Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/ENTOMcmZ4ZcPRvnmNM5azNhdlgo.roa
File: ENTOMcmZ4ZcPRvnmNM5azNhdlgo.roa (raw, json)
Hash identifier: kFGOky/4XiAsRYIkxKCu3Q7BihjpRhTDldjdPXorwVk=
Subject key identifier: 10:D4:CE:31:C9:99:E1:97:0F:46:F9:E6:34:CE:5A:CC:D8:5D:96:0A
Certificate issuer: /CN=82f59386fcde596f7459075edea4d74c19b01ca2
Certificate serial: 0187EBF3A1F7E8B69DFD3475A4444B92B48D
Authority key identifier: 82:F5:93:86:FC:DE:59:6F:74:59:07:5E:DE:A4:D7:4C:19:B0:1C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvWThvzeWW90WQde3qTXTBmwHKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/ENTOMcmZ4ZcPRvnmNM5azNhdlgo.roa
Signing time: Fri 05 May 2023 12:47:05 +0000
ROA not before: Fri 05 May 2023 12:47:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203360
IP address blocks: 193.56.83.0/24 maxlen: 24
193.56.82.0/24 maxlen: 24
193.56.81.0/24 maxlen: 24
193.56.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 07:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:f3:a1:f7:e8:b6:9d:fd:34:75:a4:44:4b:92:b4:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82f59386fcde596f7459075edea4d74c19b01ca2
Validity
Not Before: May 5 12:47:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10d4ce31c999e1970f46f9e634ce5accd85d960a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c8:77:93:e5:69:be:1f:6c:61:2f:d1:ba:61:
90:2f:3e:91:7d:52:0a:6c:f5:07:67:6a:6f:aa:9f:
a4:d6:11:79:6a:5a:17:82:b2:4a:89:1e:f4:7d:8b:
e0:c2:b3:97:12:60:f5:bf:4a:ff:90:6c:26:ae:f5:
12:e8:00:10:11:80:8c:8d:5d:fe:6f:3a:46:4a:90:
19:aa:f0:5a:f6:a8:63:cc:36:46:26:7b:b3:92:3b:
ab:23:77:5d:27:19:79:3d:89:d1:0b:07:1b:40:88:
ff:09:7e:28:3c:ec:2d:4c:4a:ab:12:df:13:f9:81:
fc:44:5f:2a:93:0e:69:b9:30:ff:84:74:3b:4c:90:
e2:05:87:73:5d:6d:d6:1b:88:ea:7c:f2:0d:dc:df:
09:a8:83:55:69:ec:64:0a:a1:88:3e:83:98:e6:8c:
f0:f4:03:68:f1:6c:93:d4:75:73:c7:26:23:32:0e:
9f:be:e4:8e:e0:cd:20:35:b3:6b:d6:53:1a:9f:5f:
00:2a:65:53:79:ba:26:0a:6b:17:ac:c6:62:65:c6:
bf:9b:3d:6e:8e:09:5f:ee:17:0c:f4:d8:0f:5f:f8:
64:f6:21:25:45:9a:c2:6a:f2:37:c2:81:d1:07:43:
47:05:10:12:63:b6:b8:8a:6a:31:49:55:f9:84:6f:
0f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D4:CE:31:C9:99:E1:97:0F:46:F9:E6:34:CE:5A:CC:D8:5D:96:0A
X509v3 Authority Key Identifier:
keyid:82:F5:93:86:FC:DE:59:6F:74:59:07:5E:DE:A4:D7:4C:19:B0:1C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvWThvzeWW90WQde3qTXTBmwHKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/ENTOMcmZ4ZcPRvnmNM5azNhdlgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/5bc134-5625-4eb1-9f70-f9fedbf63272/1/gvWThvzeWW90WQde3qTXTBmwHKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.80.0/22
Signature Algorithm: sha256WithRSAEncryption
28:10:42:47:c8:68:11:38:25:fa:81:dd:1c:79:be:f6:4a:c3:
2a:38:e9:e8:84:81:c5:22:64:e1:55:57:ea:fc:70:0c:38:ac:
b2:92:8d:c4:6b:5b:c5:80:74:12:4d:a6:59:5e:28:4a:fb:da:
eb:09:59:b3:c1:d4:a1:14:41:b3:09:51:fb:6f:0a:a8:16:21:
ef:19:9d:ec:65:b5:96:5d:5b:c5:f8:00:e3:75:01:1a:a6:ff:
53:27:6e:2e:13:44:37:82:4a:7e:0e:07:58:40:4a:19:d2:bd:
a5:a8:c2:95:d8:54:8f:1b:fe:dd:78:22:f3:21:0f:51:33:f0:
cb:cb:0c:b6:4f:d7:2c:2b:b9:54:6e:76:a2:95:71:6d:ed:b4:
35:c1:ab:60:12:97:62:11:59:9b:b5:81:c1:7d:e1:54:cf:81:
bf:3f:c3:30:3c:2f:0d:04:46:99:eb:90:56:ba:04:54:63:68:
b9:c9:c7:ff:13:50:d6:f8:02:26:45:1b:a7:d1:9a:2f:cb:6a:
3e:1c:aa:fe:84:ab:88:24:0d:01:50:3d:03:dd:58:2a:6b:00:
df:a1:c7:d2:40:80:8f:ff:64:2d:1c:b4:39:5f:28:81:44:96:
71:6b:f0:4c:b8:90:be:f0:e5:5c:bf:f9:16:f8:14:b5:a8:15:
bd:85:be:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:08 2024 by rpki-client on console-ams.rpki-client.org