Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/U65HWK4xmG-HBnG1jC2b0C7BebA.roa
File: U65HWK4xmG-HBnG1jC2b0C7BebA.roa (raw, json)
Hash identifier: Ju4Cu6VwKq81Bl6sPOJSEFgnHnYfwFX1kSRPgIubjuA=
Subject key identifier: 53:AE:47:58:AE:31:98:6F:87:06:71:B5:8C:2D:9B:D0:2E:C1:79:B0
Certificate issuer: /CN=97aaf892b8991e8c02779cb2db864d321eebe905
Certificate serial: 01857195774CE2120DACD65354CE86597084
Authority key identifier: 97:AA:F8:92:B8:99:1E:8C:02:77:9C:B2:DB:86:4D:32:1E:EB:E9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l6r4kriZHowCd5yy24ZNMh7r6QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/U65HWK4xmG-HBnG1jC2b0C7BebA.roa
Signing time: Mon 02 Jan 2023 08:24:58 +0000
ROA not before: Mon 02 Jan 2023 08:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.135.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:77:4c:e2:12:0d:ac:d6:53:54:ce:86:59:70:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97aaf892b8991e8c02779cb2db864d321eebe905
Validity
Not Before: Jan 2 08:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53ae4758ae31986f870671b58c2d9bd02ec179b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:66:1f:05:27:8f:a4:ec:82:9f:0b:56:4b:42:
00:91:dc:e0:c7:d2:29:8e:38:d8:a7:1b:48:2e:60:
3b:37:38:d8:c3:7a:5b:5b:af:6c:8c:44:9e:34:3d:
05:97:1c:e2:3a:60:a6:09:e1:c6:a8:29:e0:e8:2a:
5a:bb:a7:a4:94:86:50:00:0a:86:e5:b7:63:2a:56:
17:a5:4f:70:cf:04:8d:e5:8b:e8:71:1e:ca:af:71:
cd:41:ed:b5:ef:f9:4f:55:d2:75:a5:d9:98:55:0b:
0b:68:c2:e2:0f:92:12:67:d5:0d:1f:5f:4d:32:79:
78:72:de:18:85:ad:9e:68:ac:1f:a2:c4:2a:83:18:
47:10:53:f9:9b:f6:86:8d:06:3c:37:88:7f:a8:60:
98:e3:d7:ef:ee:c8:6b:ab:11:d3:e8:71:2b:d3:84:
1a:50:2f:67:fb:f5:4d:47:01:82:0f:2f:cb:da:f0:
82:d8:35:39:e8:51:16:be:9e:79:c0:73:a1:ff:16:
68:b2:9e:f5:22:e7:34:53:e5:aa:67:84:fc:bf:bf:
ba:52:5b:56:94:0b:26:b5:ce:98:bb:72:7d:5f:85:
9f:30:dc:f0:9c:49:05:7c:fb:fa:9a:40:9f:08:4c:
d0:35:b3:28:b5:87:9c:0a:9a:df:4a:fa:7a:f4:fb:
5c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AE:47:58:AE:31:98:6F:87:06:71:B5:8C:2D:9B:D0:2E:C1:79:B0
X509v3 Authority Key Identifier:
keyid:97:AA:F8:92:B8:99:1E:8C:02:77:9C:B2:DB:86:4D:32:1E:EB:E9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l6r4kriZHowCd5yy24ZNMh7r6QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/U65HWK4xmG-HBnG1jC2b0C7BebA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/41fe1b-2f0e-4faa-9fd4-ca746867dac8/1/l6r4kriZHowCd5yy24ZNMh7r6QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.219.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:bd:d5:6e:8e:07:ea:f6:90:a9:7a:bd:ed:5c:ea:0f:4e:a0:
d0:73:d1:89:08:cc:d1:8e:3a:59:49:30:41:3d:52:29:0f:f9:
b5:4a:b2:c2:4f:24:e0:68:eb:50:fc:91:32:06:54:bd:ba:66:
13:06:8f:3e:b7:5d:6a:ef:65:60:85:a0:d3:a9:56:68:47:23:
75:d3:3b:ce:8b:c3:fb:f4:9a:ac:1b:73:67:5e:27:5d:ac:ca:
1e:e5:82:37:17:a0:18:b2:ee:90:95:55:10:13:11:44:16:c2:
df:05:28:80:80:53:4f:c8:7c:7a:fc:cc:35:88:82:84:7e:3d:
03:fe:00:7a:99:4e:b4:d1:5b:97:76:33:b4:8e:ac:fb:39:90:
0f:f0:d5:d5:87:bb:f1:59:ba:a5:52:de:c7:e4:d8:e6:6c:3b:
78:3b:f0:74:44:5f:2b:d4:11:22:44:ea:b7:3f:cb:3c:d9:77:
dd:da:ab:cd:f6:fd:ff:ed:98:3b:d2:de:71:54:3d:df:bb:2b:
6c:e4:88:ab:ce:8b:4f:61:c4:db:14:4d:40:c1:85:ef:39:1a:
57:b3:59:f7:9e:48:81:f1:ab:dc:3c:73:49:65:74:21:af:44:
05:27:02:a1:2f:d4:c9:43:67:8a:88:b2:5b:de:d9:99:92:dd:
c2:e2:e0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org