Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/UgeZFeS3LYNC-aWTQ5cUcj-fJQ4.roa
File: UgeZFeS3LYNC-aWTQ5cUcj-fJQ4.roa (raw, json)
Hash identifier: rmxc55Me43GJXfIwyIHZJtfzm8ICrcrilMwy+6X7pQA=
Subject key identifier: 52:07:99:15:E4:B7:2D:83:42:F9:A5:93:43:97:14:72:3F:9F:25:0E
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 019362873CCF6D0546A2DC6810F3FFAE7B0E
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/UgeZFeS3LYNC-aWTQ5cUcj-fJQ4.roa
Signing time: Mon 25 Nov 2024 08:54:10 +0000
ROA not before: Mon 25 Nov 2024 08:54:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43793
IP address blocks: 78.111.240.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 27 Nov 2024 02:11:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:87:3c:cf:6d:05:46:a2:dc:68:10:f3:ff:ae:7b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Nov 25 08:54:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52079915e4b72d8342f9a593439714723f9f250e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8e:d6:fa:1c:aa:f9:bc:31:e8:65:7c:b3:fe:
ec:01:e7:05:83:61:2c:68:56:66:a7:86:d4:5f:cf:
80:16:cc:ab:6e:e1:a7:ea:ff:0f:23:dd:86:ba:93:
d6:4b:c8:ec:34:4d:cb:57:aa:6f:34:1e:1c:55:92:
03:a3:71:02:9b:4d:df:cf:c9:0c:30:23:a4:8f:cc:
7e:04:42:8a:e6:81:95:0a:ea:ed:1c:4b:ed:2f:82:
af:9e:57:eb:d1:cb:81:49:3d:9e:fc:98:e8:13:5e:
97:6d:d5:09:62:40:dc:9c:e4:3f:b2:f2:62:24:dc:
2c:35:ea:b3:d6:e8:1c:1f:31:13:99:80:49:41:12:
4f:4f:a7:bd:df:aa:17:ec:5f:74:ef:bc:9b:fa:8e:
99:37:05:93:cc:92:ac:0b:ca:d2:f6:cf:9d:f5:64:
e8:dd:16:bb:d1:41:bc:b0:2b:50:b3:58:00:ab:4a:
3c:53:02:07:09:76:e3:0c:ff:7c:ae:57:0f:7a:11:
37:8e:1b:26:20:15:d4:83:9f:86:3f:d8:71:3f:be:
88:40:10:1f:a1:43:fb:17:ba:98:a9:a4:d7:29:b1:
3a:cb:99:9a:88:af:fe:72:23:d6:9b:c4:4c:75:91:
96:a1:38:f4:84:86:58:b4:0f:99:ea:e9:30:86:14:
dd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:07:99:15:E4:B7:2D:83:42:F9:A5:93:43:97:14:72:3F:9F:25:0E
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/UgeZFeS3LYNC-aWTQ5cUcj-fJQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.111.240.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:e8:ef:21:93:a2:f9:39:1a:7c:ec:f5:87:9a:1b:aa:05:ed:
7e:f6:19:b8:0c:83:6e:d7:91:f0:5a:a3:a3:bb:c8:ef:68:c5:
f7:47:80:34:3d:03:24:11:04:6b:31:8d:2b:18:c5:1d:b0:1f:
b9:e1:07:19:80:b6:02:ea:9b:92:89:59:5b:f5:16:b4:dc:57:
12:66:f3:f2:ca:6e:9a:c4:12:52:6f:31:c1:a0:71:44:d1:76:
60:e0:7d:e4:a2:22:3d:c6:f8:02:29:9d:ae:82:a3:80:a0:d5:
f2:16:b6:68:3c:c3:e7:36:4c:33:e4:3a:09:f5:5d:17:0d:01:
57:42:65:ab:9f:81:44:c8:93:7a:7a:dc:2d:ba:a1:56:15:53:
ac:5c:d7:8a:9f:8e:37:6a:92:2b:67:5f:e1:b4:39:87:bd:86:
37:19:c1:a2:a1:c3:a4:28:33:21:94:d9:4a:7f:70:df:56:0e:
1f:41:f2:c6:bb:7a:70:4d:0b:58:c8:24:73:e1:e8:d8:2b:56:
d5:cc:80:38:61:bd:16:ff:f2:53:7c:9a:74:88:91:74:6c:96:
0d:1d:3c:02:20:42:f2:8f:14:27:a8:2f:f5:fb:6e:78:6a:4c:
90:22:84:07:9b:d4:bb:82:f4:fb:02:a2:5c:16:f8:fd:fc:80:
61:31:f5:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:13:28 2025 by rpki-client