Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/i-ufW26gWVVwb4cfg2oasNPPRHE.roa
File: i-ufW26gWVVwb4cfg2oasNPPRHE.roa (raw, json)
Hash identifier: 59HY3t2g704qsFZW38dh0EoCJK8NAyB7mh2S5xrbkdw=
Subject key identifier: 8B:EB:9F:5B:6E:A0:59:55:70:6F:87:1F:83:6A:1A:B0:D3:CF:44:71
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 0189725B8071C9F632E4CF1E8E131A12165B
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/i-ufW26gWVVwb4cfg2oasNPPRHE.roa
Signing time: Thu 20 Jul 2023 08:12:26 +0000
ROA not before: Thu 20 Jul 2023 08:12:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60594
IP address blocks: 155.133.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:5b:80:71:c9:f6:32:e4:cf:1e:8e:13:1a:12:16:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Jul 20 08:12:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8beb9f5b6ea05955706f871f836a1ab0d3cf4471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ec:ac:92:fa:4c:c2:78:55:ff:3a:d5:a6:07:
e7:36:04:ce:ae:e2:5b:ab:94:7b:e9:98:ea:aa:4b:
5a:b6:f5:5a:cc:b3:bf:31:3c:c8:59:bf:04:0c:26:
8b:dd:b3:4f:5d:97:c6:91:0c:09:47:52:56:f2:de:
2f:1a:39:90:48:2b:71:51:74:58:2e:c9:89:2e:31:
de:2d:a9:fd:71:d6:e1:2e:fa:90:48:86:73:a8:10:
27:ed:4d:9e:b6:9c:0f:ba:22:79:6c:fa:8b:84:03:
1e:30:2b:94:19:91:dc:44:9c:db:8a:46:81:a9:69:
99:73:fe:53:99:84:6e:6c:de:6b:0c:92:82:d3:e4:
2d:69:85:63:94:ba:67:2f:93:08:ea:1e:a6:28:4d:
f7:82:a7:50:3e:6e:d5:5d:b2:c5:30:91:b9:5a:24:
08:8a:09:2b:bb:30:8d:05:d4:4a:53:d3:df:c5:14:
48:af:bb:4a:ea:13:b7:a0:bf:35:83:cf:6b:12:5e:
39:37:66:96:df:64:ba:94:3f:14:c9:a2:89:a1:08:
78:93:64:dc:b0:59:ff:b4:0b:63:94:9a:3f:89:9e:
7c:b0:21:b2:e8:3e:b6:d2:e8:5e:2b:5a:4c:89:e3:
80:fd:1c:74:84:8e:a6:7d:82:79:32:f4:9e:c8:01:
bf:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EB:9F:5B:6E:A0:59:55:70:6F:87:1F:83:6A:1A:B0:D3:CF:44:71
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/i-ufW26gWVVwb4cfg2oasNPPRHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.32.0/24
Signature Algorithm: sha256WithRSAEncryption
52:8d:91:ef:8d:2f:5a:db:b1:be:a4:01:ce:a4:4e:c9:17:f4:
c4:48:49:03:22:4a:31:67:c6:79:32:10:c6:97:0b:65:ea:c3:
ae:a0:f6:f5:31:ab:31:4c:8f:ec:f0:3c:17:7c:32:40:59:df:
89:5d:ed:53:35:ea:8e:76:a6:d2:ee:2b:31:5d:5f:49:c1:15:
7d:1a:85:94:fe:1d:45:0b:50:f4:4b:f1:30:92:65:d9:d4:f8:
85:64:41:2c:92:68:ff:99:85:43:c7:57:b6:a9:ca:a6:2d:b8:
db:1d:80:6f:26:ec:2f:24:e4:29:a5:a8:5d:f7:03:c5:f0:54:
df:d6:d5:c5:e2:b7:c5:ea:17:c8:ff:64:ca:14:07:5e:ad:fc:
5d:58:d1:75:0a:f9:1d:f1:da:56:cd:6c:c5:d6:0f:9e:59:18:
9e:33:94:a7:b1:69:93:68:01:4c:3c:12:4d:f8:da:7d:a3:54:
a0:f1:df:6e:d0:56:00:b1:61:95:54:61:ba:58:6a:c8:58:6a:
d5:e5:63:4c:6f:69:fb:5a:13:aa:a3:ef:7b:36:5b:e8:cc:7b:
64:b5:a1:40:2c:f9:9a:85:76:4f:35:9e:e1:7e:00:c0:cf:96:
af:a4:cd:73:c2:00:a4:97:93:c1:e7:b0:ab:c9:c1:a4:03:aa:
17:af:cd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:36:10 2024 by rpki-client on console-ams.rpki-client.org