Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/56hoDO-N_3Z6ur4elfHjLriQaDc.roa
File: 56hoDO-N_3Z6ur4elfHjLriQaDc.roa (raw, json)
Hash identifier: wubziMunt9T6bpdYj1y7l/jwNVxL0mM+bibKrvUcIAw=
Subject key identifier: E7:A8:68:0C:EF:8D:FF:76:7A:BA:BE:1E:95:F1:E3:2E:B8:90:68:37
Certificate issuer: /CN=894928a39627cd5ee5f975bd897c2d775ab29940
Certificate serial: 01856C5CA16FDD7764217076A2E358D99CC0
Authority key identifier: 89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/56hoDO-N_3Z6ur4elfHjLriQaDc.roa
Signing time: Sun 01 Jan 2023 08:04:48 +0000
ROA not before: Sun 01 Jan 2023 08:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9183
IP address blocks: 193.108.217.0/24 maxlen: 24
185.112.176.0/22 maxlen: 24
194.39.218.0/23 maxlen: 24
139.15.0.0/16 maxlen: 24
193.141.57.0/24 maxlen: 24
2a03:cc00::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:a1:6f:dd:77:64:21:70:76:a2:e3:58:d9:9c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=894928a39627cd5ee5f975bd897c2d775ab29940
Validity
Not Before: Jan 1 08:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7a8680cef8dff767ababe1e95f1e32eb8906837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:08:9e:e7:35:47:f2:4f:0f:be:94:d9:73:c5:
ca:40:68:c2:48:48:37:6f:69:1c:d8:61:11:aa:2e:
00:72:ed:69:ae:d9:f1:1f:e2:b8:e3:a3:71:10:5a:
60:a7:27:3e:9b:33:9c:f9:ae:28:34:95:1d:73:b7:
a4:ec:63:0a:2a:4f:a2:dc:75:17:37:16:10:10:27:
63:f9:f1:4e:1d:85:64:a4:2c:4b:14:2c:af:ca:52:
72:5c:9e:2c:50:b9:ef:9c:6c:74:92:c1:34:48:bf:
4e:b7:09:39:28:96:ea:5b:89:66:dc:48:a2:84:01:
14:1f:d9:03:82:51:22:3f:fc:14:8b:3f:ce:4d:1b:
78:f6:86:49:ed:e9:05:db:9f:9a:ab:e8:f6:23:b8:
88:56:6d:f4:48:d1:ae:e1:ad:ac:b3:81:66:07:95:
61:8f:3a:42:31:8e:c0:a7:6b:f1:6b:69:40:72:ae:
7c:5c:b5:68:76:2a:61:d8:fa:ec:36:ed:01:ea:23:
61:94:8d:b8:2c:f4:6f:f6:4e:f2:fa:ee:69:3c:9f:
f7:9b:f3:80:e6:e5:53:79:43:b4:5d:1f:ed:ce:5a:
7f:98:41:78:63:ba:22:0c:d8:af:19:41:7d:3d:3e:
c9:72:bf:73:17:c4:61:7e:8e:54:65:6d:cd:85:6b:
c7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A8:68:0C:EF:8D:FF:76:7A:BA:BE:1E:95:F1:E3:2E:B8:90:68:37
X509v3 Authority Key Identifier:
keyid:89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/56hoDO-N_3Z6ur4elfHjLriQaDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.15.0.0/16
185.112.176.0/22
193.108.217.0/24
193.141.57.0/24
194.39.218.0/23
IPv6:
2a03:cc00::/32
Signature Algorithm: sha256WithRSAEncryption
09:8c:a6:35:28:c2:3f:17:76:44:4d:ac:25:d1:96:cf:3a:61:
43:11:a4:f3:b3:ce:9e:ec:43:d4:d8:b2:5f:47:f6:e4:3f:f6:
a0:d2:a5:ff:c3:d6:87:43:fc:8b:ab:c1:9b:74:b1:2a:f7:2b:
35:58:89:1c:bd:e3:62:30:05:97:ac:c4:1f:3b:ea:4b:fc:57:
97:8c:47:47:34:f4:b7:25:1e:54:34:6d:85:b8:a9:37:90:b1:
1e:7f:5b:c7:05:81:9a:c8:d9:e9:c0:ca:e1:ae:ab:88:38:0e:
c9:0e:a3:31:b8:84:d2:09:47:f8:f4:ea:79:62:28:ae:c3:2c:
df:03:25:1c:2a:1a:0e:67:88:c8:79:bb:8a:16:0a:58:0e:df:
e3:f4:9c:8d:65:b4:2c:a2:93:85:13:91:a5:88:b2:9f:e4:aa:
17:7e:81:0e:cc:a1:8b:7c:a7:d5:d9:fa:b0:29:d7:74:32:c4:
42:8f:24:5e:ad:6d:a8:c9:ae:c1:21:af:ac:59:2f:e2:70:cd:
6c:07:9b:64:49:71:65:55:d7:dc:25:69:d9:3b:01:cd:dd:73:
15:15:0d:cf:7f:1d:c6:f9:e4:51:44:4e:71:ca:10:76:a4:d7:
89:c3:de:34:05:d9:4f:df:b2:18:fd:e8:fe:5c:a0:af:8f:f9:
11:f6:09:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:06 2024 by rpki-client on console-fra.rpki-client.org