Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/kxo13FFpye2zeYW36FulhL775jg.roa
File: kxo13FFpye2zeYW36FulhL775jg.roa (raw, json)
Hash identifier: 0c5pZrr3o0pkBZOgSaXM+31rNp4/RmP/mDsHSTvZMKM=
Subject key identifier: 93:1A:35:DC:51:69:C9:ED:B3:79:85:B7:E8:5B:A5:84:BE:FB:E6:38
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 0185714C0E5C81FA474DB9C51B6E4199B31A
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/kxo13FFpye2zeYW36FulhL775jg.roa
Signing time: Mon 02 Jan 2023 07:04:47 +0000
ROA not before: Mon 02 Jan 2023 07:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197177
IP address blocks: 94.240.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 May 2023 08:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:0e:5c:81:fa:47:4d:b9:c5:1b:6e:41:99:b3:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Jan 2 07:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=931a35dc5169c9edb37985b7e85ba584befbe638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:db:e2:21:4a:b3:c0:8b:f3:58:cb:d7:71:a1:
ca:83:8b:f6:4a:8f:3c:dd:20:52:81:8f:a7:c4:0e:
54:5e:7b:c2:a6:cc:5b:c8:85:2d:2f:10:0c:4d:3b:
40:ff:9a:fa:70:7f:b1:bb:83:d2:f1:5a:77:3e:52:
de:31:3b:a9:7f:8c:07:f2:82:f8:43:62:4b:46:30:
32:2c:19:10:28:9e:63:51:b0:0b:be:a3:cb:90:b9:
f5:d3:98:06:76:16:58:d9:16:4d:bc:4c:ea:40:61:
d1:bc:b0:a6:99:0a:a0:6f:1a:0a:64:3e:70:82:25:
2c:a0:8b:50:0e:6d:5b:b3:d9:33:56:d2:19:55:2c:
e0:eb:46:85:11:28:cc:10:84:67:d2:29:fc:4c:3b:
1e:e2:33:b7:f6:b1:1f:12:a1:f6:a5:f8:ff:d1:e2:
70:5c:7a:06:fe:3a:f9:86:38:9b:ac:28:5a:dd:17:
5e:6c:2a:32:fe:ae:43:3c:fd:86:90:83:02:1e:23:
dc:3e:39:94:1e:ca:d5:00:a9:51:28:67:4f:72:96:
44:1d:c0:44:9b:19:74:c3:de:84:1c:ac:7e:71:48:
11:a6:ad:b0:a1:d7:71:c7:f5:62:e9:9f:b6:bc:11:
f4:e1:24:1e:3b:57:e9:c2:c1:4f:53:5c:12:d8:41:
bc:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1A:35:DC:51:69:C9:ED:B3:79:85:B7:E8:5B:A5:84:BE:FB:E6:38
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/kxo13FFpye2zeYW36FulhL775jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.39.0/24
Signature Algorithm: sha256WithRSAEncryption
53:90:1c:7e:ec:65:64:49:0c:5b:39:e2:b3:d5:64:ac:51:df:
68:21:20:54:65:35:9e:ab:62:e9:7c:ed:0e:a7:59:b9:43:dd:
f3:d3:50:86:d6:16:26:40:e3:dc:2b:e5:c3:a8:24:c7:0d:83:
45:63:2f:25:89:4a:5a:d6:cd:21:08:d0:a1:30:48:47:f9:76:
42:05:16:e3:c3:60:79:03:ef:24:b1:5f:62:5c:ab:f4:ab:47:
26:69:3f:b6:37:ec:ad:9d:81:84:bf:c9:24:e9:57:8e:13:38:
dc:be:13:5f:f9:ca:87:97:24:cd:0c:2c:71:0e:c7:5d:a0:94:
6b:e4:bf:b5:44:50:c7:82:a4:0f:7e:d0:d9:ae:12:a1:d6:96:
b5:65:4f:42:bb:e9:9c:21:41:3d:29:ec:23:75:45:96:80:89:
a0:b2:bf:00:dd:c7:f7:42:cb:28:f0:75:54:1e:5e:d9:f7:cf:
43:ab:2d:0d:8a:a6:32:43:52:c4:63:d1:b0:6e:ca:a4:bc:a5:
f7:40:06:e0:12:58:0a:39:ec:c8:5d:c7:c1:a8:b0:f4:b0:ae:
87:6a:17:e8:51:06:35:2f:33:ee:62:7d:85:6c:f7:f0:fd:a6:
2a:ff:80:f1:73:6d:32:26:36:23:91:b1:b3:b5:d6:1d:0d:a1:
95:f9:20:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:12 2024 by rpki-client on console-ams.rpki-client.org