Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/UBYWH1ry2A0QTC6kA3LSiq9wBKY.roa
File: UBYWH1ry2A0QTC6kA3LSiq9wBKY.roa (raw, json)
Hash identifier: 6dPfPgcCBaPP0v47snZ+PvPdXZRX8cXNrxvc176tbO0=
Subject key identifier: 50:16:16:1F:5A:F2:D8:0D:10:4C:2E:A4:03:72:D2:8A:AF:70:04:A6
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 01856CE5FCFEB152DC29FB0FF52A10BD5E19
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/UBYWH1ry2A0QTC6kA3LSiq9wBKY.roa
Signing time: Sun 01 Jan 2023 10:34:49 +0000
ROA not before: Sun 01 Jan 2023 10:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 553
IP address blocks: 141.7.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:fc:fe:b1:52:dc:29:fb:0f:f5:2a:10:bd:5e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Jan 1 10:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5016161f5af2d80d104c2ea40372d28aaf7004a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b2:e3:52:f4:7c:5d:83:09:7d:62:2e:c3:b7:
5a:4b:d2:55:ab:75:b6:b7:5d:e7:34:44:79:09:4f:
bd:87:0a:50:cc:30:31:a2:2b:e4:ea:9e:f7:ac:5c:
b6:bb:17:1d:d0:2f:04:e6:06:f0:43:93:51:aa:f6:
11:b9:78:da:78:cf:1a:d6:ab:c9:3a:e0:47:ba:24:
96:33:3d:ce:8e:d8:46:18:8a:83:c3:41:fb:99:c3:
ab:bd:fb:67:55:3f:a2:b8:59:76:11:47:93:da:73:
2d:0b:24:3d:23:67:c5:4c:f5:5f:d6:50:0a:70:d2:
cb:56:32:be:4e:76:ec:77:5d:c1:ee:e0:b4:a2:02:
0c:17:bc:7e:70:c4:45:55:d5:29:18:88:c8:d5:c4:
10:ba:16:ff:d2:f5:70:32:6d:f4:0f:31:e5:e0:06:
9a:48:ae:d5:a1:c1:ea:18:46:14:c2:f8:73:52:a5:
1f:eb:c3:25:e5:62:ed:09:51:c3:92:88:cc:a6:b4:
c6:af:e7:47:1b:96:fb:aa:52:06:ff:26:cd:42:05:
8c:3b:3b:fb:8b:be:a9:8c:e6:92:f7:67:e0:93:34:
c6:6a:71:95:f0:ed:79:36:7c:b4:46:27:f8:92:45:
24:67:6c:79:66:62:ac:d8:e0:52:0e:27:1a:5b:e1:
26:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:16:16:1F:5A:F2:D8:0D:10:4C:2E:A4:03:72:D2:8A:AF:70:04:A6
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/UBYWH1ry2A0QTC6kA3LSiq9wBKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.7.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1b:ff:ff:3f:25:aa:74:1a:fb:54:a2:24:d5:ec:75:78:58:d7:
44:3d:46:9b:64:a1:f4:9b:6f:df:5d:e1:82:fd:cb:27:d3:05:
e3:19:52:af:53:d5:27:2d:74:b7:b8:e1:f2:51:21:9d:07:57:
f9:1c:51:05:7d:f9:8d:04:31:59:c2:05:8c:44:5d:b3:d1:cb:
a3:16:90:be:3f:d5:77:75:fc:a1:55:3c:e4:77:c8:14:2e:69:
25:0f:fd:81:4d:c9:83:b2:51:3d:1b:7c:ef:98:39:55:71:a0:
a0:e2:ed:5c:a2:05:3f:71:a4:a8:2c:4c:47:0b:1f:bd:73:07:
e8:55:01:a5:1e:7c:33:46:55:4c:23:4c:44:e6:0d:e2:a9:15:
0f:6f:46:d1:d3:b3:65:b6:0f:d8:c2:87:7f:81:e8:ee:43:b8:
a7:e4:15:73:a7:ab:ba:2f:b7:ad:0c:4a:89:72:b1:45:71:39:
1a:99:6f:f7:02:13:1e:00:ac:2b:23:44:1d:0f:f6:16:46:fd:
dc:d9:a1:58:aa:54:14:65:91:04:68:9d:6f:c0:68:15:fa:d0:
d2:86:1e:ce:e3:3e:37:ae:70:ce:2c:b8:bd:5a:c2:97:a8:fd:
3b:7b:ce:0c:86:ab:32:29:c0:a5:a4:f1:cb:00:bc:26:1c:be:
b2:78:5c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:28 2024 by rpki-client on console-ams.rpki-client.org