Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/UzfB8VQEpa2seVwbbdI_y3B7aew.roa
File: UzfB8VQEpa2seVwbbdI_y3B7aew.roa (raw, json)
Hash identifier: 10+fsJangtnCTfNLxCs4aIVfwhiw3eimXTfQhPgO6S4=
Subject key identifier: 53:37:C1:F1:54:04:A5:AD:AC:79:5C:1B:6D:D2:3F:CB:70:7B:69:EC
Certificate issuer: /CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Certificate serial: 018571D795AE94746E8BA3BED37714E9C89B
Authority key identifier: A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/UzfB8VQEpa2seVwbbdI_y3B7aew.roa
Signing time: Mon 02 Jan 2023 09:37:11 +0000
ROA not before: Mon 02 Jan 2023 09:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47167
IP address blocks: 195.216.224.0/24 maxlen: 24
2001:67c:294::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:95:ae:94:74:6e:8b:a3:be:d3:77:14:e9:c8:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a86580e18ad6ff8dc942be883c16de8b731f9605
Validity
Not Before: Jan 2 09:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5337c1f15404a5adac795c1b6dd23fcb707b69ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:87:cd:d3:18:d8:c6:e1:ad:67:a9:40:9c:ca:
cb:c2:21:53:49:0f:e1:f1:6c:0b:4c:06:57:e8:75:
9e:7f:62:c9:21:80:32:44:ef:98:05:09:d2:82:78:
f0:81:8d:e2:44:26:18:90:f8:02:ec:16:cc:36:3c:
99:9b:af:96:b5:6a:db:dc:ae:a6:16:81:4b:94:5f:
12:c5:0f:06:61:b4:8e:58:89:b6:4a:d1:f2:3a:d0:
17:4e:d1:6a:2a:64:26:12:ad:ea:8b:ae:fc:64:1c:
19:53:aa:05:7d:c8:e8:9e:ac:c8:b4:3e:02:2a:d5:
6e:58:ae:a3:b6:78:5c:28:1a:a0:5f:dc:9b:9f:fa:
37:06:d0:07:61:1f:85:38:34:87:17:84:6d:a0:a3:
6e:23:13:fc:94:f6:17:9d:b4:36:76:f0:b5:b7:4c:
b0:ab:57:df:b5:61:36:19:d3:42:4d:c8:46:e1:2d:
21:68:20:76:22:6c:50:b9:10:dc:ce:fd:fd:f0:06:
06:c9:54:58:39:67:fd:c4:4c:4a:75:50:4e:1f:11:
c9:c4:58:fe:e0:18:c8:c4:c3:51:85:57:c0:67:ff:
eb:a5:c4:fe:6f:19:6c:eb:25:73:93:28:b4:5c:95:
05:c5:b8:d1:9e:ed:8a:cf:1a:50:64:a8:e0:73:d4:
f7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:37:C1:F1:54:04:A5:AD:AC:79:5C:1B:6D:D2:3F:CB:70:7B:69:EC
X509v3 Authority Key Identifier:
keyid:A8:65:80:E1:8A:D6:FF:8D:C9:42:BE:88:3C:16:DE:8B:73:1F:96:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qGWA4YrW_43JQr6IPBbei3MflgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/UzfB8VQEpa2seVwbbdI_y3B7aew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e29dce-a174-4b77-89aa-236e92fc6a59/1/qGWA4YrW_43JQr6IPBbei3MflgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.224.0/24
IPv6:
2001:67c:294::/48
Signature Algorithm: sha256WithRSAEncryption
9b:a5:48:f2:49:47:18:a9:55:29:8d:d7:74:a8:f2:55:d0:44:
82:c9:50:ae:cc:32:ea:f1:17:7f:e4:f0:f6:f0:a1:10:69:0e:
89:89:3d:41:b1:c1:dc:c5:5f:8c:96:39:f8:8e:bc:36:c7:16:
8f:30:3f:57:e5:ff:8c:79:bb:7c:a0:ef:c3:ab:ba:c4:dc:e3:
24:66:46:1e:d8:2b:e3:ce:10:29:7d:a0:54:ef:b6:67:4a:d7:
3c:52:79:e5:01:69:45:39:4e:ad:7f:69:c7:c9:12:9c:e1:c8:
1e:3c:e4:2e:8b:4e:ff:c9:a9:0d:da:04:46:61:26:ec:39:dd:
18:e2:87:e4:69:95:09:4e:37:e1:f6:74:57:e0:dd:d7:4c:dc:
ec:03:72:a1:89:7e:26:e6:a9:8f:64:23:b9:4a:15:a2:a8:bc:
bf:99:79:df:cf:c0:b1:c5:da:2d:be:62:e6:50:b3:ea:7d:d1:
cd:af:96:3d:39:33:45:21:b7:17:35:b2:1b:be:08:ed:60:31:
a0:7c:d4:e2:59:bd:1d:f1:e3:a9:31:97:b5:e0:d1:81:2d:d1:
4f:65:bd:07:52:e4:81:36:60:bf:eb:bd:ad:f3:21:75:ff:29:
e5:4e:ad:86:96:d3:87:d9:b9:cc:f2:4d:5d:11:66:7f:64:73:
6a:af:cd:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:35 2024 by rpki-client on console-ams.rpki-client.org