Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/3TJWz0MSVW9ZvrKwa204Oqt6EYY.roa
File: 3TJWz0MSVW9ZvrKwa204Oqt6EYY.roa (raw, json)
Hash identifier: nadL7tk18QLUijctfNEdj/tcDA0hqdLdqkh5Xklci64=
Subject key identifier: DD:32:56:CF:43:12:55:6F:59:BE:B2:B0:6B:6D:38:3A:AB:7A:11:86
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E149490C2F96963FAD6CABCAAB8A
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/3TJWz0MSVW9ZvrKwa204Oqt6EYY.roa
Signing time: Sun 01 Jan 2023 21:35:32 +0000
ROA not before: Sun 01 Jan 2023 21:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59797
IP address blocks: 5.160.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e1:49:49:0c:2f:96:96:3f:ad:6c:ab:ca:ab:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd3256cf4312556f59beb2b06b6d383aab7a1186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c0:fe:4b:c1:b4:9b:d7:51:d0:98:8a:67:79:
6a:1b:9e:2c:b6:7b:7a:b1:0a:8c:cd:69:67:34:1c:
93:c8:2e:3b:31:40:a0:1f:bb:1a:d0:5b:6c:b2:99:
78:0e:94:cc:ef:b8:d2:bf:f5:67:3c:a1:a6:b2:ec:
8c:fb:d6:1b:c6:4c:85:4a:a9:a6:f8:e2:c6:c3:67:
84:84:d3:ff:9f:bb:0a:f0:90:71:06:2a:2b:cf:09:
8d:70:3a:ed:84:7c:b4:dd:96:0e:35:79:94:f1:40:
66:f3:64:d8:b2:57:17:72:87:ad:3b:1a:f9:88:14:
39:f0:82:4a:8e:92:93:e0:7a:03:3e:34:55:5c:df:
b4:36:56:a6:75:04:e2:09:e2:2c:33:c4:b4:29:d2:
48:ec:bb:b0:d5:7c:8c:4e:89:2c:0f:6f:98:77:85:
c9:1a:c7:cc:d2:d5:d8:cd:bd:e0:d5:86:00:de:9c:
1e:2c:52:2b:53:41:85:53:9a:36:ea:b9:bf:ab:1a:
d4:ec:49:a1:ee:34:5d:e5:3b:29:32:96:ff:ae:42:
28:ad:3a:1a:a3:f9:84:cd:ec:3f:55:8b:83:f6:e4:
34:be:7a:30:35:7c:d4:2b:6a:db:b6:7f:92:b9:e9:
2a:47:c9:9d:1e:76:5a:a0:51:be:5c:30:c8:76:1c:
12:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:32:56:CF:43:12:55:6F:59:BE:B2:B0:6B:6D:38:3A:AB:7A:11:86
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/3TJWz0MSVW9ZvrKwa204Oqt6EYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.194.0/24
Signature Algorithm: sha256WithRSAEncryption
61:78:80:26:95:d9:c8:f8:0d:4e:b2:84:2b:57:61:0e:53:ef:
1d:ac:67:56:f1:75:d4:10:18:00:bd:9d:50:ea:12:e2:7d:b0:
b4:9a:23:25:76:43:5c:8a:fb:65:2f:b6:e9:1b:0a:2c:dc:0e:
ff:02:9b:ab:34:c2:02:59:22:9b:a6:3e:24:f7:16:61:39:37:
d0:cb:21:ea:ae:2c:36:c1:d2:7c:6b:ae:34:5e:57:b2:ae:9e:
72:9b:87:e9:00:f3:89:6d:0c:31:17:4c:b6:b9:af:db:6d:a0:
63:29:d8:29:b3:53:14:e8:4a:f4:ca:0e:83:3a:b4:d7:13:10:
1a:2a:77:42:02:f5:50:b7:76:c5:3d:74:51:5c:64:1a:73:b7:
90:7b:1f:7d:b2:99:9e:74:5b:f3:47:4b:40:fb:18:e6:47:1c:
2f:be:b9:c4:81:56:bc:33:aa:ed:e4:6b:0f:9d:ae:8b:f3:10:
4a:8b:ad:3c:2d:1e:c8:ac:e8:2a:af:23:cd:76:39:c9:c1:7f:
4b:87:a3:27:2e:2c:f9:89:60:5b:b3:8f:24:ec:9f:b4:33:0a:
b4:ef:3c:83:86:2e:17:df:cf:d1:68:96:74:73:ff:8f:f1:7a:
06:94:39:9a:38:03:2a:0e:f6:99:01:00:0d:08:d1:27:c5:98:
67:4d:65:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org