Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xA06_RutOcAmdWd5YoqL4R0nn4Y.roa
File: xA06_RutOcAmdWd5YoqL4R0nn4Y.roa (raw, json)
Hash identifier: QTxq5YLRU8CTlOecbAT0ptxy6g60bhQz3RBuF3vMRcs=
Subject key identifier: C4:0D:3A:FD:1B:AD:39:C0:26:75:67:79:62:8A:8B:E1:1D:27:9F:86
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0189F828285DAF11B2586E8E14FA93E072A0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xA06_RutOcAmdWd5YoqL4R0nn4Y.roa
Signing time: Tue 15 Aug 2023 07:45:28 +0000
ROA not before: Tue 15 Aug 2023 07:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202685
IP address blocks: 2.58.95.0/24 maxlen: 24
84.54.51.0/24 maxlen: 24
94.103.124.0/24 maxlen: 24
141.98.4.0/24 maxlen: 24
31.13.211.0/24 maxlen: 24
45.128.232.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:28:28:5d:af:11:b2:58:6e:8e:14:fa:93:e0:72:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 15 07:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c40d3afd1bad39c026756779628a8be11d279f86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4b:00:cc:96:01:b3:a9:7c:47:b6:ff:b3:bf:
41:46:85:5e:e3:90:2c:26:56:30:28:a5:4f:a5:f1:
3e:76:55:d4:18:3a:d2:42:9c:03:08:c9:20:c8:bf:
30:1e:b9:43:6a:21:f4:2b:f7:70:04:a3:48:d0:f0:
98:16:60:7d:8e:ed:38:ae:ee:0f:42:2f:24:51:c8:
9a:3a:34:ee:02:76:d5:8d:53:45:be:5b:c2:18:04:
eb:2c:be:0d:65:20:4a:a5:17:22:05:7a:70:f2:45:
10:8b:b4:95:77:2f:ca:23:3a:45:20:7d:5c:be:ad:
8f:95:9b:f6:5b:9b:91:ca:95:32:60:df:06:bd:15:
87:18:e0:5d:f7:d1:d9:05:36:44:a7:be:d7:9d:00:
f2:20:a4:3c:3f:f8:bd:f3:e0:6f:4d:a9:36:ab:43:
ea:dd:aa:5e:26:05:36:64:43:f5:ef:77:07:a9:e9:
38:a4:db:f1:f4:57:36:e8:e2:05:c8:db:52:51:69:
56:d2:ba:cf:e7:0d:32:c2:ac:7c:79:33:0d:c6:32:
19:2d:22:9a:75:93:98:89:42:68:34:b2:df:e5:57:
62:46:c9:ff:ca:4a:cd:85:67:26:a5:1f:85:de:43:
86:3b:ea:99:f2:5e:54:68:5a:b4:78:d2:a4:9f:b7:
eb:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0D:3A:FD:1B:AD:39:C0:26:75:67:79:62:8A:8B:E1:1D:27:9F:86
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xA06_RutOcAmdWd5YoqL4R0nn4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.95.0/24
31.13.211.0/24
45.128.232.0/24
84.54.51.0/24
94.103.124.0/24
141.98.4.0/24
147.78.102.0/24
193.35.18.0/24
Signature Algorithm: sha256WithRSAEncryption
31:9d:3f:3b:8d:3b:27:6d:c1:3a:a2:42:0f:f1:1c:f5:c1:cb:
75:94:76:66:6a:73:c8:f2:ca:d0:39:1c:94:ba:85:b4:f5:88:
fc:f9:0f:48:41:b4:5c:a4:eb:f2:fc:85:85:43:b5:c6:9e:72:
a4:7d:c7:99:35:6e:31:ec:41:eb:09:60:97:60:4a:18:43:5c:
78:96:51:26:a3:e0:e1:d8:a7:b5:0c:a9:49:b1:b2:03:d3:e9:
70:f1:2c:ad:8c:37:b3:ef:d7:ae:a8:9f:4f:b0:79:80:1e:e0:
f9:cd:01:28:34:20:41:67:9b:85:c7:b0:f7:d9:bf:62:0a:e0:
5a:da:98:53:56:45:5b:86:a1:6f:73:47:d4:67:38:48:82:ab:
6d:ac:d3:de:de:b1:85:24:22:c2:41:47:8d:f5:8d:bc:3b:79:
49:70:64:2d:db:f2:4e:35:5c:56:7d:d6:27:8b:6b:30:8e:bc:
5d:0d:da:ef:05:38:ed:f4:ef:bb:0e:93:d5:1f:fe:28:81:54:
b7:73:17:a1:7a:0d:3f:f6:55:2b:6f:81:a1:99:6d:91:48:86:
cf:9f:35:fa:57:49:7f:e9:7c:54:43:c3:2a:63:e5:96:f6:04:
27:4a:4c:e0:1a:70:7b:60:59:ec:9a:f4:dd:8e:7f:4d:ae:67:
00:24:0b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 21 13:00:27 2023 by rpki-client on console-ams.rpki-client.org