Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/EDyXRNRLeZy9jgvz8WCXuucD6CQ.roa
File: EDyXRNRLeZy9jgvz8WCXuucD6CQ.roa (raw, json)
Hash identifier: TI1MgDc1kjrbARmxuIqlRFRJdgX5K6SEqLGKwJaH2nk=
Subject key identifier: 10:3C:97:44:D4:4B:79:9C:BD:8E:0B:F3:F1:60:97:BA:E7:03:E8:24
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42DB6A362B72A8694DF4FB0BA437EF
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/EDyXRNRLeZy9jgvz8WCXuucD6CQ.roa
Signing time: Sun 01 Jan 2023 21:35:30 +0000
ROA not before: Sun 01 Jan 2023 21:35:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50892
IP address blocks: 5.160.17.0/24 maxlen: 24
5.160.22.0/24 maxlen: 24
5.160.20.0/24 maxlen: 24
5.160.18.0/24 maxlen: 24
5.160.23.0/24 maxlen: 24
5.160.21.0/24 maxlen: 24
5.160.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:db:6a:36:2b:72:a8:69:4d:f4:fb:0b:a4:37:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=103c9744d44b799cbd8e0bf3f16097bae703e824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e4:09:24:6e:7b:02:16:9d:e0:6a:11:5f:59:
20:2a:89:71:2a:de:3b:90:96:e0:6a:88:e6:77:1f:
c3:2d:22:06:75:ed:ba:cf:7d:c3:69:ce:c0:6b:d9:
d2:a5:1d:a2:bd:5f:1d:3a:b5:92:28:af:39:11:68:
63:e2:b4:02:a7:76:2b:e4:61:37:5b:e7:9d:89:3e:
6d:ca:d1:39:f1:ac:fc:b9:0d:b0:b7:ba:e5:c7:93:
74:f8:71:78:fd:03:8b:e2:43:16:2f:06:9d:93:6b:
52:24:81:c4:ab:cb:0a:48:01:df:8c:73:b0:64:aa:
b4:81:fe:bf:f1:bb:1c:63:02:e7:74:f2:f8:9a:59:
66:3c:b3:3e:de:68:50:07:c4:a8:b1:d3:71:ce:22:
f8:81:d1:37:1e:f8:93:6d:bb:d8:0b:2e:b0:14:3d:
eb:d8:86:83:9a:9c:e8:8b:be:4a:37:49:c3:28:e6:
e8:2d:61:14:3e:43:54:da:00:4c:b8:3e:70:c9:a1:
d0:4e:e9:17:f4:f1:3b:60:da:71:1a:e4:64:83:9c:
1f:e1:80:7f:b4:c6:a4:f5:25:2d:9a:7c:64:f1:3d:
45:2b:5a:ad:06:1f:0c:d6:9a:93:fe:fa:2b:d1:d0:
e9:60:89:35:ee:28:41:4c:7e:fd:55:ed:48:70:65:
40:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3C:97:44:D4:4B:79:9C:BD:8E:0B:F3:F1:60:97:BA:E7:03:E8:24
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/EDyXRNRLeZy9jgvz8WCXuucD6CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.17.0-5.160.23.255
Signature Algorithm: sha256WithRSAEncryption
81:86:d5:52:23:67:6a:ff:3f:39:1b:0c:a3:fc:82:01:1b:12:
61:35:72:e9:02:1c:10:99:b9:f5:9e:bd:25:13:a7:29:5f:bf:
f9:63:86:02:d8:e6:02:c5:a4:f4:a1:4c:05:5d:51:bd:c1:04:
72:d1:77:ec:0e:2c:8a:fd:b3:b7:bb:e6:5b:22:8c:82:4e:2b:
e1:72:36:27:1d:1e:3e:31:5f:92:45:58:dd:d7:c6:f1:b2:2b:
e3:6c:b4:4d:35:ad:12:55:3f:6b:26:db:04:f4:d6:fa:9b:68:
cb:2e:0b:af:41:27:6f:2c:b1:24:d2:ef:70:1d:c3:86:64:2c:
85:2e:23:16:86:b2:4b:ec:e0:6b:40:6e:2e:19:05:bb:6d:23:
ab:df:30:2a:99:7d:8c:55:82:7c:fe:71:0f:e6:2c:8a:c1:9f:
77:a8:03:d6:32:b8:4a:0f:26:e2:9b:37:3d:0d:cd:42:0a:d2:
be:2c:25:c2:c4:ed:1e:b5:a4:b0:4c:15:97:86:5a:02:c9:b0:
7f:b1:81:fc:9d:78:cd:5c:7d:96:8a:06:83:da:6f:d9:56:d5:
7d:e1:e9:f7:ac:72:af:f8:9a:72:98:05:21:a6:0e:83:3d:c0:
a8:54:9c:58:59:44:e2:0c:99:6d:0c:64:00:97:08:86:e0:11:
d2:4c:3e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org