Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/rBiHPUUzlBs-UHIDTdu_X2GzgUg.roa
File: rBiHPUUzlBs-UHIDTdu_X2GzgUg.roa (raw, json)
Hash identifier: l30wEX6NRHE2Af/KHszPhDJ6kNzSKctT9FuslTE7Xwo=
Subject key identifier: AC:18:87:3D:45:33:94:1B:3E:50:72:03:4D:DB:BF:5F:61:B3:81:48
Certificate issuer: /CN=5bcaab7aa1ac7143f8bc823c734b1673a09bb880
Certificate serial: 018570C2C6FD2FCB9CBC12A7EDFF7F777140
Authority key identifier: 5B:CA:AB:7A:A1:AC:71:43:F8:BC:82:3C:73:4B:16:73:A0:9B:B8:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W8qreqGscUP4vII8c0sWc6CbuIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/rBiHPUUzlBs-UHIDTdu_X2GzgUg.roa
Signing time: Mon 02 Jan 2023 04:34:51 +0000
ROA not before: Mon 02 Jan 2023 04:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16263
IP address blocks: 193.111.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:c6:fd:2f:cb:9c:bc:12:a7:ed:ff:7f:77:71:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bcaab7aa1ac7143f8bc823c734b1673a09bb880
Validity
Not Before: Jan 2 04:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac18873d4533941b3e5072034ddbbf5f61b38148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:53:4c:8a:3d:92:be:61:ba:21:12:57:0c:3b:
20:c6:84:8d:c6:7b:62:b8:39:be:80:d6:40:5d:18:
a0:96:7b:f9:df:55:ed:f0:18:5d:35:ca:e3:48:3f:
33:98:95:71:dd:d6:41:e0:fd:dd:98:37:65:d1:b2:
59:03:ba:67:a6:b2:fc:93:ce:6e:02:0b:14:dc:3b:
e4:88:70:a1:73:3d:7d:32:db:65:3f:c8:88:f5:14:
0f:ff:1e:4d:94:2a:20:31:5c:78:8d:dd:a6:53:e0:
fc:76:d1:c6:f6:3b:57:e4:d2:a5:68:8c:69:5e:9f:
7c:31:9d:21:b1:c3:a0:63:d0:18:7c:2a:e7:99:13:
83:58:ce:16:e2:ce:c9:0e:ee:72:ec:a6:65:1c:5e:
77:be:d5:ed:01:28:ef:95:9c:bd:8d:86:f0:b8:75:
33:11:c3:3e:76:31:0e:02:77:fd:1a:37:ab:62:fc:
85:d5:8e:70:94:17:a8:2e:70:36:0a:dd:8e:19:47:
9b:f5:7e:86:8d:86:a8:6a:c3:0e:3a:ad:57:89:e5:
91:a0:8d:f1:34:88:56:0e:83:b0:3b:72:3a:04:f5:
c7:b4:5d:28:02:4b:5e:8c:1c:80:e9:b5:7a:c0:eb:
f5:50:df:f3:a0:b1:19:b6:04:a4:aa:bd:39:df:58:
9d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:18:87:3D:45:33:94:1B:3E:50:72:03:4D:DB:BF:5F:61:B3:81:48
X509v3 Authority Key Identifier:
keyid:5B:CA:AB:7A:A1:AC:71:43:F8:BC:82:3C:73:4B:16:73:A0:9B:B8:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W8qreqGscUP4vII8c0sWc6CbuIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/rBiHPUUzlBs-UHIDTdu_X2GzgUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/W8qreqGscUP4vII8c0sWc6CbuIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.144.0/22
Signature Algorithm: sha256WithRSAEncryption
98:da:90:45:db:a0:91:1d:8a:b2:e7:5e:7c:a5:f0:b5:58:08:
e5:16:21:9a:0a:47:3b:af:3b:e1:5d:6a:2c:02:c0:3c:57:43:
c1:c5:d1:7c:56:31:48:d6:b7:06:35:41:92:f5:0c:70:47:ce:
31:68:da:4e:ff:90:74:b0:16:24:4c:70:0f:a6:b3:59:38:a7:
5b:c4:9d:01:c3:fe:b9:8e:ed:e3:bd:13:16:46:68:18:b6:64:
16:8d:71:d4:eb:20:4f:17:e4:7c:df:f0:5a:2d:d6:5a:41:fe:
d1:4f:3d:7b:d0:bc:5b:53:f8:48:36:4f:c0:5a:13:d1:c9:b9:
7e:f9:0e:fe:b6:a3:de:09:05:6e:1a:5a:cc:49:31:d7:ca:2f:
45:04:5a:0f:a0:f5:b6:ba:e2:43:56:26:44:b9:7f:94:5c:78:
0c:29:b9:6b:36:3a:b6:de:93:22:6f:1a:a7:18:8a:70:d9:ed:
d4:5d:bb:aa:29:e0:7d:9f:3f:c0:48:04:c8:dc:e5:24:23:28:
e5:b7:97:10:67:14:c9:61:15:a4:1d:5d:0c:e0:cb:1b:85:b3:
1c:38:ac:ae:16:ce:27:ac:3a:4b:88:4b:68:94:30:53:36:35:
12:77:42:c5:78:f3:7d:79:d5:ff:28:c6:77:70:02:bb:8a:c6:
88:30:7a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org