Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/XucksEPiTWT7dmOlE5ft9QXJyTU.roa
File: XucksEPiTWT7dmOlE5ft9QXJyTU.roa (raw, json)
Hash identifier: y01j5v0EfpgxjAHUMNRkhio6uwARUGo35LCFFCeB2Bk=
Subject key identifier: 5E:E7:24:B0:43:E2:4D:64:FB:76:63:A5:13:97:ED:F5:05:C9:C9:35
Certificate issuer: /CN=0d7901c430ae39fcb05beb5b34267f5224f04f61
Certificate serial: 01857203505AB8A577D406374D1856D2D917
Authority key identifier: 0D:79:01:C4:30:AE:39:FC:B0:5B:EB:5B:34:26:7F:52:24:F0:4F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXkBxDCuOfywW-tbNCZ_UiTwT2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/XucksEPiTWT7dmOlE5ft9QXJyTU.roa
Signing time: Mon 02 Jan 2023 10:24:57 +0000
ROA not before: Mon 02 Jan 2023 10:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207398
IP address blocks: 185.16.83.0/24 maxlen: 24
2a10:3500::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:50:5a:b8:a5:77:d4:06:37:4d:18:56:d2:d9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7901c430ae39fcb05beb5b34267f5224f04f61
Validity
Not Before: Jan 2 10:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ee724b043e24d64fb7663a51397edf505c9c935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:db:ea:2f:91:47:68:57:c6:55:c7:93:8f:21:
71:6e:71:60:72:9b:fa:6b:fa:96:18:58:59:28:a1:
9f:54:7c:1b:2e:7b:7e:61:7b:01:c7:7a:5c:6c:cf:
0f:56:11:12:29:ca:63:ff:96:a7:de:1a:4a:4b:9f:
25:a9:e3:83:a3:05:9d:14:b3:a2:04:a7:18:62:84:
cb:20:52:d4:90:03:d9:3b:d1:d8:dd:d9:5f:27:a4:
09:86:58:f0:4f:85:85:1a:14:be:e0:61:d4:f4:21:
6f:9f:d8:be:ad:d0:a9:7a:4b:27:e2:f6:37:10:ab:
50:cb:f3:da:dd:90:68:dc:54:4c:c5:f4:7a:26:c2:
ad:d8:b9:5b:50:51:da:6a:6f:64:d1:cd:d9:ab:5e:
20:63:39:60:6b:c4:5b:76:0c:63:be:47:a3:97:86:
5e:e3:cd:76:82:5b:e0:f7:f2:f3:2b:2a:ff:54:6d:
f1:bd:43:af:5c:70:4f:1a:8d:29:a7:d2:a9:e1:28:
46:7a:e4:34:fe:71:65:76:5a:71:d1:8a:24:98:e7:
38:e7:56:e4:36:2e:ac:42:f9:c1:d2:3f:75:b0:56:
f2:81:55:d6:8c:98:50:b3:45:93:fc:b0:21:48:af:
9c:96:6c:b6:e0:f4:39:89:31:51:09:de:30:37:ba:
ac:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E7:24:B0:43:E2:4D:64:FB:76:63:A5:13:97:ED:F5:05:C9:C9:35
X509v3 Authority Key Identifier:
keyid:0D:79:01:C4:30:AE:39:FC:B0:5B:EB:5B:34:26:7F:52:24:F0:4F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXkBxDCuOfywW-tbNCZ_UiTwT2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/XucksEPiTWT7dmOlE5ft9QXJyTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/6456de-740b-434d-b765-171d9f2cce3d/1/DXkBxDCuOfywW-tbNCZ_UiTwT2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.83.0/24
IPv6:
2a10:3500::/32
Signature Algorithm: sha256WithRSAEncryption
83:fc:cd:21:cd:7b:aa:61:21:b1:7a:aa:b0:03:8a:5d:94:16:
7b:0c:35:fa:0a:b1:e6:8d:70:ed:2a:97:d4:39:22:18:e4:ca:
78:66:2f:3c:6a:c5:18:3f:68:e3:a8:2b:4e:aa:77:20:fb:cf:
9a:e2:b4:6b:eb:f3:96:50:0e:48:9b:dd:0b:80:ac:58:3b:ad:
46:e5:6f:74:02:fc:d7:65:b7:28:42:8e:bc:66:6d:87:a0:01:
ce:0f:12:79:54:08:64:b2:88:f8:d4:63:05:67:bb:87:ee:b7:
49:c5:d5:1b:a7:25:b0:3e:f9:c2:c3:27:a1:73:5c:51:a6:94:
0b:5e:40:ef:c4:74:17:5c:ca:6b:80:e0:32:15:38:10:d8:c3:
9f:01:68:4c:87:16:3b:7b:0c:ee:6c:87:4d:e2:be:50:d5:a6:
91:90:df:6c:ed:f6:82:90:07:06:12:f9:63:c9:9b:93:e7:9b:
2b:fd:d0:7b:12:ac:34:40:e4:de:41:e3:e1:26:41:5d:02:92:
49:54:83:62:c2:2b:57:a5:5f:5d:68:e5:0a:4f:ed:99:86:1c:
c6:b8:b0:6a:7c:0f:5a:48:a1:9c:99:4a:c4:99:08:bf:7a:f7:
4a:60:52:d3:55:bb:72:11:2c:05:dd:a5:f4:57:93:79:c6:27:
e4:c0:17:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:30 2024 by rpki-client on console-ams.rpki-client.org