Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/X9tra8-GJYbw-Dd0I-l8_Iymzc0.roa
File: X9tra8-GJYbw-Dd0I-l8_Iymzc0.roa (raw, json)
Hash identifier: mksZGl7vdi+hlOQjmEcZktzhub9MxQKbgIeRp2kW7EQ=
Subject key identifier: 5F:DB:6B:6B:CF:86:25:86:F0:F8:37:74:23:E9:7C:FC:8C:A6:CD:CD
Certificate issuer: /CN=65eb8ef44183f8e3a9c887a7be26b3f0713c13bd
Certificate serial: 01856B37C41494083AB1678F8F555B238E06
Authority key identifier: 65:EB:8E:F4:41:83:F8:E3:A9:C8:87:A7:BE:26:B3:F0:71:3C:13:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeuO9EGD-OOpyIenviaz8HE8E70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/X9tra8-GJYbw-Dd0I-l8_Iymzc0.roa
Signing time: Sun 01 Jan 2023 02:44:54 +0000
ROA not before: Sun 01 Jan 2023 02:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34711
IP address blocks: 195.64.178.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:c4:14:94:08:3a:b1:67:8f:8f:55:5b:23:8e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65eb8ef44183f8e3a9c887a7be26b3f0713c13bd
Validity
Not Before: Jan 1 02:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fdb6b6bcf862586f0f8377423e97cfc8ca6cdcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cd:b6:b9:3e:b6:9b:b2:c2:91:2f:05:24:24:
fa:82:5c:15:47:fd:ce:df:92:85:4f:4b:0e:5c:94:
84:b9:4f:3b:21:6b:15:b2:be:7c:ad:af:b2:2c:73:
6d:0c:f9:da:af:52:d2:3a:46:7a:98:5c:21:b6:b0:
4d:bd:4c:bc:67:f8:98:25:09:55:8e:4c:4d:f8:83:
d9:d5:72:c3:f2:50:4a:25:c1:20:fa:02:d8:73:91:
64:45:be:69:53:58:ba:1b:e9:75:e8:51:b8:03:16:
f9:d5:53:13:c0:29:bd:1f:b2:02:76:ba:d1:37:84:
80:72:3f:3c:53:b5:8d:ee:b1:bd:fe:a8:ba:f0:28:
7d:0d:d8:9a:ed:bb:3b:b5:1e:e5:13:69:c4:5e:f5:
a8:cb:a5:38:74:13:59:2f:8b:c5:d9:ed:83:10:76:
fb:a0:0c:a2:c4:ce:6a:c3:7d:de:a8:a0:56:02:f3:
94:7d:af:e9:e9:f9:e9:89:f6:0b:c0:11:a5:3e:4c:
86:ae:0e:70:c4:f3:8e:53:5b:c9:d7:93:9d:c4:8d:
fe:95:79:70:1c:5a:f8:b8:c3:0f:48:7e:3a:c8:69:
7f:85:01:33:e9:09:0a:34:c6:1a:f3:d7:b1:7f:a9:
8f:bb:04:b9:17:5a:22:01:ba:7d:89:39:6b:52:47:
2e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DB:6B:6B:CF:86:25:86:F0:F8:37:74:23:E9:7C:FC:8C:A6:CD:CD
X509v3 Authority Key Identifier:
keyid:65:EB:8E:F4:41:83:F8:E3:A9:C8:87:A7:BE:26:B3:F0:71:3C:13:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeuO9EGD-OOpyIenviaz8HE8E70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/X9tra8-GJYbw-Dd0I-l8_Iymzc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/fcea85-8be1-4877-878a-ad9e1a0510b9/1/ZeuO9EGD-OOpyIenviaz8HE8E70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.178.0/23
Signature Algorithm: sha256WithRSAEncryption
21:cf:8e:48:c9:29:be:40:b6:58:37:6c:78:ff:bc:c0:df:11:
07:04:5f:f1:87:65:aa:f2:ad:1f:c8:80:1f:1d:91:d7:15:be:
dd:4e:87:0d:cc:81:26:2b:02:48:d6:d8:c1:77:00:ff:af:a2:
38:43:19:95:f5:ce:9e:af:85:0f:8a:2a:7b:cc:af:47:65:dd:
a5:12:f8:d0:6c:72:66:1b:a5:53:1b:0c:2f:f5:21:09:d8:96:
7c:67:7d:c7:9a:57:c2:d6:36:0f:4b:1a:6b:25:f0:b1:bc:c5:
81:3f:f7:41:bf:72:29:bb:f1:bb:a5:95:84:ad:01:c1:48:af:
e7:d3:78:c9:61:e3:51:21:3a:ea:38:26:15:5f:74:b1:4a:d1:
33:0b:a3:e4:b3:81:32:2b:b7:14:0c:45:8c:f0:60:0d:1a:6c:
8a:e2:aa:af:35:e4:2f:06:38:cd:2d:fb:a6:89:60:8f:55:5a:
b4:d4:14:c3:b9:7d:ff:8f:3a:15:e3:56:e4:36:57:27:4a:18:
44:1e:b9:fb:62:c7:0b:06:3a:77:49:39:a0:a8:4a:c7:cf:87:
98:80:95:19:e4:d3:82:76:b8:c5:05:fa:93:a5:5f:7c:de:34:
00:c3:43:0f:d2:f2:31:2f:5b:3a:7f:03:1d:94:50:9f:25:0e:
8a:c4:ed:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:44 2024 by rpki-client on console-fra.rpki-client.org