Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/Xp_fFQPUZB00jHGfjfJbxJqBPQ0.roa
File: Xp_fFQPUZB00jHGfjfJbxJqBPQ0.roa (raw, json)
Hash identifier: 2/RTV8xRLilbKmfMz+MJNpeB0Q35V93zdeot2w0otf0=
Subject key identifier: 5E:9F:DF:15:03:D4:64:1D:34:8C:71:9F:8D:F2:5B:C4:9A:81:3D:0D
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 01886E086838F9120C279440D299BE8ADDB0
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/Xp_fFQPUZB00jHGfjfJbxJqBPQ0.roa
Signing time: Tue 30 May 2023 19:00:24 +0000
ROA not before: Tue 30 May 2023 19:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15785
IP address blocks: 194.146.199.0/24 maxlen: 24
188.0.71.0/24 maxlen: 24
188.0.69.0/24 maxlen: 24
188.0.70.0/24 maxlen: 24
188.0.68.0/24 maxlen: 24
31.128.65.0/24 maxlen: 24
188.0.76.0/24 maxlen: 24
188.0.75.0/24 maxlen: 24
188.0.74.0/24 maxlen: 24
188.0.72.0/24 maxlen: 24
194.110.79.0/24 maxlen: 24
5.1.3.0/24 maxlen: 24
5.1.2.0/24 maxlen: 24
2a01:758:8306::/48 maxlen: 48
2a01:758:8301::/48 maxlen: 48
2a01:758:8305::/48 maxlen: 48
2a01:758::/48 maxlen: 48
2a01:758:8300::/48 maxlen: 48
2a01:758:8303::/48 maxlen: 48
2a01:758:8304::/48 maxlen: 48
2a01:758:8307::/48 maxlen: 48
2a01:758:8302::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 May 2023 19:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6e:08:68:38:f9:12:0c:27:94:40:d2:99:be:8a:dd:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: May 30 19:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e9fdf1503d4641d348c719f8df25bc49a813d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2e:d3:38:45:4e:1c:c0:3e:7d:24:fa:36:50:
c7:6e:28:98:53:cb:07:6f:23:01:be:fd:d6:1f:bf:
ca:e4:14:7e:a0:85:66:d3:17:64:df:b9:2b:7e:ce:
a8:39:a6:78:41:ab:0d:f2:23:7a:a2:41:dc:b1:a2:
11:5a:02:04:8c:9d:f7:26:cc:5b:23:6f:80:3f:b7:
d4:59:d3:db:4a:82:59:b1:22:37:b7:14:a8:d7:70:
bb:10:b4:ae:bf:88:06:9f:cd:11:ed:35:47:9f:d6:
d6:09:20:07:b6:e2:b8:53:9a:68:61:12:21:39:2b:
1a:7c:95:9a:81:51:f5:22:0a:2a:c7:fe:e1:d9:c1:
3f:ef:85:d1:49:b4:35:b7:b1:8a:fd:f3:e1:68:19:
32:d7:ca:2b:00:2f:ae:20:bf:e0:0f:47:42:ac:7c:
fe:41:8a:05:bd:44:57:79:5d:47:0b:01:d4:3b:d8:
cc:df:43:35:9a:7c:36:54:77:8c:bc:a1:0f:54:8c:
e4:38:75:8e:b6:b8:3e:7f:7d:61:b7:ca:cd:10:1e:
b1:3b:b7:0d:c0:90:c8:1d:be:f6:05:35:bb:46:39:
f4:93:95:80:e2:1f:9b:4a:3b:83:72:8e:99:91:a5:
d6:3a:c5:3b:c2:76:26:3c:fe:5a:e9:c9:75:f7:b9:
d9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9F:DF:15:03:D4:64:1D:34:8C:71:9F:8D:F2:5B:C4:9A:81:3D:0D
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/Xp_fFQPUZB00jHGfjfJbxJqBPQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.2.0/23
31.128.65.0/24
188.0.68.0-188.0.72.255
188.0.74.0-188.0.76.255
194.110.79.0/24
194.146.199.0/24
IPv6:
2a01:758::/48
2a01:758:8300::/45
Signature Algorithm: sha256WithRSAEncryption
1f:5f:be:ca:f4:64:ed:9f:32:a9:b6:2a:55:d6:2a:1f:4f:f1:
23:52:bd:b3:f6:ec:fc:7f:be:d8:0c:d2:df:b1:85:b0:6a:f7:
0c:d7:92:c9:9b:c6:75:ce:09:2f:76:99:69:d2:c0:8c:be:0e:
c3:13:2d:3b:ea:43:ed:8e:5a:95:76:0f:74:97:50:9b:15:79:
35:52:07:c4:a3:bd:40:97:62:64:07:ed:25:71:8d:f2:cb:93:
8f:ae:a0:87:bf:16:d3:ae:81:af:6c:e3:d5:38:ed:d1:00:d5:
a3:0d:5f:6e:a9:8b:3b:4b:13:ce:5e:6b:43:8d:2b:4f:97:e7:
b0:6f:1c:68:5a:b9:7f:9f:56:d2:52:33:b9:8f:e8:cf:d8:49:
bc:c1:86:66:c4:e0:08:23:42:f7:9e:83:cc:da:28:16:2b:10:
21:ba:99:d5:f4:ab:0c:40:5c:00:c6:28:ae:8e:56:13:82:69:
65:49:b5:02:fb:c8:6a:f2:fe:41:db:b0:fc:0c:5c:a7:84:39:
ce:a2:98:f8:b7:e1:34:27:6d:d0:65:ba:4b:fd:d3:b9:5b:37:
a4:a9:0d:15:d3:25:1a:00:d8:0e:2c:0f:84:2b:5d:23:c0:ae:
74:b2:c1:36:03:62:71:d7:04:65:b9:d4:02:d1:57:72:03:d2:
ca:0a:92:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org