Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/usnn0mTG620sIH5JKkXtQP1qVk4.roa
File: usnn0mTG620sIH5JKkXtQP1qVk4.roa (raw, json)
Hash identifier: AnC4qd6KLvC0wXNyGCJCq8GDdiU38QzTekNMN2mCZyw=
Subject key identifier: BA:C9:E7:D2:64:C6:EB:6D:2C:20:7E:49:2A:45:ED:40:FD:6A:56:4E
Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Certificate serial: 018571F9FDC301798080BE698EA87E296AD0
Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/usnn0mTG620sIH5JKkXtQP1qVk4.roa
Signing time: Mon 02 Jan 2023 10:14:46 +0000
ROA not before: Mon 02 Jan 2023 10:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57630
IP address blocks: 193.201.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f9:fd:c3:01:79:80:80:be:69:8e:a8:7e:29:6a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Validity
Not Before: Jan 2 10:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bac9e7d264c6eb6d2c207e492a45ed40fd6a564e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:50:03:90:cf:cb:57:1b:57:11:1f:a7:a2:
b3:47:fe:f4:4d:b0:f5:88:6c:59:8a:b4:17:3a:f8:
03:21:c0:58:c1:d4:ce:ed:c3:2a:b7:8f:c6:c4:07:
80:f8:c9:4e:8e:b5:5b:b0:33:17:dc:8c:4d:84:40:
72:4d:cf:b2:fa:a5:4c:66:f1:58:24:dd:5c:4b:71:
81:f9:68:ec:e0:91:6d:6b:ed:54:f3:33:f7:f0:e8:
e9:31:67:86:21:6d:75:55:d0:e2:ee:df:a7:fb:73:
86:25:bf:67:be:0b:98:d3:3d:f0:48:41:06:46:34:
90:7c:6f:30:0a:36:c3:cf:bd:35:bb:e4:bb:6f:e5:
7e:7b:66:fb:25:72:f7:5c:ca:7c:0f:50:d7:81:1a:
88:45:e4:53:56:dd:03:ce:42:d3:13:c0:be:31:e0:
9f:56:5b:74:89:a7:68:d9:f3:6b:15:ca:f9:4e:11:
b4:db:4f:10:38:09:fa:c3:d8:71:3f:9d:e7:49:f5:
e6:df:d6:66:fa:c8:3c:f3:4f:e7:b7:11:9a:fa:e2:
14:8e:a9:70:49:49:4c:6d:d3:d1:b7:69:dd:23:25:
5c:3e:79:56:5f:0f:ca:e0:bc:41:d0:0d:70:23:0e:
cd:76:88:0a:1d:12:bf:67:46:15:a7:39:8c:f9:4d:
e8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C9:E7:D2:64:C6:EB:6D:2C:20:7E:49:2A:45:ED:40:FD:6A:56:4E
X509v3 Authority Key Identifier:
keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/usnn0mTG620sIH5JKkXtQP1qVk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.16.0/23
Signature Algorithm: sha256WithRSAEncryption
61:37:3e:ae:90:c7:2a:ef:d1:ca:0b:7a:99:76:f9:e5:1c:8a:
81:a6:49:20:e4:0e:09:33:ae:d9:b7:2f:ac:2e:57:d5:f0:eb:
8b:91:11:3f:ae:0d:5f:ad:45:f4:3a:0d:7d:92:f2:57:a9:34:
09:e2:ee:de:f8:2d:d6:e2:20:d8:40:05:c9:68:50:37:66:c9:
bc:c0:fb:46:8d:ee:af:1d:69:df:51:d8:c6:07:1e:6a:45:ab:
bb:f9:9d:f6:d0:f6:3b:17:de:4a:a7:44:c0:16:5b:97:71:9c:
81:e4:a6:5d:69:ef:60:3f:e5:63:b8:d6:df:7a:fb:77:56:e1:
6c:77:54:d2:2e:65:22:64:89:10:59:e7:55:bb:a1:e6:6a:08:
68:35:ac:7e:04:bf:17:7e:4f:03:50:fb:e8:c2:b8:48:ac:c0:
b7:a3:61:8a:3d:59:39:09:1e:65:09:de:ef:f3:6e:6a:1b:c2:
bb:06:8f:f4:e9:71:bf:44:69:66:a1:e2:dd:8a:c1:8e:74:83:
03:de:7b:19:6f:bf:14:31:aa:b1:a7:5d:e4:e1:ea:3f:88:40:
1c:3b:fc:8f:14:60:cb:dd:56:dd:ff:6a:81:dd:2f:3e:b5:f1:
c2:e4:4f:2e:bf:ae:a4:24:66:3c:72:26:aa:cf:5c:66:96:86:
ca:f7:89:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:16 2024 by rpki-client on console-fra.rpki-client.org