Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/Xe8c_4HcId4orL-5HtgkVKOrI-8.roa
File: Xe8c_4HcId4orL-5HtgkVKOrI-8.roa (raw, json)
Hash identifier: MePh+rtO+utoF2IN6sNas0tP5jhkSthsvagCfu3Y1wY=
Subject key identifier: 5D:EF:1C:FF:81:DC:21:DE:28:AC:BF:B9:1E:D8:24:54:A3:AB:23:EF
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 01864A6B4B06E2D53A8464D404A1ADCA70C8
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/Xe8c_4HcId4orL-5HtgkVKOrI-8.roa
Signing time: Mon 13 Feb 2023 10:56:30 +0000
ROA not before: Mon 13 Feb 2023 10:56:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 192.145.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Mar 2023 11:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:6b:4b:06:e2:d5:3a:84:64:d4:04:a1:ad:ca:70:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Feb 13 10:56:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5def1cff81dc21de28acbfb91ed82454a3ab23ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3f:94:33:3f:65:2b:94:cd:78:27:e5:2a:1c:
34:22:f5:84:19:20:9a:40:95:73:51:a1:bd:2e:db:
df:61:23:4c:48:8b:48:69:0e:24:2f:c4:80:2e:87:
b7:b0:5d:df:22:28:60:32:b5:1f:97:eb:28:71:61:
7b:ea:9a:10:2e:af:a3:a4:49:96:ec:fc:77:e4:98:
13:ad:18:53:67:87:59:e1:ba:0a:f0:fa:19:6b:80:
c4:b1:b6:20:e8:dd:dd:33:df:6b:9d:e9:56:5c:13:
b3:1d:1a:32:10:98:c5:19:6b:f7:76:5f:d0:38:74:
e8:bb:16:ec:94:aa:66:fc:89:ab:77:19:3a:91:f5:
72:e4:4d:33:15:f9:67:f8:e9:c1:a3:a4:e6:6d:ec:
70:f5:0b:d3:f6:2a:8d:de:25:7b:38:07:bd:68:a0:
b5:27:e2:26:84:b9:be:86:19:0b:e0:e8:59:0d:aa:
e2:c8:cf:76:95:c2:6c:22:f3:f2:c6:6d:6d:17:50:
5d:25:c4:f5:a4:8f:78:04:9e:39:a0:fe:0a:a5:74:
d9:6e:a4:54:c8:13:29:a4:0d:0d:63:7b:e2:24:ac:
f6:cc:2c:56:ec:c4:f2:00:58:e7:35:c8:7c:ab:e8:
dd:1b:1e:b1:a5:92:46:59:1e:22:57:14:d4:69:ba:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EF:1C:FF:81:DC:21:DE:28:AC:BF:B9:1E:D8:24:54:A3:AB:23:EF
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/Xe8c_4HcId4orL-5HtgkVKOrI-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.52.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:5f:d1:00:86:3f:04:67:78:98:8f:c4:4e:b7:17:00:8c:85:
29:47:b6:69:33:8b:00:10:6d:57:73:8d:e2:08:ad:99:df:2b:
bd:df:32:21:08:a8:9b:a6:1f:ff:1e:7a:ea:79:d8:85:d4:0d:
23:14:de:b4:80:23:d5:6a:a2:b2:15:57:95:ac:d4:5c:51:6b:
87:00:7c:d2:82:7a:28:f3:58:1f:13:eb:89:8d:37:fc:ec:43:
aa:bf:68:50:e1:90:5f:21:97:21:03:83:19:33:d8:a4:41:e2:
c2:ee:7a:64:04:ea:1f:ca:c2:2a:f5:b6:d9:97:3f:42:a4:66:
80:58:8d:59:cc:5d:33:df:4e:c8:b1:7f:09:80:01:9f:d3:65:
35:6a:72:d0:07:5f:01:05:7a:1c:f0:40:c9:7b:11:31:73:90:
ad:68:7c:bf:be:bc:fd:34:6a:b2:98:47:d1:45:a7:11:0b:3e:
94:a0:9d:cd:4a:2b:89:33:76:e7:66:ce:d1:4d:f3:81:94:06:
4e:85:5d:15:ef:c4:72:a3:2f:71:a1:cd:d3:cb:56:3f:58:49:
50:b7:9d:48:b9:17:9c:b4:4b:d4:6c:bb:ab:d5:a4:54:90:40:
e9:ad:ff:15:18:66:16:0c:58:4b:12:46:1c:0a:f6:0e:81:ee:
ca:e5:d7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org