Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5d7bc4-e0c5-4a48-90e6-752516890d3d/1/rlIxLEcf9HSm_ThPCXryEQZRFeU.roa
File: rlIxLEcf9HSm_ThPCXryEQZRFeU.roa (raw, json)
Hash identifier: JCznK7WYzlUma9u7VS9lFdRkNHJK6AkgBweaLCH9Ad0=
Subject key identifier: AE:52:31:2C:47:1F:F4:74:A6:FD:38:4F:09:7A:F2:11:06:51:15:E5
Certificate issuer: /CN=9e02e064c98b3231c3f2148a1c3d9c387d489ee9
Certificate serial: 018CC6B8ED2D9C6978D3D66E3102D03A1CED
Authority key identifier: 9E:02:E0:64:C9:8B:32:31:C3:F2:14:8A:1C:3D:9C:38:7D:48:9E:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ngLgZMmLMjHD8hSKHD2cOH1Inuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5d7bc4-e0c5-4a48-90e6-752516890d3d/1/rlIxLEcf9HSm_ThPCXryEQZRFeU.roa
Signing time: Mon 01 Jan 2024 20:30:57 +0000
ROA not before: Mon 01 Jan 2024 20:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1759
IP address blocks: 193.143.104.0/21 maxlen: 21
193.143.101.0/24 maxlen: 24
193.143.100.0/24 maxlen: 24
193.143.99.0/24 maxlen: 24
193.143.102.0/23 maxlen: 23
193.143.112.0/22 maxlen: 22
193.143.118.0/24 maxlen: 24
193.143.116.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 04 Mar 2024 12:24:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:ed:2d:9c:69:78:d3:d6:6e:31:02:d0:3a:1c:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e02e064c98b3231c3f2148a1c3d9c387d489ee9
Validity
Not Before: Jan 1 20:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae52312c471ff474a6fd384f097af211065115e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c9:1e:51:15:c4:d8:2b:54:dd:48:02:5f:b3:
12:14:77:4c:bc:be:04:6a:01:4a:c0:c1:b9:82:f1:
72:5b:98:f0:1f:4a:b2:97:e5:4b:77:4f:07:6c:30:
30:48:3b:41:2e:b8:b2:88:19:fc:5e:5e:6f:5e:23:
bc:18:8c:56:31:cc:97:5c:67:43:a5:a0:80:1f:c9:
03:bd:42:4e:76:ff:01:dd:a6:16:3e:41:fc:05:d6:
29:5b:38:38:03:e5:2f:58:1d:4a:52:39:e5:fc:1a:
35:d2:42:26:4b:e7:bb:4b:d9:ed:98:97:47:ae:ce:
d9:c9:37:ed:9d:35:1e:34:32:f2:b8:06:e0:fd:9e:
7a:ec:82:0b:b7:cd:91:78:4e:7e:23:17:37:80:11:
8d:e4:c3:c4:2f:24:f9:63:dc:64:88:93:7a:d7:ed:
94:0d:84:cb:00:d8:5d:54:3a:d9:ef:a1:39:9b:25:
76:82:01:f3:f4:48:ef:28:8f:bf:e0:73:4a:5b:7a:
ff:d7:c8:b2:b7:de:76:d7:00:80:af:69:46:09:9a:
63:3d:7a:39:3f:ef:03:62:82:37:7a:24:b5:59:00:
9b:d6:e8:a5:4b:1e:65:6b:02:26:06:b9:12:71:dd:
d4:69:39:76:7e:f9:82:10:78:fa:e7:75:91:44:03:
53:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:52:31:2C:47:1F:F4:74:A6:FD:38:4F:09:7A:F2:11:06:51:15:E5
X509v3 Authority Key Identifier:
keyid:9E:02:E0:64:C9:8B:32:31:C3:F2:14:8A:1C:3D:9C:38:7D:48:9E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ngLgZMmLMjHD8hSKHD2cOH1Inuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5d7bc4-e0c5-4a48-90e6-752516890d3d/1/rlIxLEcf9HSm_ThPCXryEQZRFeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5d7bc4-e0c5-4a48-90e6-752516890d3d/1/ngLgZMmLMjHD8hSKHD2cOH1Inuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.143.99.0-193.143.118.255
Signature Algorithm: sha256WithRSAEncryption
0b:bf:a5:03:6c:2a:19:19:92:5f:6d:0b:ea:88:f9:71:e3:9f:
73:22:dd:7a:0f:f8:a8:d4:03:4b:ac:b7:8b:ae:4c:29:32:00:
92:ab:fd:30:b1:9a:46:17:42:d3:dd:63:89:6f:2c:b6:d7:da:
9c:a6:d8:1a:d2:c6:99:62:e9:82:01:cb:2d:3d:33:ef:a8:fc:
c9:22:bf:93:f3:60:a0:ef:c7:ad:2a:d6:52:00:93:4e:14:ab:
c6:46:bf:5c:3c:8b:79:44:a0:ef:a8:26:f7:e4:21:d8:4c:21:
65:40:e7:92:5a:43:fd:83:6f:f9:0d:fe:c0:bf:78:24:dd:d5:
47:a4:13:64:08:30:9f:28:f0:3c:40:76:f5:39:ac:73:ec:e1:
57:26:f6:2f:3e:fa:1d:68:86:a9:aa:40:cd:8a:90:c2:67:c2:
c2:1f:d7:a2:01:20:75:85:da:64:4d:e6:00:46:56:c1:3b:40:
fd:9e:71:72:3b:37:1d:c0:a6:89:4e:9f:90:30:f8:05:2c:a0:
70:1b:c7:9e:a3:6b:e7:5a:d6:e2:42:08:f5:15:02:cd:df:1f:
04:c1:d5:40:5a:92:65:18:d5:66:46:87:de:4a:f3:62:6b:be:
32:ba:7a:5c:00:66:05:29:95:e4:f0:d4:69:c3:80:56:71:c8:
bf:41:f0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:01 2024 by rpki-client on console-fra.rpki-client.org