Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/uzW2FR2KemZRKD1336EbgFLsK0c.roa
File: uzW2FR2KemZRKD1336EbgFLsK0c.roa (raw, json)
Hash identifier: VbcfnIWD/mtysokO9MYggvdA87sup0PJIO+zAaAJHPM=
Subject key identifier: BB:35:B6:15:1D:8A:7A:66:51:28:3D:77:DF:A1:1B:80:52:EC:2B:47
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 01856CB8584FF5B7252816FA725A9DE6D25F
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/uzW2FR2KemZRKD1336EbgFLsK0c.roa
Signing time: Sun 01 Jan 2023 09:44:58 +0000
ROA not before: Sun 01 Jan 2023 09:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3214
IP address blocks: 193.42.27.0/24 maxlen: 24
2a06:5040:6::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:58:4f:f5:b7:25:28:16:fa:72:5a:9d:e6:d2:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 1 09:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb35b6151d8a7a6651283d77dfa11b8052ec2b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d7:9c:10:d8:67:d0:c2:21:5a:35:26:e8:2d:
2a:02:af:98:d7:d0:c9:3d:37:7a:63:cb:2d:d2:b3:
97:cf:d8:08:3b:62:68:8e:ce:36:65:17:d9:f4:7f:
77:72:8a:d6:15:ec:65:6f:42:f7:dd:fc:2f:0e:8e:
51:59:12:42:99:a8:28:39:fa:3c:1f:a2:ed:20:e1:
98:76:bf:d4:b7:34:94:69:67:4a:25:e0:1d:6e:4d:
42:e8:3a:ab:fc:4f:d1:5e:3f:88:af:3e:27:ce:26:
55:a7:97:02:43:8c:3e:78:50:21:8c:ab:76:d1:ef:
fc:58:c0:cb:c7:1b:2e:54:ac:65:75:d1:9c:d3:f9:
5c:c1:a1:32:b0:23:55:3c:5e:50:52:7a:4a:1f:0c:
ef:17:b8:dc:4a:71:dd:a9:f0:79:95:61:dc:53:38:
e3:78:a8:87:04:72:c3:d3:51:db:73:6f:c0:fb:cb:
b0:09:25:b7:13:af:bb:f3:5f:ea:17:11:fb:82:83:
f4:01:ba:03:69:d7:14:a7:96:ab:65:16:92:b5:5f:
24:ae:31:cb:b3:15:2a:2a:ca:08:0d:c7:48:b2:7d:
db:3e:70:e8:08:22:bd:28:09:cd:7a:71:f3:f1:ac:
4f:4f:8e:c1:fd:3e:6b:d7:21:fe:4a:42:e8:9b:44:
09:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:35:B6:15:1D:8A:7A:66:51:28:3D:77:DF:A1:1B:80:52:EC:2B:47
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/uzW2FR2KemZRKD1336EbgFLsK0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.27.0/24
IPv6:
2a06:5040:6::/48
Signature Algorithm: sha256WithRSAEncryption
5e:2d:c3:18:63:d1:7d:ba:bd:75:6a:f1:bf:b4:92:82:23:e6:
31:14:d5:db:33:8a:d8:8d:d8:12:66:4f:3e:53:ec:5a:99:ca:
ba:69:c0:91:22:03:ee:57:7e:73:9e:5f:1d:c8:94:6e:8d:a0:
cb:95:c3:df:86:7b:09:f8:54:bb:4b:92:95:e7:74:47:94:88:
65:95:14:84:47:aa:40:61:cf:b5:24:a0:de:a5:a8:c6:90:ce:
a6:84:91:6d:cc:79:75:7d:c5:27:5f:c6:97:1f:73:c9:ac:e2:
98:a8:b4:49:b2:dc:7c:f4:47:eb:18:14:05:98:cb:36:20:79:
c5:4e:8c:b4:a6:e2:4d:c1:ee:87:3f:ca:3c:96:5b:8a:5a:24:
97:47:13:b6:f9:22:ce:e2:16:bf:3b:ca:f9:ae:10:fa:51:10:
66:5b:35:d7:26:fb:99:e7:c5:e3:c1:5d:e5:cd:39:cb:a2:f4:
a0:00:d8:cd:03:a6:03:ea:76:87:1a:5f:8c:a3:1c:c2:ba:e6:
c0:5c:fc:76:cc:6f:9f:dd:ee:9a:7a:09:c7:8a:4d:08:e6:2a:
d1:23:c6:b3:36:b1:84:33:da:a6:a1:ba:92:22:4f:c0:e8:32:
4c:9e:1e:62:35:13:fc:1a:b1:a2:92:86:0a:b9:8d:2e:72:80:
0f:86:f1:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:59 2024 by rpki-client on console-fra.rpki-client.org