Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/UvIujvQwxsNq36puG4BZvYPPIZU.roa
File: UvIujvQwxsNq36puG4BZvYPPIZU.roa (raw, json)
Hash identifier: yiERmE1Uva9Ewc/kEHUusbtWW8rx/83gESMhZCxfl0U=
Subject key identifier: 52:F2:2E:8E:F4:30:C6:C3:6A:DF:AA:6E:1B:80:59:BD:83:CF:21:95
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 01857295A611C534A90372472FDC6933B088
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/UvIujvQwxsNq36puG4BZvYPPIZU.roa
Signing time: Mon 02 Jan 2023 13:04:48 +0000
ROA not before: Mon 02 Jan 2023 13:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210126
IP address blocks: 91.234.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:a6:11:c5:34:a9:03:72:47:2f:dc:69:33:b0:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Jan 2 13:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52f22e8ef430c6c36adfaa6e1b8059bd83cf2195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:12:d6:c9:99:74:45:60:47:23:5a:d7:00:0d:
27:16:98:ef:42:6f:5a:66:fa:fa:51:01:59:4f:d7:
60:09:56:6b:f7:45:9a:d5:c5:21:6d:9a:fa:b5:c5:
0a:5e:7a:03:b3:a9:6e:01:b9:e6:28:b9:e4:69:09:
20:7b:22:07:41:93:14:a9:fb:32:0e:5e:7c:25:70:
53:d6:5a:9c:02:4e:74:81:aa:e9:fe:a3:58:d3:d4:
c0:f9:b6:a7:23:a8:d8:2e:ba:ff:70:1b:08:57:d5:
bf:7f:39:76:5f:e9:f6:e0:d7:92:20:18:2b:f2:05:
c2:30:52:17:2a:61:8b:90:f2:cf:14:d9:d7:7a:2c:
a1:0d:2c:26:b4:68:d5:c2:9d:49:08:47:13:b5:a7:
94:94:e3:1a:7f:f2:5a:3b:8a:b3:7f:23:50:29:bc:
1b:f6:1c:e7:3f:8c:1d:80:f8:97:15:1b:72:6e:99:
36:b4:2f:b9:dd:db:b6:d4:82:96:1d:7b:84:69:27:
74:21:91:1e:c3:96:2c:d7:58:f3:29:b2:9b:ea:c4:
ad:73:28:5b:49:59:93:f2:24:d6:8d:d2:16:39:ab:
21:cf:92:da:9d:54:85:e4:2c:cf:3c:b6:c8:78:69:
0b:dc:87:2b:b5:84:41:58:64:6e:b2:96:2e:c4:a0:
9d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F2:2E:8E:F4:30:C6:C3:6A:DF:AA:6E:1B:80:59:BD:83:CF:21:95
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/UvIujvQwxsNq36puG4BZvYPPIZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.200.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d3:97:2f:7e:30:16:df:04:c3:1c:c3:08:7d:d4:56:51:44:
ec:aa:f7:91:1d:42:8b:4f:08:80:05:3d:b2:aa:80:35:c5:d7:
09:c6:b6:06:c7:5f:5a:aa:33:33:ab:df:bb:fa:a0:ee:34:c7:
13:f1:dd:47:ca:89:b2:b1:35:26:a1:79:5b:56:34:e9:fc:f3:
ee:da:c1:fc:48:52:88:5c:ca:6e:20:38:52:af:b9:ff:1c:ce:
6e:1d:95:10:7f:c0:bd:a3:b4:9d:8f:3f:09:08:1e:a3:1e:0c:
73:b6:86:59:19:f1:06:e2:87:2f:7c:79:be:f6:84:86:0f:eb:
f0:31:da:54:57:ad:b0:ee:4c:29:75:92:44:95:c7:98:87:65:
48:93:d1:0b:78:fb:69:a0:c6:b1:b0:82:fa:4e:b7:b6:4a:e4:
fe:0b:eb:f0:31:0d:ae:ea:12:e5:c9:3b:f6:ae:dd:f5:3f:80:
70:c9:5c:21:19:74:d7:40:d1:e5:5c:35:4c:37:eb:cc:f1:6d:
d6:a2:75:f4:9a:3d:dd:74:54:d5:a3:8a:51:7c:4c:86:69:45:
66:48:b5:eb:79:d9:51:60:79:0f:d3:15:42:ac:ab:31:34:73:
28:1e:f2:99:4b:6d:8c:ef:6b:6e:11:a8:cb:8a:e7:45:13:75:
df:76:06:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:33 2024 by rpki-client on console-ams.rpki-client.org