Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/91585a-a38f-4749-9f48-47974f5c704a/1/UX-zyTaHcjiG4ulnGGlJmzuRq-k.roa
File: UX-zyTaHcjiG4ulnGGlJmzuRq-k.roa (raw, json)
Hash identifier: 2mSGrtmQK7hK6mTTvw9yTEyRD/UI5Bm+FN3e6BElG04=
Subject key identifier: 51:7F:B3:C9:36:87:72:38:86:E2:E9:67:18:69:49:9B:3B:91:AB:E9
Certificate issuer: /CN=a9ff3a73868dc11cd8dbf5e1c380bbb710602fb4
Certificate serial: 018683B4E23C27A82E950A54CA9F15810608
Authority key identifier: A9:FF:3A:73:86:8D:C1:1C:D8:DB:F5:E1:C3:80:BB:B7:10:60:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qf86c4aNwRzY2_Xhw4C7txBgL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/91585a-a38f-4749-9f48-47974f5c704a/1/UX-zyTaHcjiG4ulnGGlJmzuRq-k.roa
Signing time: Fri 24 Feb 2023 13:55:15 +0000
ROA not before: Fri 24 Feb 2023 13:55:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206790
IP address blocks: 193.223.254.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:b4:e2:3c:27:a8:2e:95:0a:54:ca:9f:15:81:06:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9ff3a73868dc11cd8dbf5e1c380bbb710602fb4
Validity
Not Before: Feb 24 13:55:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=517fb3c93687723886e2e9671869499b3b91abe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2d:d1:94:b6:9d:b2:ce:39:ab:d6:e0:b8:40:
81:ec:6c:58:65:1d:56:d1:38:df:23:fc:ab:ce:dc:
2c:f9:b8:12:7d:50:c6:cf:99:01:6b:eb:82:d4:13:
5f:8f:ab:57:e2:83:91:89:e8:af:32:9a:1b:71:8e:
44:32:35:e7:f8:d5:a4:29:fa:0e:78:c6:06:a7:ed:
84:7d:e0:8b:33:3a:e3:80:5b:06:0a:8b:4b:ea:cc:
17:d0:b1:2f:5f:15:4c:e0:03:cd:e5:5a:f8:91:32:
4c:87:9e:92:ab:47:30:6a:fb:40:4f:1b:0b:35:fa:
27:53:a9:5a:ba:0f:02:de:bf:28:6a:e1:eb:89:0e:
9b:dc:27:63:51:79:88:82:23:e2:dd:5c:53:e2:7e:
5b:b9:5f:7d:b5:bf:ca:88:64:80:7d:5c:b1:be:b7:
f6:c9:9a:97:ba:44:b7:45:01:4e:d1:ce:74:d8:14:
e5:7a:84:68:a7:ed:dd:e9:9d:70:74:61:3c:76:fb:
5f:21:33:35:94:d8:49:6e:54:73:43:bd:5b:66:3b:
26:d5:bc:31:74:e6:a5:8e:99:cb:21:11:bd:6e:fe:
0b:d9:7a:11:b7:e9:08:01:c7:68:ff:6f:3e:1a:c0:
b4:fe:3e:76:f1:d3:72:ef:47:24:07:55:6d:92:7f:
4b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7F:B3:C9:36:87:72:38:86:E2:E9:67:18:69:49:9B:3B:91:AB:E9
X509v3 Authority Key Identifier:
keyid:A9:FF:3A:73:86:8D:C1:1C:D8:DB:F5:E1:C3:80:BB:B7:10:60:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qf86c4aNwRzY2_Xhw4C7txBgL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/91585a-a38f-4749-9f48-47974f5c704a/1/UX-zyTaHcjiG4ulnGGlJmzuRq-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/91585a-a38f-4749-9f48-47974f5c704a/1/qf86c4aNwRzY2_Xhw4C7txBgL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.223.254.0/23
Signature Algorithm: sha256WithRSAEncryption
87:5c:cd:bb:ad:68:6f:5e:b5:6b:cd:d0:77:a5:56:4a:64:66:
f7:ad:1d:37:ee:83:5e:f7:36:0e:ee:ea:74:95:a7:8e:9b:12:
8c:2d:b7:2e:dd:0a:ee:18:8d:98:c9:cf:45:e5:c3:e5:ed:d9:
ae:c3:19:f0:f6:23:8b:08:05:74:39:26:ac:4b:69:f0:44:ec:
7a:09:7c:96:88:6f:28:06:b9:3d:31:e3:28:5c:59:d5:d2:51:
07:ad:ed:e6:dd:15:b5:43:d8:f8:ac:55:5e:b5:d3:ec:46:85:
3a:b6:70:db:a5:11:af:4e:56:c2:27:52:8d:b0:d4:20:2e:2a:
c3:79:49:4e:39:15:af:33:59:2c:94:9f:05:cd:87:40:7b:af:
d8:f4:6d:fb:c7:fa:8d:6d:16:00:3d:f5:9b:69:54:f5:65:bf:
19:a2:b3:e2:68:3a:83:91:26:05:59:1d:0a:41:db:c1:6c:35:
99:89:5a:f8:83:91:b1:35:c4:90:1f:50:15:94:65:b1:ea:1c:
c2:9a:7f:81:5e:f8:ae:65:6c:44:91:2c:53:93:83:c3:71:26:
da:0d:d1:bc:e4:bf:39:6a:2b:60:10:1d:95:2d:41:c0:74:5b:
2c:1c:0e:47:0c:4e:19:3f:0e:c0:c2:bb:31:d0:80:54:84:fb:
3e:66:81:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:25 2024 by rpki-client on console-fra.rpki-client.org