Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b33481-6634-4d09-bf12-ab7f14daae4f/1/U5MmvYi-oQecdRUqDj6Ig-HZ48I.roa
File: U5MmvYi-oQecdRUqDj6Ig-HZ48I.roa (raw, json)
Hash identifier: DOi5W02bkxDvplvvHqSNKyYqORgvRe4M7D0GMos91EU=
Subject key identifier: 53:93:26:BD:88:BE:A1:07:9C:75:15:2A:0E:3E:88:83:E1:D9:E3:C2
Certificate issuer: /CN=296016ad64c22600acf3049f8758f53ebb1e57c4
Certificate serial: 0191247320E5857AF19CD1A6D405F07F8C99
Authority key identifier: 29:60:16:AD:64:C2:26:00:AC:F3:04:9F:87:58:F5:3E:BB:1E:57:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWAWrWTCJgCs8wSfh1j1PrseV8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b33481-6634-4d09-bf12-ab7f14daae4f/1/U5MmvYi-oQecdRUqDj6Ig-HZ48I.roa
Signing time: Mon 05 Aug 2024 21:30:10 +0000
ROA not before: Mon 05 Aug 2024 21:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208226
IP address blocks: 216.87.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 14:14:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:24:73:20:e5:85:7a:f1:9c:d1:a6:d4:05:f0:7f:8c:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296016ad64c22600acf3049f8758f53ebb1e57c4
Validity
Not Before: Aug 5 21:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=539326bd88bea1079c75152a0e3e8883e1d9e3c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:55:02:db:ae:2b:19:6f:9b:09:27:7b:cd:94:
6b:19:77:b4:a2:9b:e1:b0:b8:37:ad:cf:cd:7c:63:
46:c8:15:38:cb:2e:e9:a6:cf:74:49:0a:39:f9:cd:
5f:04:6b:7b:96:e3:e8:ec:a6:b3:25:28:92:e5:4b:
3d:08:3c:0a:6f:91:91:0b:da:b3:dd:fb:db:27:50:
5e:69:c4:40:f0:c7:29:8f:47:ca:13:a1:51:d0:a8:
03:7a:e4:47:44:7e:0f:7c:28:c3:fe:87:06:3c:7b:
c9:81:2b:f2:ce:ee:8a:82:19:2e:28:df:cf:7a:bd:
a7:38:39:5c:0a:16:71:8d:93:a6:62:d9:e5:f1:6e:
2e:bc:3a:26:38:d7:de:c0:3d:1b:f2:43:33:c5:ed:
74:db:e5:7e:eb:68:68:88:ba:ce:dc:23:d6:55:4a:
28:ae:e0:31:33:30:8f:61:30:f1:31:b9:f6:08:ff:
f0:d5:f6:ad:49:c0:97:53:41:0c:9b:91:48:1e:4b:
74:6f:3b:72:3b:e7:d8:e8:b5:63:f9:73:24:55:68:
a3:d8:10:6a:c9:36:03:41:32:7e:61:e6:d9:03:8b:
30:a7:77:de:ed:a8:7b:f0:7d:da:61:66:19:fe:52:
c8:4d:d4:98:7d:07:f1:f4:be:c1:a0:01:d3:36:bf:
5f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:93:26:BD:88:BE:A1:07:9C:75:15:2A:0E:3E:88:83:E1:D9:E3:C2
X509v3 Authority Key Identifier:
keyid:29:60:16:AD:64:C2:26:00:AC:F3:04:9F:87:58:F5:3E:BB:1E:57:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWAWrWTCJgCs8wSfh1j1PrseV8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b33481-6634-4d09-bf12-ab7f14daae4f/1/U5MmvYi-oQecdRUqDj6Ig-HZ48I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b33481-6634-4d09-bf12-ab7f14daae4f/1/KWAWrWTCJgCs8wSfh1j1PrseV8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.87.54.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:d9:de:b6:cc:91:8d:24:f4:4d:9d:1b:d1:c7:8c:6a:62:b6:
2c:50:72:0a:f8:e7:1d:2e:8e:59:f5:51:e1:17:90:4d:ac:fa:
48:23:6b:18:f1:61:74:26:a9:1a:af:75:c7:56:8b:0b:d9:03:
9f:a2:1f:e5:a0:4a:88:c9:cd:14:bb:af:cf:0e:35:48:6a:2c:
6f:6c:1f:dc:0d:a9:b1:c8:95:4e:fb:fd:71:9e:b2:d7:0a:5d:
26:df:b2:50:48:a9:0b:b9:22:fc:c0:27:96:f3:bf:6f:c1:89:
62:99:a8:0b:35:d2:64:2e:fd:37:8a:d1:08:63:49:17:5c:b3:
72:c7:90:fa:72:d2:b9:3d:ce:9f:a6:d8:1e:29:c3:03:73:7d:
b4:9a:6e:c3:88:d8:99:f4:4d:8a:df:8a:8b:57:db:a6:8c:f6:
b8:43:53:18:ed:1a:d8:36:97:2e:10:a0:f5:88:1e:43:cd:ca:
89:7a:46:52:ce:7b:1a:9b:0a:ee:f7:79:09:78:47:43:21:f1:
9a:f3:60:22:08:ab:b3:69:ac:76:71:03:ef:01:6a:31:84:a0:
c6:82:ae:a7:9a:09:a1:86:eb:21:c1:75:8d:04:70:fd:2d:7c:
1f:5d:49:bc:4a:6d:bd:b6:8a:9e:c4:5f:5e:29:0d:d2:a4:3b:
b9:52:50:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 17:11:15 2024 by rpki-client on console-fra.rpki-client.org