Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/uzUK6JOaiqvRELj2tCrpgqCDk3U.roa
File: uzUK6JOaiqvRELj2tCrpgqCDk3U.roa (raw, json)
Hash identifier: bhMLgxGEoD5dM2Tit1TABqc4iUDgVk6jycCg4Q8YGYE=
Subject key identifier: BB:35:0A:E8:93:9A:8A:AB:D1:10:B8:F6:B4:2A:E9:82:A0:83:93:75
Certificate issuer: /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial: 01856D2F53330BA9073B04A964F63D0FB721
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/uzUK6JOaiqvRELj2tCrpgqCDk3U.roa
Signing time: Sun 01 Jan 2023 11:54:56 +0000
ROA not before: Sun 01 Jan 2023 11:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43766
IP address blocks: 79.170.120.0/22 maxlen: 22
79.170.124.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:53:33:0b:a9:07:3b:04:a9:64:f6:3d:0f:b7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Validity
Not Before: Jan 1 11:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb350ae8939a8aabd110b8f6b42ae982a0839375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:00:be:72:0a:a3:77:27:06:e2:92:09:cd:26:
ad:0e:79:23:20:31:04:63:69:1a:37:43:eb:06:91:
97:fb:7c:e4:6c:15:8e:3c:57:9d:19:5f:ad:7a:7e:
1e:ba:d7:8d:27:f0:2f:b8:b1:03:85:df:c4:e8:e7:
82:01:f6:62:d4:ac:7d:8e:98:b4:3e:dc:71:6f:40:
84:7a:a4:c9:86:12:50:ba:ac:c1:5c:52:d8:23:cf:
b2:8a:17:c0:84:9d:b3:93:fe:74:01:2f:e3:11:c3:
e1:fc:e5:99:86:ef:8a:a0:ba:38:ee:1a:14:13:32:
bf:1b:58:0b:e5:af:b2:ff:1b:e3:d9:a6:4e:8f:57:
e5:8a:91:9b:b2:e6:02:71:88:fc:2e:97:25:5d:df:
18:20:b2:39:ce:a8:dd:b6:67:94:68:c7:8d:8e:81:
a6:ee:ec:ac:01:b4:0e:b3:31:65:c6:18:4d:6b:c7:
d2:d1:24:1e:f1:c4:2c:d2:12:cb:99:37:43:ca:10:
fb:a3:37:8a:8e:e4:a6:8f:d3:62:5c:07:bc:96:0b:
e2:cd:c7:01:c7:a1:af:d2:98:02:f2:52:fd:fb:7a:
d0:e5:90:a0:42:ca:6d:e1:85:26:9e:37:fe:1c:b0:
f4:39:37:c6:0e:d8:a0:d3:02:c0:a1:3b:44:0a:7c:
fe:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:35:0A:E8:93:9A:8A:AB:D1:10:B8:F6:B4:2A:E9:82:A0:83:93:75
X509v3 Authority Key Identifier:
keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/uzUK6JOaiqvRELj2tCrpgqCDk3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.120.0/21
Signature Algorithm: sha256WithRSAEncryption
76:34:20:81:92:bc:70:0e:f3:43:24:c0:19:98:e2:1e:54:8a:
9c:57:43:68:53:37:dc:63:c5:ee:59:04:9b:b0:e3:9e:69:cb:
7b:1f:bb:5a:ef:c9:31:93:8b:db:da:ca:b2:78:21:1f:1d:f3:
2d:86:4b:00:6f:58:de:3d:59:90:3a:c1:d3:46:03:ed:d8:30:
60:70:fb:cf:01:69:7f:44:55:b2:7b:47:7f:7f:71:08:05:a2:
fd:3a:46:3a:78:72:2e:fe:e1:8e:97:c7:03:79:d5:51:86:3b:
d3:9e:c6:79:2c:b4:40:07:a7:60:af:9e:a4:d1:41:19:c3:de:
7d:d3:b8:aa:dc:68:47:15:5d:44:fc:e0:9d:43:6b:56:83:c7:
19:09:e5:d6:05:f7:c7:51:e6:63:bf:09:eb:e1:17:b4:5e:28:
03:5f:8d:36:06:45:a1:56:e6:7e:f4:77:ac:db:fd:40:d1:75:
5a:96:22:0e:70:ba:e0:48:3c:4b:70:9c:64:b2:4f:59:fe:4d:
5c:a7:cc:18:92:d5:83:d3:a2:5d:8a:55:ff:02:7c:21:c0:15:
01:b3:5b:51:4f:17:64:39:67:72:64:84:fc:7c:67:ac:37:d1:
08:96:be:dd:ea:09:41:67:af:f0:52:cd:56:48:23:17:48:e0:
07:d3:4e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:00 2023 by rpki-client on console-ams.rpki-client.org