Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/UJPeARnl5cVZdd-6U2RdbinzrWI.roa
File: UJPeARnl5cVZdd-6U2RdbinzrWI.roa (raw, json)
Hash identifier: tQY2J6ngw0MAgMIgDSidk6sPgajyN+2vQjtv4wMyqPY=
Subject key identifier: 50:93:DE:01:19:E5:E5:C5:59:75:DF:BA:53:64:5D:6E:29:F3:AD:62
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018E18AF3C9E0A8222ACAB3BA29BD823678F
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/UJPeARnl5cVZdd-6U2RdbinzrWI.roa
Signing time: Thu 07 Mar 2024 11:32:01 +0000
ROA not before: Thu 07 Mar 2024 11:32:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47585
IP address blocks: 5.180.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 09:18:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:af:3c:9e:0a:82:22:ac:ab:3b:a2:9b:d8:23:67:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Mar 7 11:32:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5093de0119e5e5c55975dfba53645d6e29f3ad62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:40:78:77:95:57:db:63:00:61:e5:c2:6a:
fe:10:d9:c4:82:42:f1:f2:4c:ee:37:a6:86:a4:33:
f1:8f:30:5a:d1:50:52:04:39:ec:88:6e:e1:59:8e:
f8:f8:5d:46:18:4c:de:26:47:9f:95:ec:2d:ff:72:
35:58:03:64:81:8a:24:63:e3:3a:03:a2:4f:2c:e1:
c3:e9:e4:8c:98:a0:db:4e:ec:1f:41:83:3f:2e:5a:
75:c2:50:83:48:0e:63:72:fa:fc:a3:85:28:cf:b7:
18:e9:2e:2c:49:3f:c3:3e:17:36:13:f4:89:5e:c5:
6d:0b:1e:2b:4a:03:d0:47:6d:17:4f:5f:71:97:35:
15:61:2b:e5:5f:b3:4f:8f:55:f0:5b:a7:bf:77:1a:
0f:52:48:5b:d9:c3:12:8e:45:5f:b0:5a:c1:5f:0d:
fb:71:b0:e1:81:f5:d0:76:28:52:59:1c:bf:4c:d8:
38:3d:5d:f5:3b:04:27:ad:33:c7:93:93:0d:4b:2a:
b2:03:f5:dc:98:e6:bc:bb:31:66:aa:3b:40:6f:3b:
56:43:d8:26:1a:ab:ad:31:f3:59:9b:eb:2f:35:0a:
6a:9b:3d:7b:06:2a:b5:1f:c9:88:d3:26:76:bb:b4:
60:e8:bc:04:a7:1a:66:b0:01:35:1f:be:b7:07:30:
cb:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:93:DE:01:19:E5:E5:C5:59:75:DF:BA:53:64:5D:6E:29:F3:AD:62
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/UJPeARnl5cVZdd-6U2RdbinzrWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.195.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ae:97:c9:09:79:4d:06:a3:2c:c9:89:a0:20:2a:ad:34:97:
cf:9f:1b:ae:62:f0:a5:ac:cd:2a:73:13:7b:9e:06:8f:fa:ad:
35:86:9f:5f:07:c7:26:15:27:7a:fe:56:d4:c3:d1:46:62:02:
04:77:f2:a7:86:aa:bb:b3:8b:bc:74:bb:41:9d:f5:71:84:4b:
ec:bc:c0:ee:67:9b:d6:88:16:07:94:f3:af:24:a8:22:bd:a5:
4f:b9:ee:cc:15:31:e9:33:e4:53:25:35:20:ba:fe:78:56:e5:
f4:98:ae:dc:98:62:6a:39:ed:d1:85:87:ec:33:bf:e5:98:53:
26:35:54:85:5f:90:99:cb:2a:0d:b9:a7:1c:6c:03:b2:38:6a:
e6:2a:35:c0:ea:21:45:a8:80:23:20:9c:e6:d2:8c:5d:23:52:
da:81:ab:99:a8:08:c6:69:99:a8:2f:e9:95:e6:35:50:d3:13:
0a:9a:96:74:5f:ee:65:e5:c9:e8:04:23:79:8a:c8:d1:72:be:
f2:94:f6:c3:f3:45:6a:53:14:ce:d7:64:2b:06:41:3d:d7:5a:
fe:3e:d5:65:73:dc:b8:41:b8:22:ad:24:ba:5f:34:8b:8f:65:
a4:7e:e9:bf:0a:69:1c:1d:1f:48:82:1b:3b:92:68:3e:c5:c2:
22:31:0d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 11:50:12 2024 by rpki-client on console-ams.rpki-client.org