Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/UfYbd6dqZZkRvT_NSDRtf_XJZlI.roa
File: UfYbd6dqZZkRvT_NSDRtf_XJZlI.roa (raw, json)
Hash identifier: R59NW5EWN3XJXiz7aIobUpDhRClmS2G2shMW657CHzg=
Subject key identifier: 51:F6:1B:77:A7:6A:65:99:11:BD:3F:CD:48:34:6D:7F:F5:C9:66:52
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246EE653228B19E544E91FABFE773C9
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/UfYbd6dqZZkRvT_NSDRtf_XJZlI.roa
Signing time: Mon 02 Jan 2023 11:38:49 +0000
ROA not before: Mon 02 Jan 2023 11:38:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205331
IP address blocks: 151.237.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 09:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ee:65:32:28:b1:9e:54:4e:91:fa:bf:e7:73:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51f61b77a76a659911bd3fcd48346d7ff5c96652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c4:a1:2e:70:e5:a1:b1:3b:38:32:02:80:62:
9b:41:5e:ba:92:d6:a3:58:66:d7:31:71:a8:64:95:
f8:66:1e:10:9d:1e:de:c7:95:c1:86:cc:a9:af:d0:
41:a7:6e:dd:77:e2:7d:90:06:5c:88:41:54:4d:81:
d3:dd:02:89:45:90:89:02:58:3a:50:c6:ac:9d:a0:
08:78:00:36:b2:64:5d:94:ce:f2:bb:d7:f5:a3:ee:
54:07:10:11:a1:ed:13:9d:ae:4d:ed:9f:a4:d5:c5:
de:27:52:4e:19:40:30:7b:86:72:f2:b2:30:50:17:
c7:db:48:81:0f:cf:4d:4a:11:5f:13:bb:e5:9e:41:
57:59:9c:5f:b2:b0:16:00:0b:d9:47:d9:0b:07:36:
75:05:22:cd:8f:a6:72:25:20:0f:a6:0a:7d:0e:09:
04:e3:5f:e5:72:1a:7b:00:58:ee:49:ef:64:fb:6f:
7b:ab:1e:a0:ba:12:46:64:98:a4:04:14:7c:b8:d7:
1a:15:2a:fd:ff:0d:18:68:cb:00:4c:af:ab:67:8a:
d8:da:7f:22:df:3c:b8:be:64:03:fb:3d:c5:30:4c:
ea:81:58:95:ff:27:cf:6e:30:82:2d:8c:f8:69:2c:
59:6d:91:f7:f6:0b:10:98:16:1e:08:1c:0d:5e:64:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F6:1B:77:A7:6A:65:99:11:BD:3F:CD:48:34:6D:7F:F5:C9:66:52
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/UfYbd6dqZZkRvT_NSDRtf_XJZlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.67.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ef:2e:05:c9:cd:83:45:22:97:69:87:67:80:b4:0c:31:74:
3a:09:30:a6:c6:2b:90:5e:5c:35:47:75:d8:ab:a7:87:4a:13:
74:12:1c:63:41:42:04:01:13:78:bc:ce:f6:20:57:99:b3:2c:
d8:33:e8:53:a8:e8:e2:37:8b:14:87:f9:dc:c8:68:bf:54:56:
12:9c:4b:8c:74:28:7b:9c:fb:fe:1c:73:f3:83:9e:3e:87:b7:
c9:b0:74:6f:b2:ed:d3:01:9c:82:0a:67:0c:a1:17:af:a5:8b:
b1:ff:cb:cf:a9:cd:90:c0:bc:f2:f1:98:92:1a:f4:7a:29:b3:
81:1a:eb:e2:6c:ed:c2:0f:c2:01:92:2b:8e:7d:1f:e6:2c:79:
18:ac:0c:4e:a8:e5:37:7d:58:72:ad:10:19:47:5d:62:b0:9e:
51:bc:bd:6c:88:7c:1f:89:9e:4b:4f:e3:5a:40:56:a1:a3:98:
75:33:80:ff:f9:60:c7:f9:d4:c0:fb:bb:46:36:7d:d5:d0:b9:
a6:56:40:e2:80:cd:ad:9c:82:0d:cd:54:d1:3f:ac:ac:95:ca:
52:90:68:a8:8c:3f:44:c3:a4:62:63:b3:4c:ee:23:4b:36:25:
db:02:28:19:80:59:a2:e4:03:2d:8a:da:bd:50:9e:c4:5f:86:
10:95:ff:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org