Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/sU7rYpuRxfONhOyHWC_iOjcyKL0.roa
File: sU7rYpuRxfONhOyHWC_iOjcyKL0.roa (raw, json)
Hash identifier: 9eSlzb8F1WTGacoMetsb1hgSitcjGskzwHvmoDykZ5U=
Subject key identifier: B1:4E:EB:62:9B:91:C5:F3:8D:84:EC:87:58:2F:E2:3A:37:32:28:BD
Certificate issuer: /CN=66ef31adac663855b3ddd1931c44cf8064d6a6eb
Certificate serial: 018572F12045EADB003DD2EF4E1240C1A49A
Authority key identifier: 66:EF:31:AD:AC:66:38:55:B3:DD:D1:93:1C:44:CF:80:64:D6:A6:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu8xraxmOFWz3dGTHETPgGTWpus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/sU7rYpuRxfONhOyHWC_iOjcyKL0.roa
Signing time: Mon 02 Jan 2023 14:44:43 +0000
ROA not before: Mon 02 Jan 2023 14:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.160.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 16:25:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:20:45:ea:db:00:3d:d2:ef:4e:12:40:c1:a4:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ef31adac663855b3ddd1931c44cf8064d6a6eb
Validity
Not Before: Jan 2 14:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b14eeb629b91c5f38d84ec87582fe23a373228bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ab:99:a5:63:82:ac:fa:af:c8:3c:f7:3b:bc:
bd:b5:a0:1a:05:ac:09:08:7b:a9:e2:da:34:50:cf:
00:d9:d1:57:fc:8f:86:18:6c:28:4a:53:d0:1f:c5:
52:b8:5c:60:62:10:e0:2b:3b:84:dd:b0:46:7c:69:
af:e7:a6:7a:dd:a1:8d:1b:12:e3:ac:0f:1b:32:71:
93:d5:a3:7d:d3:06:04:5a:dc:d4:07:83:19:b9:4e:
3d:64:d4:1e:12:63:1f:60:96:a8:e8:75:78:e3:a6:
81:1c:84:3a:50:53:22:18:2d:ef:ed:07:e6:72:a4:
d3:17:e0:89:7d:9d:45:85:79:31:8e:4b:31:8f:f8:
a9:2d:f5:4b:7d:ca:99:a1:87:56:2c:ce:8b:62:fd:
d3:38:3e:f5:a1:9a:8d:a8:29:8f:2e:c0:64:29:67:
0d:07:69:54:2f:9d:51:dd:3a:bd:df:e4:fe:5b:69:
84:29:d4:49:b7:05:da:8e:bf:15:b9:3b:8b:d3:6c:
b4:85:12:dc:4a:d1:cc:d1:fa:3d:ea:ef:06:a2:b8:
cd:ce:76:34:62:7a:7c:08:bf:38:44:d7:4a:bc:bf:
b3:35:70:d0:de:23:b2:bf:fb:b2:89:09:9d:2c:b8:
92:ba:82:5f:e0:08:49:f0:e8:ef:62:62:cb:8e:fe:
b1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4E:EB:62:9B:91:C5:F3:8D:84:EC:87:58:2F:E2:3A:37:32:28:BD
X509v3 Authority Key Identifier:
keyid:66:EF:31:AD:AC:66:38:55:B3:DD:D1:93:1C:44:CF:80:64:D6:A6:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu8xraxmOFWz3dGTHETPgGTWpus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/sU7rYpuRxfONhOyHWC_iOjcyKL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ed4da0-0647-446f-b065-db0dcc08f452/1/Zu8xraxmOFWz3dGTHETPgGTWpus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.155.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ba:f1:33:5a:9c:57:c9:58:32:69:e8:9f:ec:db:6b:fb:0e:
32:d4:32:42:8c:1f:1f:80:4d:a6:cd:53:9e:1a:29:27:b5:a9:
c3:7b:a0:d5:a1:d2:e3:98:59:6b:46:c9:b8:70:1e:64:a4:f3:
9d:c2:29:4d:bc:66:fe:83:88:40:93:55:aa:05:e0:5b:fc:1e:
cc:03:c1:b9:65:07:3f:b7:1e:a7:8d:1b:ba:d9:e1:c1:a5:d1:
06:f2:83:ec:01:be:da:a6:9d:0a:0c:93:09:35:f7:10:c2:d2:
ee:21:6b:8f:ca:28:39:8f:c2:06:22:e0:cc:fe:fe:4f:6f:98:
c2:77:5c:b0:31:4c:30:04:d1:4e:fb:f4:35:16:06:5a:e9:22:
0b:29:c4:20:42:bd:0d:19:62:19:d3:d0:62:52:75:84:77:59:
da:cd:c7:fe:9a:5d:80:6a:9e:38:55:75:0e:fd:3e:d0:14:c2:
e6:e5:e6:95:c3:66:cc:0a:ba:f2:00:d3:e6:51:9c:b5:7f:09:
c3:18:19:ac:6b:c4:79:ac:aa:17:62:42:c2:c9:87:cc:9f:e3:
e0:0c:e9:8d:75:e8:d7:3c:79:b7:84:a2:c0:26:5d:bc:46:92:
43:72:a6:a1:6b:68:77:7b:a3:58:bb:1f:61:53:e2:c2:9a:38:
93:be:17:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:01 2024 by rpki-client on console-fra.rpki-client.org