Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/uiKgaCJCVma1p1O0M9YsJxosyfQ.roa
File: uiKgaCJCVma1p1O0M9YsJxosyfQ.roa (raw, json)
Hash identifier: wVftOViyOI8OJOovbU0hicltXmzFzCxTpUIX+7K8KAI=
Subject key identifier: BA:22:A0:68:22:42:56:66:B5:A7:53:B4:33:D6:2C:27:1A:2C:C9:F4
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 01896E68C34AE7E5B98611484972BE79CBEE
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/uiKgaCJCVma1p1O0M9YsJxosyfQ.roa
Signing time: Wed 19 Jul 2023 13:48:26 +0000
ROA not before: Wed 19 Jul 2023 13:48:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 92.61.96.0/24 maxlen: 24
92.61.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 05:14:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:68:c3:4a:e7:e5:b9:86:11:48:49:72:be:79:cb:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Jul 19 13:48:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba22a06822425666b5a753b433d62c271a2cc9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e2:34:77:37:b4:5d:2d:40:66:dc:77:d6:21:
89:77:a0:b1:77:0a:c0:52:47:2f:44:5b:0f:9e:ce:
7c:6f:72:cf:08:31:84:84:6b:95:c0:ac:cb:99:30:
03:86:fb:59:b2:71:c7:41:ba:25:72:77:e9:6e:03:
aa:1f:95:ea:46:8e:d9:06:a8:dc:ed:ea:e9:15:60:
bb:9a:a6:76:5d:c9:bd:e4:5d:e9:45:a1:80:72:cf:
2c:0f:90:e5:f4:fd:7e:1a:53:1f:3d:97:e5:8b:c2:
a1:0a:2f:ad:8b:c6:0e:84:fe:d0:fc:18:0e:07:3f:
66:73:6e:7c:8e:5b:4d:2a:13:2b:14:0a:c8:20:95:
fc:2e:21:42:17:7c:00:f3:1a:0e:6a:62:eb:7b:4f:
3a:70:f5:b3:20:01:5d:dc:84:d4:db:ab:9f:b1:c7:
22:32:f0:f6:1f:4e:2e:8d:f0:f0:ba:32:e5:fc:25:
56:53:fd:ee:41:c6:ae:71:fe:c4:d6:37:4b:27:92:
fd:3c:06:e3:5a:06:b4:28:2a:3c:72:8a:5b:8c:c1:
60:81:96:89:d0:b9:ca:0a:99:23:53:30:ff:46:e1:
d2:0f:03:b7:15:2e:bf:58:93:4a:d5:0a:7f:a5:ac:
85:17:92:9d:bc:5a:25:5d:1e:3d:e2:ae:a4:6d:51:
c8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:22:A0:68:22:42:56:66:B5:A7:53:B4:33:D6:2C:27:1A:2C:C9:F4
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/uiKgaCJCVma1p1O0M9YsJxosyfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.96.0/24
92.61.98.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:bd:2f:8d:e8:8a:46:a9:98:06:1a:9a:36:22:dc:5c:f9:a7:
f8:5c:29:2b:2b:e7:34:00:af:af:64:4e:c5:5d:0f:83:78:5f:
d3:a9:2c:8a:70:1b:bd:48:e6:2a:62:fe:66:0b:d8:26:33:f3:
b7:ad:a1:39:b2:d5:ac:4a:28:e3:40:04:fb:ba:1b:55:30:12:
1a:44:e6:c5:c8:5b:cd:d0:09:7f:00:38:51:79:68:6f:4d:4d:
86:b2:5d:f2:fe:2f:b4:e6:a7:98:b0:a4:64:e0:8b:b8:ff:e9:
39:8f:e0:ab:89:a0:2b:f0:03:34:9f:50:98:5a:fc:37:e2:33:
fb:81:0d:c5:e0:0a:f8:76:8f:59:f5:bd:5a:71:87:bf:ba:72:
17:e7:8d:f6:5b:05:d0:40:ab:35:d5:54:38:14:64:c8:fc:4f:
0d:cd:c1:06:a2:6c:e7:6a:8f:ad:1c:6c:ce:be:25:57:d9:a2:
c3:ca:f5:97:01:b3:22:bf:1f:3c:81:b4:f0:f9:5f:63:f2:d9:
1d:59:34:d8:ba:04:31:e8:d5:bb:77:25:8c:ee:05:39:38:0e:
e6:26:0d:9f:bf:54:a5:66:43:e7:6d:dd:06:30:15:57:fd:61:
a6:c3:f4:3a:5a:18:d3:00:27:85:c5:71:df:16:3b:66:64:db:
57:9a:47:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:21 2024 by rpki-client on console-ams.rpki-client.org