Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/N5QSanP8NInYbafEsaev_5t5_5Q.roa
File: N5QSanP8NInYbafEsaev_5t5_5Q.roa (raw, json)
Hash identifier: NA1Z8onp6YpvmZ4c4zomQvI5128GFHZUbwnvmjbpyOw=
Subject key identifier: 37:94:12:6A:73:FC:34:89:D8:6D:A7:C4:B1:A7:AF:FF:9B:79:FF:94
Certificate issuer: /CN=230e9ac64510fa391846bb139ab52b8001d58038
Certificate serial: 01856D13B67738D1021A6B817F3DE481DC7D
Authority key identifier: 23:0E:9A:C6:45:10:FA:39:18:46:BB:13:9A:B5:2B:80:01:D5:80:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/N5QSanP8NInYbafEsaev_5t5_5Q.roa
Signing time: Sun 01 Jan 2023 11:24:46 +0000
ROA not before: Sun 01 Jan 2023 11:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21458
IP address blocks: 193.30.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:b6:77:38:d1:02:1a:6b:81:7f:3d:e4:81:dc:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230e9ac64510fa391846bb139ab52b8001d58038
Validity
Not Before: Jan 1 11:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3794126a73fc3489d86da7c4b1a7afff9b79ff94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:8d:65:a6:b9:32:23:b0:d8:52:a7:42:6d:
4f:2b:19:8b:c3:84:2e:10:58:4c:d8:a3:1c:be:5e:
49:50:95:5f:5b:8d:19:fe:3e:39:6c:91:70:57:ba:
86:4f:9a:92:67:80:33:bd:0a:ea:d1:24:7d:23:1e:
05:6c:ad:17:37:02:c6:e6:3c:13:bd:16:99:d0:b9:
bc:56:83:fa:70:78:21:ff:d8:27:85:7c:55:cb:44:
2f:e8:a8:96:d7:3b:32:2f:f4:63:89:a2:63:01:88:
77:53:ef:14:7a:20:72:5c:4d:1d:64:32:ce:73:dc:
02:d4:37:9a:5c:49:ee:21:fb:e6:e2:9a:b2:39:73:
cf:b7:f8:18:82:ee:5e:48:5a:bb:c2:a8:d0:af:78:
3c:23:07:08:8d:f8:1d:47:b7:c2:a0:e0:b9:d2:aa:
c6:51:d5:04:f9:48:ca:ef:db:ac:eb:7f:e7:5a:08:
fa:c8:c2:74:fc:29:a0:0f:16:c3:f2:ba:bc:46:ab:
5d:4f:86:9a:fc:fb:b0:1e:dc:57:ac:a2:70:cc:0d:
40:54:9d:77:ce:82:1e:64:55:c8:e7:8a:83:57:b4:
55:01:2f:7c:53:40:e1:d3:74:08:97:c4:88:61:b8:
ae:1a:88:39:24:b7:fc:2f:a0:ce:21:2e:c5:09:12:
fc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:94:12:6A:73:FC:34:89:D8:6D:A7:C4:B1:A7:AF:FF:9B:79:FF:94
X509v3 Authority Key Identifier:
keyid:23:0E:9A:C6:45:10:FA:39:18:46:BB:13:9A:B5:2B:80:01:D5:80:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/N5QSanP8NInYbafEsaev_5t5_5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.140.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ee:9f:49:67:1a:22:5c:f9:cb:89:69:ec:e5:ee:5d:f0:35:
18:75:ca:24:21:5b:49:b0:b7:ba:76:07:2e:f1:dc:ff:98:70:
2a:a0:fe:33:7d:3f:7d:96:78:12:e6:af:79:19:32:7f:b6:4b:
99:6e:b6:de:32:52:74:27:21:0d:45:a0:d5:be:49:4b:4a:e3:
7f:e5:07:3b:2a:70:20:a2:f3:93:4a:e5:cc:31:a6:4d:59:bb:
9f:02:69:49:0b:5b:30:9f:70:6b:43:f4:92:e6:57:23:eb:bc:
f9:9e:4e:5c:90:ea:1f:b6:6a:74:eb:62:d3:dd:37:ac:7b:3a:
c5:6f:32:99:11:9c:93:54:db:6c:30:48:c4:9a:bd:f0:3a:46:
b2:9e:44:16:c3:f8:e7:cb:1e:29:a8:43:93:af:df:3d:7d:5e:
95:8e:7e:7d:d8:5a:fb:6e:5d:e3:b8:41:a6:93:c7:54:52:18:
12:66:49:dc:f6:2a:93:36:f8:28:00:25:2b:98:65:d0:4d:ad:
6e:73:ed:93:b5:f2:4c:d9:fa:ce:69:d1:42:ef:9c:46:92:37:
10:b3:e4:e6:5d:f9:73:c3:4c:71:3f:66:89:91:24:16:80:6e:
01:99:87:a5:08:02:91:e7:a0:b3:45:ea:69:ae:9a:52:26:eb:
f0:23:aa:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:07 2024 by rpki-client on console-fra.rpki-client.org