Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5ITu_8FaNcwE5EETf2NqoZfSZbI.roa
File: 5ITu_8FaNcwE5EETf2NqoZfSZbI.roa (raw, json)
Hash identifier: woRZNP/2sW7bcIcgOAf74Cn0K5H7rOO5M0avxu8i7S4=
Subject key identifier: E4:84:EE:FF:C1:5A:35:CC:04:E4:41:13:7F:63:6A:A1:97:D2:65:B2
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B634E0749EA5CF75A1C068B1452470
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5ITu_8FaNcwE5EETf2NqoZfSZbI.roa
Signing time: Mon 02 Jan 2023 09:00:44 +0000
ROA not before: Mon 02 Jan 2023 09:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 193.58.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 16:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:34:e0:74:9e:a5:cf:75:a1:c0:68:b1:45:24:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e484eeffc15a35cc04e441137f636aa197d265b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1b:8c:fc:9e:b3:44:eb:21:22:4d:03:4e:6b:
d1:25:74:e7:69:d0:f0:a1:53:48:51:88:a1:83:c8:
ad:b6:19:c6:4c:c5:13:8c:96:19:4f:19:3c:a6:01:
41:d8:cf:78:c2:8a:3b:ac:d6:f7:16:54:95:35:20:
a8:0b:57:98:8f:bc:47:f9:e6:26:50:24:3e:d5:ff:
61:a1:c2:ff:66:86:b7:2e:ac:4c:74:96:a8:6b:59:
ca:12:3a:ef:a6:11:c0:40:e7:ea:74:d3:8d:4d:54:
2d:13:fd:a0:5a:ce:40:75:a3:dd:0f:05:dc:cd:cd:
6d:73:d6:9b:50:00:a6:d0:e4:3f:45:b3:c9:2d:74:
a8:0e:46:78:f6:b6:d9:7e:0f:bb:be:43:65:7c:b4:
bc:9f:f8:2c:6c:b7:3a:af:92:b2:20:b2:7a:8e:8f:
7a:6a:74:99:0b:71:1e:0e:c4:2f:c4:28:d3:8a:26:
d5:7b:08:c4:3d:7e:da:ea:cc:d1:da:d8:99:06:6c:
a9:2b:78:aa:7b:7c:cd:a4:d6:5c:af:9b:b9:16:42:
11:d1:d2:f9:8d:56:ea:d9:9d:d1:16:24:6f:0a:97:
3e:89:b6:64:9f:92:50:61:29:21:27:a9:16:55:fc:
ae:b1:c7:66:39:7e:45:d4:35:25:6a:bd:e3:8e:0e:
12:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:84:EE:FF:C1:5A:35:CC:04:E4:41:13:7F:63:6A:A1:97:D2:65:B2
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5ITu_8FaNcwE5EETf2NqoZfSZbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.147.0/24
Signature Algorithm: sha256WithRSAEncryption
34:71:6d:b8:59:c9:16:06:77:c2:12:e3:41:40:7a:c8:52:73:
6d:8d:a5:81:35:04:8f:8a:fd:78:b8:40:ae:2e:84:35:44:df:
3c:00:94:7f:9e:98:f0:c7:79:f1:84:45:ff:48:ea:b8:05:b7:
98:39:34:40:c7:9e:97:79:6c:f4:75:83:60:ca:88:06:d4:66:
4f:f9:11:16:de:97:f0:45:aa:85:8f:12:f7:2a:e7:35:02:66:
46:a1:34:31:9c:69:90:2e:5a:15:56:1d:37:7a:4d:ad:68:b6:
19:ef:f5:f5:76:ee:f0:4e:f0:00:53:20:af:65:70:46:1e:97:
7e:cf:95:d8:c3:14:5d:d7:63:d7:99:35:3d:c9:6c:f5:0f:5f:
70:d5:78:0a:09:4c:4b:6e:0c:c6:1c:54:4f:50:1c:2b:1d:3b:
b6:db:a9:dc:6d:32:a7:c6:27:74:11:d6:45:9c:20:f0:db:05:
35:c2:40:89:db:53:37:e2:ed:cc:05:e0:9f:cf:09:d9:91:a2:
f5:37:c8:56:d9:9c:b5:f0:00:e6:a2:27:79:a9:6f:ca:53:5f:
ee:0e:71:57:44:6f:f7:50:0b:b4:db:0b:ea:34:be:cd:97:cc:
fa:98:23:c2:5d:26:54:e7:db:f0:5a:56:bd:e1:a7:e6:2b:79:
28:09:2c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org