Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uFB2-0sypnQct-WPWzvxzMg8dQE.roa
File: uFB2-0sypnQct-WPWzvxzMg8dQE.roa (raw, json)
Hash identifier: eH20pbow5i7z5SIBkmCkakQvwu9afoLx454Tm02FRqo=
Subject key identifier: B8:50:76:FB:4B:32:A6:74:1C:B7:E5:8F:5B:3B:F1:CC:C8:3C:75:01
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C20E451318B7B1AA50CB7CB91A7D6
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uFB2-0sypnQct-WPWzvxzMg8dQE.roa
Signing time: Mon 02 Jan 2023 05:54:58 +0000
ROA not before: Mon 02 Jan 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 213.108.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:20:e4:51:31:8b:7b:1a:a5:0c:b7:cb:91:a7:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b85076fb4b32a6741cb7e58f5b3bf1ccc83c7501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:70:0c:94:a4:05:37:52:3f:29:32:d2:60:bc:
08:92:c0:e3:55:3a:ea:aa:66:3f:ab:86:47:0f:8f:
34:63:7c:09:44:fe:68:26:67:58:de:aa:b3:fd:a5:
76:c4:71:69:f3:4b:d2:82:f3:e6:0c:17:ea:1f:4c:
d0:ab:b5:6e:9c:6c:94:8b:e7:e0:be:f0:be:70:20:
84:28:76:eb:40:9e:06:d9:20:fc:1d:13:62:13:b2:
10:a5:1a:57:97:4c:9c:41:3b:47:1b:ee:d9:fc:7e:
68:7d:a3:f2:a3:a4:06:8f:67:19:82:89:84:9c:f7:
24:08:e6:ba:9b:a5:f0:e7:31:83:04:22:94:ed:81:
bb:19:2e:48:da:7c:15:e2:a9:4a:5f:79:d4:0b:0e:
ab:77:71:d3:73:f0:d6:c8:55:4f:31:43:7e:66:4a:
b6:f2:ab:b2:98:e3:6b:ea:e3:14:ae:30:8a:aa:95:
a8:9b:63:68:03:09:bf:dc:b2:97:44:a7:c5:09:c6:
1c:e6:70:f9:bd:81:b7:ba:58:2e:20:3b:6d:e8:57:
64:b1:c5:a7:ea:71:9e:9d:d6:71:60:ab:8e:23:0c:
8c:5a:ba:7e:b8:55:95:b6:b2:a5:91:6c:66:62:c5:
e1:39:79:6f:02:17:d8:43:8e:86:80:28:65:49:19:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:50:76:FB:4B:32:A6:74:1C:B7:E5:8F:5B:3B:F1:CC:C8:3C:75:01
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/uFB2-0sypnQct-WPWzvxzMg8dQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.199.0/24
Signature Algorithm: sha256WithRSAEncryption
63:09:3d:00:9e:01:e4:d2:72:17:ce:7f:1d:9d:c5:2b:01:5f:
3e:01:94:ab:00:c6:e1:28:8c:cb:89:17:cc:29:49:62:09:83:
dd:0e:0a:ff:30:ca:e4:62:77:95:bc:54:cf:fc:33:1b:37:be:
85:27:14:d3:3e:8c:df:44:be:04:ac:86:c2:f2:93:3f:4e:ab:
d5:8a:52:f1:9d:f4:bb:74:01:69:9b:5f:e4:06:5f:57:b7:43:
47:fa:f5:b7:d7:99:5c:f1:9a:8b:7e:89:2e:6b:5d:63:ed:9b:
49:f7:44:6b:5b:61:22:ba:1f:81:26:6f:26:24:e4:c0:2c:04:
6c:cf:f5:ef:44:c6:5a:c3:ab:3f:43:c7:52:79:ba:98:8a:c2:
6e:48:62:85:71:cb:f2:31:cf:e8:d5:07:c8:d5:9b:e2:d9:a4:
5a:31:19:0e:aa:ab:11:fe:5d:92:06:e5:94:bf:d6:2a:86:85:
27:a6:3a:11:4b:fe:54:9b:60:09:6e:79:4b:ac:71:19:5e:17:
5a:e0:98:39:5f:66:81:4e:5a:92:a3:38:cb:90:df:5e:19:7f:
1a:fa:29:bb:ff:92:aa:4c:c2:1c:02:0b:23:2b:99:84:b4:bd:
09:17:77:4d:c9:16:66:74:95:a3:af:1a:08:5d:b7:32:5b:06:
57:70:12:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:11 2024 by rpki-client on console-ams.rpki-client.org