Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/YV3e9ezBhE-4UuUfWg9bij2E0AI.roa
File: YV3e9ezBhE-4UuUfWg9bij2E0AI.roa (raw, json)
Hash identifier: MGqRnpwMqhbbge5huP52F72Qk22hQ7X7urQZxvrK04w=
Subject key identifier: 61:5D:DE:F5:EC:C1:84:4F:B8:52:E5:1F:5A:0F:5B:8A:3D:84:D0:02
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 01856BCA1874F9724BD6F182F0E4B6F32134
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/YV3e9ezBhE-4UuUfWg9bij2E0AI.roa
Signing time: Sun 01 Jan 2023 05:24:44 +0000
ROA not before: Sun 01 Jan 2023 05:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16243
IP address blocks: 193.176.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:18:74:f9:72:4b:d6:f1:82:f0:e4:b6:f3:21:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Jan 1 05:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=615ddef5ecc1844fb852e51f5a0f5b8a3d84d002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:19:9b:9f:f4:f1:38:23:1d:c4:d5:65:2f:14:
b9:54:09:84:6b:cf:35:06:89:36:1b:3b:b2:a2:cd:
63:45:6b:26:88:b8:e1:66:9c:67:bf:0e:6a:08:81:
dd:7b:34:05:26:8a:d6:dc:86:71:f9:29:78:18:27:
e3:d4:a1:4d:fe:5d:c4:87:27:35:e8:61:56:cb:2f:
88:72:98:63:b6:37:7b:95:c6:59:09:5e:e1:4b:55:
01:a9:15:de:a5:31:48:a7:71:08:99:34:0d:cd:9c:
b3:5b:32:ac:1e:16:da:e7:aa:0f:79:bd:e6:d3:fd:
28:fc:8b:dd:5d:e0:8b:b6:d1:04:12:11:49:8c:13:
13:28:ce:c1:5f:ad:e5:2c:e2:16:77:0e:a8:ed:e5:
f7:d7:d6:99:5f:cc:11:a8:4f:49:9f:8e:e1:bc:8d:
08:e0:7b:ac:b8:47:b9:ee:f3:e5:30:1b:c4:9e:fb:
07:b9:7c:39:dc:6d:7e:88:12:cd:6b:bd:50:b7:6b:
d6:58:bf:2d:12:bf:32:99:37:2a:eb:84:3f:a5:19:
6f:d6:40:47:2f:e9:d9:9f:02:af:7f:b5:da:a8:84:
24:84:c8:72:92:3b:b9:53:0b:14:0e:4e:e6:6c:3e:
20:55:5f:a2:7a:06:ec:d9:f7:b2:d2:a6:9a:45:9c:
87:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5D:DE:F5:EC:C1:84:4F:B8:52:E5:1F:5A:0F:5B:8A:3D:84:D0:02
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/YV3e9ezBhE-4UuUfWg9bij2E0AI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.5.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:fd:66:b7:fc:c8:7b:20:50:0d:57:7f:b4:2d:07:f3:b2:94:
39:fa:7f:24:c0:bd:8f:6d:7f:1e:8b:6e:c9:53:d5:c3:08:d6:
60:69:88:62:af:d6:da:2b:ef:ce:c4:30:5e:17:76:51:52:19:
7d:e5:17:39:cc:8f:9b:b4:e8:98:0f:7c:56:ca:29:56:95:90:
d3:cc:a6:7f:63:0f:0b:4c:4b:87:a2:d0:e6:19:ea:20:6d:c5:
0d:4b:1f:30:fc:d6:97:a5:58:eb:a6:76:22:94:f2:60:96:03:
a0:58:02:f1:d5:f2:82:ab:b1:cd:18:1c:cb:03:9d:3e:75:0f:
06:f9:8c:19:20:83:1d:52:57:04:3b:be:cc:12:ec:6a:b2:0c:
d9:74:92:25:27:43:a2:cd:b3:97:43:29:06:86:f3:47:4c:94:
45:26:3c:d0:10:33:4f:07:3b:32:0f:3a:c5:a0:d5:dc:36:33:
6f:49:c2:68:04:ca:e2:d9:7e:61:a3:b6:df:48:1c:23:5e:7e:
a9:59:63:d5:76:89:01:1e:be:62:25:81:87:fd:35:6e:ee:d4:
94:92:66:7b:e4:55:0d:06:87:d9:45:ad:f8:82:35:3b:47:61:
fd:ca:6d:52:79:0d:67:7d:21:f8:3e:24:0e:5b:ae:3b:fd:f5:
65:d5:8b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:53 2024 by rpki-client on console-fra.rpki-client.org