Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/U3_HPc2tx2aP2MIcpjx5hFFyRkw.roa
File: U3_HPc2tx2aP2MIcpjx5hFFyRkw.roa (raw, json)
Hash identifier: CiCmvfFZfYU47GzSwnz9zXm3i25oAzkq7aMberToXAo=
Subject key identifier: 53:7F:C7:3D:CD:AD:C7:66:8F:D8:C2:1C:A6:3C:79:84:51:72:46:4C
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018A313F7F47A8CFE65BEC515B186DF4717C
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/U3_HPc2tx2aP2MIcpjx5hFFyRkw.roa
Signing time: Sat 26 Aug 2023 09:49:19 +0000
ROA not before: Sat 26 Aug 2023 09:49:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.150.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:3f:7f:47:a8:cf:e6:5b:ec:51:5b:18:6d:f4:71:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Aug 26 09:49:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=537fc73dcdadc7668fd8c21ca63c79845172464c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:90:ba:de:e4:76:db:d9:a1:48:de:58:84:8a:
f2:bf:b8:6a:31:98:a4:b6:9b:44:49:87:46:c5:e5:
73:10:ba:70:55:e7:fa:8b:37:3c:3a:a6:b4:0b:b5:
37:26:42:15:0a:d5:d4:32:f1:4d:7e:c6:f1:b6:3b:
c3:95:2e:bc:22:18:4b:f7:89:3e:34:3a:8f:13:35:
4a:83:28:03:b5:35:be:f9:b1:f8:9b:37:35:59:9b:
ba:3b:61:a4:69:a8:7b:db:61:f6:47:02:e5:07:a5:
2e:3e:d7:d9:26:c6:12:cc:34:d3:1c:35:c1:7d:de:
d9:c9:a4:89:67:53:7e:df:84:0d:ca:08:c8:7f:d1:
01:24:84:74:a6:10:a1:41:a4:27:3c:90:af:cb:55:
12:a2:d6:49:bf:3c:1f:68:f3:6a:fe:5f:4c:f5:af:
72:9a:7e:5a:38:7c:8e:d1:e8:7e:a3:a2:8d:c3:b6:
3c:e0:60:f2:f4:77:7e:0d:cd:e3:a5:28:ed:a6:49:
a9:19:18:ad:b4:7a:5e:18:99:87:80:97:6a:38:fe:
f4:c6:52:89:e0:b1:36:a0:bb:57:ad:dc:18:3e:66:
4e:b5:af:bf:ab:06:f6:f9:db:0e:2b:6d:14:5c:84:
6b:75:b5:4d:6d:ba:35:3c:4f:e0:0e:53:40:11:c7:
51:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7F:C7:3D:CD:AD:C7:66:8F:D8:C2:1C:A6:3C:79:84:51:72:46:4C
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/U3_HPc2tx2aP2MIcpjx5hFFyRkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.188.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:ce:0f:3f:8a:c2:a0:b5:16:f4:30:d7:9d:0c:7e:15:a1:b4:
d9:f1:7f:3e:fe:c1:9b:b1:97:70:3d:d9:62:4c:17:d9:2c:4e:
88:94:fc:8e:58:c3:75:ec:51:1b:12:85:c0:17:a8:cd:e5:ed:
7e:6b:6c:77:0a:42:28:77:e7:47:b7:15:77:31:c3:22:c7:f0:
9d:0c:47:8f:cb:d5:3d:ec:92:63:99:78:51:74:74:29:d5:7e:
c1:72:54:2f:a8:09:76:f0:93:5a:6f:58:a2:10:b8:32:da:f2:
43:ec:4e:50:ad:22:ca:a3:29:16:0c:d9:d4:ee:d5:fe:1e:d3:
34:1e:ce:d3:9e:21:bc:95:f6:b1:a0:01:fb:76:6c:67:4f:2c:
fa:da:a0:6a:6f:fa:e9:43:a1:f6:5a:4a:8b:58:4d:c1:b6:78:
ce:32:8d:44:0c:b4:50:11:10:f6:56:b1:bb:7a:15:a4:4b:5a:
f8:44:8a:74:a2:e6:f5:b2:90:34:d2:55:3b:5b:ab:2b:55:54:
a6:c3:6d:6f:0e:10:f4:b6:47:4f:6a:be:3d:35:a7:63:fe:3a:
c6:ec:18:d6:5a:84:0f:57:9d:04:35:e5:8c:d5:15:61:bc:33:
6b:c3:ef:b8:1f:93:67:3e:3d:67:58:44:5a:36:32:55:ad:69:
12:d9:f0:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org