Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/57889a-50df-4abf-81e5-1b12641f493b/1/UCOD95HD221_N2h0wv_YqnyilZI.roa
File: UCOD95HD221_N2h0wv_YqnyilZI.roa (raw, json)
Hash identifier: gui53vVfuR/n/+MugjAZzIGgdqU1YSaVbYAf2MqUUzg=
Subject key identifier: 50:23:83:F7:91:C3:DB:6D:7F:37:68:74:C2:FF:D8:AA:7C:A2:95:92
Certificate issuer: /CN=6faae55613fc89586f7bd6de0edca097b8615a6a
Certificate serial: 01869C007BBC1B7C85345B4E375D28606B42
Authority key identifier: 6F:AA:E5:56:13:FC:89:58:6F:7B:D6:DE:0E:DC:A0:97:B8:61:5A:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6rlVhP8iVhve9beDtygl7hhWmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/57889a-50df-4abf-81e5-1b12641f493b/1/UCOD95HD221_N2h0wv_YqnyilZI.roa
Signing time: Wed 01 Mar 2023 07:08:42 +0000
ROA not before: Wed 01 Mar 2023 07:08:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29488
IP address blocks: 217.74.176.0/20 maxlen: 20
2001:1a30::/32 maxlen: 34
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:00:7b:bc:1b:7c:85:34:5b:4e:37:5d:28:60:6b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6faae55613fc89586f7bd6de0edca097b8615a6a
Validity
Not Before: Mar 1 07:08:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=502383f791c3db6d7f376874c2ffd8aa7ca29592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:29:79:79:e8:5f:4e:a4:4b:03:d6:3b:58:1e:
84:3c:de:b9:14:b1:43:ae:80:16:96:41:9d:db:37:
06:f4:0c:69:08:ad:5b:84:5f:04:34:2e:fb:48:66:
e1:f3:9b:eb:64:c7:4d:e3:e1:ac:83:92:24:3c:0a:
87:22:b2:1f:e5:a5:2a:2f:ec:09:9c:e1:fd:05:ae:
99:1a:56:7f:a9:e8:4a:c2:aa:83:22:fd:5c:23:44:
6c:d2:5c:25:fd:1f:ad:19:a6:a9:bf:e3:fb:69:df:
8c:18:29:37:17:45:f4:01:db:c3:0e:1d:05:37:73:
fb:cd:7d:30:5c:1b:d1:84:36:c2:2b:a3:55:cb:88:
df:8e:1f:d1:14:b1:44:17:98:38:24:ba:a3:6c:d1:
ec:aa:2c:c3:06:67:46:3c:49:1d:1f:c1:b8:bb:58:
e4:04:22:cd:f2:04:ef:75:91:6f:09:77:68:3c:e6:
b7:61:66:cb:91:20:bc:9f:b9:56:12:d4:0e:5c:fc:
7e:d9:71:4f:08:f2:cd:ce:c6:59:19:4c:80:9b:ef:
97:d6:48:b0:11:ce:27:59:ca:e1:aa:89:16:40:86:
ff:3b:b2:14:ed:42:14:68:27:a5:e2:0c:33:57:c2:
9f:37:ca:2f:98:21:ab:87:fd:5f:f8:a6:5d:ac:4a:
98:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:23:83:F7:91:C3:DB:6D:7F:37:68:74:C2:FF:D8:AA:7C:A2:95:92
X509v3 Authority Key Identifier:
keyid:6F:AA:E5:56:13:FC:89:58:6F:7B:D6:DE:0E:DC:A0:97:B8:61:5A:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6rlVhP8iVhve9beDtygl7hhWmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/57889a-50df-4abf-81e5-1b12641f493b/1/UCOD95HD221_N2h0wv_YqnyilZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/57889a-50df-4abf-81e5-1b12641f493b/1/b6rlVhP8iVhve9beDtygl7hhWmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.74.176.0/20
IPv6:
2001:1a30::/32
Signature Algorithm: sha256WithRSAEncryption
3a:c8:27:76:eb:15:e9:b9:5c:ac:1e:25:ab:a6:47:5c:3d:18:
3e:70:98:3c:ed:35:18:7f:f0:af:a5:c4:8d:fe:85:37:63:59:
3a:4f:3c:93:31:0a:d2:f5:99:e5:82:fd:5a:aa:65:b1:cb:d6:
37:ea:90:67:a8:82:14:8d:9b:88:0e:f2:4b:b3:95:f6:86:18:
b0:e5:de:f6:2d:ae:ef:2a:37:c8:11:61:f2:5e:67:d1:63:43:
0b:0d:ca:b5:df:2e:e0:97:8d:62:eb:1c:b6:64:17:0c:ed:23:
d1:f6:f5:08:5b:73:29:b8:fd:0a:8e:34:91:46:4b:5c:b5:92:
24:a3:f5:c4:aa:88:e9:42:11:e4:5c:a2:be:51:42:8d:c1:16:
eb:c6:68:15:99:96:16:4f:00:f8:a8:80:da:6f:1e:90:73:99:
39:6c:5d:51:20:d7:e2:37:1a:64:a4:b4:de:c9:73:b0:67:3d:
61:45:99:1f:19:96:05:f6:c5:8c:f8:39:5b:95:6a:f3:23:e2:
0b:57:f9:dc:3d:d6:39:78:15:80:f6:c6:e1:64:dd:29:f7:13:
44:ff:24:ff:de:cb:38:30:bc:5c:22:3d:9f:85:e6:80:65:68:
41:d8:99:19:f5:26:38:7e:81:f1:5c:94:fe:e4:7c:1a:16:09:
8f:28:2e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:45 2024 by rpki-client on console-fra.rpki-client.org