Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/5hemKGyJxl-DNTiKyHhIWh2lxQI.roa
File: 5hemKGyJxl-DNTiKyHhIWh2lxQI.roa (raw, json)
Hash identifier: aPbtjA7oCiP8THA3ZD14HxcFZ1XFd3YPSKnfKOBfIvE=
Subject key identifier: E6:17:A6:28:6C:89:C6:5F:83:35:38:8A:C8:78:48:5A:1D:A5:C5:02
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0185706760B03406A704EC73A0A300777DCF
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/5hemKGyJxl-DNTiKyHhIWh2lxQI.roa
Signing time: Mon 02 Jan 2023 02:55:01 +0000
ROA not before: Mon 02 Jan 2023 02:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1015
IP address blocks: 193.57.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:60:b0:34:06:a7:04:ec:73:a0:a3:00:77:7d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 2 02:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e617a6286c89c65f8335388ac878485a1da5c502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:90:5d:65:cc:40:6b:dc:e7:00:94:e0:08:2b:
7f:24:ea:ff:e7:a7:21:c7:3f:af:c8:5b:31:6f:b3:
65:49:8e:32:7d:a1:f5:9c:37:d0:22:a0:e5:6d:29:
1d:32:ad:15:d3:15:ac:aa:d0:30:e5:52:f4:44:40:
72:66:f8:d8:32:2d:e2:78:ed:d3:b6:a0:5f:66:ea:
a8:87:30:c4:6f:ea:ec:30:51:79:d5:1c:a0:0b:f6:
85:e6:9a:e6:74:73:ba:9f:6b:96:d1:22:83:7c:68:
e5:85:f0:c1:40:50:fd:a7:5b:29:46:9c:a7:01:7c:
1e:b6:b5:5b:b8:ac:20:d2:a5:ef:00:bc:61:af:5c:
7a:0c:27:9d:7d:8d:34:bf:bf:58:2e:55:e5:6d:16:
9f:bb:59:1a:de:9f:d7:32:76:94:34:d0:e9:a3:ef:
be:8d:46:6b:11:ec:4e:81:30:4e:32:c6:c9:a6:56:
a3:83:70:37:e9:34:7e:8f:99:a2:2d:51:94:e5:50:
9d:01:93:d0:8e:f9:49:b3:46:85:0c:ec:e0:35:f3:
6c:90:ef:8a:d3:df:79:a5:1a:e4:e5:b0:4e:d5:5a:
57:bf:24:2e:b6:48:1d:b2:62:3d:10:a2:a1:5a:da:
da:ae:38:13:1b:0f:ca:50:cf:7f:41:10:30:45:8c:
d8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:17:A6:28:6C:89:C6:5F:83:35:38:8A:C8:78:48:5A:1D:A5:C5:02
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/5hemKGyJxl-DNTiKyHhIWh2lxQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.8.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:3b:12:db:8d:be:68:ab:2d:14:d2:7a:38:94:26:55:0e:71:
4c:ef:45:6b:46:26:33:f6:89:2a:01:76:a3:d3:7c:95:ba:e9:
2f:17:20:89:6a:f7:08:a0:00:a2:8e:fd:54:25:88:d1:f7:7e:
28:d6:fd:eb:77:ef:a7:5c:1f:1f:51:84:e5:e2:22:cf:d1:e2:
bb:b3:a6:44:1d:80:6a:6c:7f:6d:08:04:6e:bf:b8:13:b9:93:
dd:50:7a:23:28:b4:e7:e3:36:f0:82:3f:24:c4:ce:af:2e:40:
b0:ff:a5:61:99:0f:d9:81:c4:ed:4d:d7:74:46:d0:00:13:a2:
7b:67:9e:79:97:f9:2b:20:77:5c:c7:dd:8c:7c:9d:17:38:6e:
35:45:14:6b:e6:e5:75:75:b0:45:8b:a9:ed:ac:a1:cd:6a:a6:
50:97:ee:73:00:eb:9d:f1:21:53:e3:ac:60:a5:ea:ec:c3:b8:
d8:7f:c1:1a:f5:6f:35:65:29:57:19:a3:27:27:a8:b7:73:74:
b7:74:f4:60:44:23:69:02:8b:a6:61:1e:d0:95:00:eb:09:e9:
be:fa:c5:d3:b5:18:f8:40:fb:f6:c3:67:80:a8:3d:3d:3b:09:
6a:68:6c:9a:c2:88:18:cd:2f:d9:ee:7c:65:9d:2d:52:c8:38:
0c:a1:d1:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org