Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XmZ-3MtKaq0CUxH3eqAar9UgNow.roa
File: XmZ-3MtKaq0CUxH3eqAar9UgNow.roa (raw, json)
Hash identifier: 1xZFOK0zlvGMC17s/QiTvy71jaNoiua+6Hp2EuL2K0c=
Subject key identifier: 5E:66:7E:DC:CB:4A:6A:AD:02:53:11:F7:7A:A0:1A:AF:D5:20:36:8C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01896D03B55A6C334CDACA904DBF284B85BD
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XmZ-3MtKaq0CUxH3eqAar9UgNow.roa
Signing time: Wed 19 Jul 2023 07:18:26 +0000
ROA not before: Wed 19 Jul 2023 07:18:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43391
IP address blocks: 193.124.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 17:41:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:03:b5:5a:6c:33:4c:da:ca:90:4d:bf:28:4b:85:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 19 07:18:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e667edccb4a6aad025311f77aa01aafd520368c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:06:3c:bb:25:e8:3b:cf:2d:a0:19:ab:4d:94:
32:ed:55:fe:3a:db:cd:3f:ae:19:a5:fa:1e:f7:3e:
92:b1:db:7c:ac:c5:f9:69:e9:d8:01:97:43:44:26:
75:66:a6:a5:c9:27:2f:64:cf:57:a9:7e:8f:77:66:
0a:9b:0e:ed:06:99:48:30:5d:85:2f:b2:28:17:1b:
22:a2:85:e3:b5:cf:de:4d:35:b4:7f:fc:9c:5c:a4:
3d:2f:8b:13:29:6f:a9:ee:3e:b8:43:ba:16:bd:ce:
23:1c:d0:4c:03:14:9e:a3:88:74:10:2c:34:61:d4:
4e:b9:cb:70:71:04:0f:d7:e0:3c:fd:c4:76:e7:65:
38:93:f2:50:e8:99:32:4a:e7:81:c2:13:c4:1b:b7:
00:97:7f:9b:b2:0a:be:a5:5f:58:32:f0:b0:82:8d:
cf:d2:47:76:5e:47:eb:4a:15:ba:fd:b3:26:9b:45:
46:7d:e6:ab:21:4a:5c:89:5f:7f:6f:89:1b:a6:6c:
18:c5:8d:b8:9e:ba:d2:20:49:b7:f7:11:5e:19:c6:
36:b5:bd:8e:bc:f9:c6:b4:85:8e:8d:b8:12:14:b7:
50:4a:fa:04:2f:47:5e:ed:3b:73:37:c4:c9:e6:60:
cd:ee:9c:2b:b7:49:17:eb:65:f6:fd:35:12:76:69:
e6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:66:7E:DC:CB:4A:6A:AD:02:53:11:F7:7A:A0:1A:AF:D5:20:36:8C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XmZ-3MtKaq0CUxH3eqAar9UgNow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.45.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:4f:ee:e5:4b:0e:9e:c6:24:2f:a1:46:7c:21:0b:21:b4:73:
bd:cd:3c:26:28:81:40:c9:e9:78:25:da:8c:29:38:07:04:e9:
82:40:7e:fa:3f:fd:d4:19:23:88:11:63:ec:97:de:6b:82:71:
ed:46:88:7c:d9:b8:19:d7:c5:6c:8e:9b:61:dc:e1:11:96:39:
3a:f3:fd:af:6f:b2:a2:83:75:c9:d2:be:6b:b9:d1:7f:e3:32:
54:f0:e9:22:d4:17:81:02:59:ac:55:2c:cb:40:4d:0e:16:0a:
00:72:91:26:c9:ab:28:a0:2b:27:78:7c:52:18:70:4a:37:f2:
e1:a4:3f:bf:7e:ff:5e:21:65:fe:b3:76:dd:02:88:ea:f2:82:
b7:a9:98:a0:ee:44:21:e8:37:e7:7e:95:ad:6c:74:e4:4e:d7:
df:78:c0:1a:98:69:bd:4e:52:f8:50:f0:a7:c4:79:a2:9d:4d:
90:80:98:97:96:e8:6f:b8:1e:c3:ec:57:30:b0:0a:eb:2a:31:
e5:77:88:d9:e6:b7:50:36:cc:9c:9b:c0:74:d5:5b:08:d7:26:
6f:cd:bc:58:37:39:6a:0e:cb:b0:48:50:55:30:80:5e:74:6b:
32:96:af:c6:09:4d:c1:e9:66:37:fc:19:f6:66:c6:07:b0:35:
7a:c1:be:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:19 2024 by rpki-client on console-fra.rpki-client.org