Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/A742jVLdn6aVPx-Rgo8PyMygwWY.roa
File: A742jVLdn6aVPx-Rgo8PyMygwWY.roa (raw, json)
Hash identifier: 5783IOfZUHVtYgJI3QWM/+xNqZmWZZnOwAKk/QJMmjI=
Subject key identifier: 03:BE:36:8D:52:DD:9F:A6:95:3F:1F:91:82:8F:0F:C8:CC:A0:C1:66
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 0188D7C0EB2261E3949DD6ED6445BF9BA967
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/A742jVLdn6aVPx-Rgo8PyMygwWY.roa
Signing time: Tue 20 Jun 2023 07:42:04 +0000
ROA not before: Tue 20 Jun 2023 07:42:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.160.113.0/24 maxlen: 24
193.160.130.0/24 maxlen: 24
193.160.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 14:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d7:c0:eb:22:61:e3:94:9d:d6:ed:64:45:bf:9b:a9:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Jun 20 07:42:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03be368d52dd9fa6953f1f91828f0fc8cca0c166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a5:4f:10:13:c1:19:6f:9b:cc:1a:4d:07:92:
c9:3b:f8:64:86:fa:69:09:95:30:8d:05:78:86:1e:
db:9d:bb:83:fc:d6:8f:57:82:d5:1b:4e:47:95:bd:
fb:94:64:7c:1b:b9:98:87:d9:e4:e3:8c:e1:06:b3:
5b:c5:fe:c6:5d:b9:ae:04:67:76:c1:9d:64:e4:42:
7b:f5:a8:0e:f9:92:0b:57:6f:78:8d:7a:72:d9:4d:
b9:fb:63:f0:29:ee:1a:52:db:7d:76:5f:02:18:ab:
60:22:dd:c3:49:70:f2:99:6f:81:4c:29:57:63:a0:
fc:8f:cf:77:b8:59:18:a7:0f:73:af:47:a4:f6:73:
a7:98:57:05:62:c1:50:c7:b6:05:f2:51:fc:1d:8e:
0c:4a:5d:0a:c0:16:95:e1:03:4c:96:fb:09:51:9a:
91:8c:0a:44:68:f7:78:3a:6c:73:72:31:d4:ff:12:
52:7e:4b:0b:3d:2f:1b:e2:1e:80:2a:14:9d:bb:cf:
b0:d6:d4:58:e7:a0:d1:2e:1c:16:03:d3:33:52:d9:
d5:09:da:99:cf:3d:28:89:7c:f5:52:eb:31:3e:fc:
58:11:60:2a:ae:12:1d:9a:53:1c:c3:4e:f0:f3:82:
8e:c7:a7:a2:72:83:1f:af:5a:b4:d2:5b:7a:25:98:
71:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BE:36:8D:52:DD:9F:A6:95:3F:1F:91:82:8F:0F:C8:CC:A0:C1:66
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/A742jVLdn6aVPx-Rgo8PyMygwWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.113.0/24
193.160.130.0/24
193.160.136.0/24
Signature Algorithm: sha256WithRSAEncryption
99:bb:2a:fd:72:75:b2:9e:9e:51:77:ff:1c:24:0d:b1:27:0f:
e3:28:0e:4f:16:a6:c6:a0:28:b7:74:95:a6:19:ec:15:20:b1:
e6:ce:a7:8c:2a:b2:b0:d9:ba:82:ee:17:11:09:53:96:df:92:
d5:c2:76:d8:66:dc:20:26:8b:fe:6e:0a:7c:47:b5:f7:48:81:
09:4b:ab:7b:29:6e:ff:64:fb:f0:84:9e:2d:ac:18:ee:f5:d2:
6f:53:1d:14:a6:10:f8:7e:0d:60:d3:4f:e6:7b:1d:44:a7:67:
e7:2a:06:d1:d0:14:b3:1a:29:e2:65:94:52:74:c4:27:f5:97:
29:77:fd:78:94:94:23:42:e0:e2:5c:7d:a0:c2:12:9a:9d:77:
9e:fd:ca:b9:8c:38:07:2d:36:22:d4:ac:92:e9:fc:84:df:29:
06:c7:c0:16:ff:6b:7f:95:56:3d:54:ea:a1:77:d0:d4:3f:1a:
82:99:3d:61:02:b7:8c:9a:91:09:09:44:6a:e9:3c:63:20:8f:
d1:00:a9:8f:ef:71:e0:a3:61:f5:42:c3:f3:67:ab:86:36:3e:
56:dc:89:32:50:c3:ba:fb:81:53:65:ec:47:4b:a1:09:63:aa:
b4:08:51:b8:bd:d9:2f:a8:17:27:94:f5:09:45:95:fc:d4:34:
2a:bd:52:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:40 2024 by rpki-client on console-fra.rpki-client.org