:0A:58:3C:FF:A6:EC
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0187673C6364C6C0641FEF06EDCA9A0CCC94
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UwGiculFoTU5w5ElaJ8KWDz_puw.roa
Signing time: Sun 09 Apr 2023 18:17:03 +0000
ROA not before: Sun 09 Apr 2023 18:17:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.186.216.0/22 maxlen: 24
178.253.22.0/23 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 07:05:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:67:3c:63:64:c6:c0:64:1f:ef:06:ed:ca:9a:0c:cc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 9 18:17:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5301a272e945a13539c39125689f0a583cffa6ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0e:3b:e9:4c:08:eb:6a:b0:ba:69:b6:42:84:
f5:5c:b5:82:c5:13:da:24:6d:e3:9c:99:d6:f3:1a:
69:a9:17:86:dc:da:52:67:97:8d:9f:e0:12:32:08:
b9:78:7c:57:f0:3a:47:4f:25:2f:88:a4:f4:d5:64:
60:eb:01:0e:71:d0:5d:91:f3:fc:8a:d4:e0:cf:51:
f1:19:c0:87:91:0d:c7:41:4b:aa:89:a3:2e:00:4f:
a2:91:e7:3f:d3:c2:dd:45:61:3d:96:62:34:6d:0a:
2f:73:17:81:ee:7f:cf:54:d7:67:be:04:bf:0d:fa:
cf:22:7f:8d:29:7a:9a:e2:04:6d:77:99:56:92:1d:
07:71:78:18:4c:75:e1:99:6a:e4:0d:d1:a4:9d:67:
01:8d:b5:7b:29:be:fd:f6:dc:3d:eb:0d:17:7a:7d:
0f:50:6d:43:73:76:02:22:b2:ce:8b:38:25:4f:8b:
d3:51:98:1e:b8:05:e3:a5:7c:a7:26:01:6e:ac:2c:
bf:11:c1:ec:f1:9a:ff:01:be:a5:1c:7a:62:c1:1e:
af:ab:47:7f:62:c5:af:b6:0a:00:66:f9:d6:88:ee:
5c:3f:d8:88:0b:9b:33:e0:23:09:8c:3e:9a:4a:f5:
05:9f:60:7a:1b:6a:24:ee:a1:df:62:a4:f9:e1:3b:
8f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:01:A2:72:E9:45:A1:35:39:C3:91:25:68:9F:0A:58:3C:FF:A6:EC
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/UwGiculFoTU5w5ElaJ8KWDz_puw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.252.0/22
91.186.216.0/22
178.253.22.0/23
Signature Algorithm: sha256WithRSAEncryption
68:93:fa:71:fd:6e:f7:e4:bf:e0:58:aa:80:b1:a3:a5:9a:03:
b7:5a:71:c8:87:d8:29:82:8c:32:22:5b:25:88:52:78:14:24:
69:7a:ed:32:73:c6:1f:c4:1f:a5:57:5a:c1:2d:91:1a:5e:0e:
fa:e0:40:bd:14:fb:13:0f:e5:d3:8b:2d:3a:ee:b6:2c:2d:bf:
2e:a2:62:8f:59:ab:db:11:0d:b8:24:7b:f5:1d:f4:48:be:c5:
57:51:48:00:12:8f:44:ba:37:12:0e:a2:59:e8:97:29:60:45:
6e:0d:53:7e:10:08:2c:43:fc:b9:e8:80:c1:ec:ce:60:ca:f2:
eb:38:c2:ba:e3:a1:cd:ff:c8:5c:07:09:74:41:06:2b:3a:ea:
f5:a8:10:d5:b5:c6:d8:64:9d:40:d4:c9:5c:c3:96:18:b5:5f:
a5:8d:6c:dd:33:11:4d:80:ca:0b:33:b5:49:bb:5e:3b:91:ca:
e3:ef:fe:4c:77:62:75:20:0f:59:6e:89:31:08:8f:73:07:1c:
22:ca:13:34:3b:0f:f4:32:38:ec:79:f2:4e:c2:82:57:77:ef:
5e:d8:a7:18:ef:3b:58:fa:70:d1:f5:80:ca:12:2a:06:9a:30:
d3:bb:be:a4:8c:fe:b1:e5:9d:c4:93:53:ef:79:48:eb:6b:c1:
70:62:2d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org