Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/XlGMihHe2E33LbyAbMw2ZPT5JTE.roa
File: XlGMihHe2E33LbyAbMw2ZPT5JTE.roa (raw, json)
Hash identifier: v3AFQoTU6tFRQQBbgSNRSvrtKBOGqlI3o4lQNTOAS6c=
Subject key identifier: 5E:51:8C:8A:11:DE:D8:4D:F7:2D:BC:80:6C:CC:36:64:F4:F9:25:31
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 01869E62EEC4C202A65F75BC5B2F5F6625D7
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/XlGMihHe2E33LbyAbMw2ZPT5JTE.roa
Signing time: Wed 01 Mar 2023 18:15:29 +0000
ROA not before: Wed 01 Mar 2023 18:15:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 178.213.152.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9e:62:ee:c4:c2:02:a6:5f:75:bc:5b:2f:5f:66:25:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Mar 1 18:15:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e518c8a11ded84df72dbc806ccc3664f4f92531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:71:c9:46:20:fc:8a:18:6f:9b:66:99:d1:f8:
3d:85:84:01:53:68:06:54:82:71:1e:8b:ed:58:12:
4f:48:d5:01:ad:02:38:06:c8:15:8d:aa:b8:cb:70:
72:3a:31:c5:c9:f8:ed:cc:bb:ba:1f:5b:e8:9a:9a:
49:b8:cc:10:0a:1a:da:f7:0c:74:9c:ff:b2:5c:72:
c0:44:69:1b:82:9c:63:e7:b2:68:51:4a:87:26:98:
a9:9a:81:64:c2:03:be:d2:99:85:40:80:32:22:81:
1c:3d:7c:23:50:dd:ed:f2:68:50:6a:9a:98:46:81:
06:4b:e0:7c:ff:ba:ff:e1:f8:30:fb:be:bc:bc:21:
de:4f:ab:7b:95:9b:f5:63:74:6d:59:e0:c5:1b:ce:
e2:c2:da:54:07:4a:32:c9:0d:16:81:bb:6f:e8:28:
27:8f:80:55:51:a4:9a:c8:f1:37:40:d6:b7:11:ee:
49:a9:7f:82:f2:99:47:4f:05:cb:87:7a:08:5a:20:
64:fd:ee:c8:91:2f:22:28:da:0c:fc:c9:d3:b1:20:
6e:40:08:a2:a4:90:c7:9e:43:b4:e5:67:4a:25:07:
8b:3e:f0:a3:70:d1:8c:64:74:b1:35:c0:b7:c1:ea:
e4:58:ae:cb:65:37:07:05:58:43:53:93:cc:ca:e5:
b0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:51:8C:8A:11:DE:D8:4D:F7:2D:BC:80:6C:CC:36:64:F4:F9:25:31
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/XlGMihHe2E33LbyAbMw2ZPT5JTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.213.152.0/21
Signature Algorithm: sha256WithRSAEncryption
09:c4:79:b6:fd:5f:37:eb:ff:d7:55:c6:54:fb:9f:70:76:ef:
55:18:5e:dd:19:eb:ae:3c:14:4c:8f:eb:b7:fc:95:49:cf:0c:
6e:0b:6e:ea:1c:78:b3:42:7b:48:c8:7c:bb:18:73:80:96:d4:
d2:ed:77:62:d5:0a:5a:3c:ea:d8:99:8b:7f:df:ef:ad:c9:18:
87:fe:05:26:ca:fb:56:88:ea:b5:1f:72:ef:fe:2c:ab:06:57:
1a:8f:d1:96:0f:de:16:de:77:ba:43:21:c8:f9:bc:26:ba:83:
cd:55:82:49:46:55:98:43:82:7a:ee:67:c9:f2:39:d4:3f:df:
da:c7:1b:4f:bc:5a:4e:20:d8:ec:5d:6f:75:e8:d5:9e:2f:96:
94:25:0e:76:ed:37:a0:e4:96:fd:ec:1e:ef:7b:64:1e:64:da:
b7:fa:1f:bd:bc:7b:c8:86:52:8b:ed:d5:82:d3:74:f8:98:d1:
aa:73:d1:1f:7b:f8:48:9b:a7:8b:40:bc:3d:c4:e5:f2:99:06:
13:49:95:e5:2a:64:66:ba:0f:e1:99:e2:e8:23:2f:3d:e3:ae:
2e:ce:4e:c8:9c:e9:d9:b8:41:23:ee:82:5b:4d:4c:c6:0c:84:
c8:a4:bc:73:37:38:12:6c:c9:30:97:9f:05:39:8d:d0:b2:a5:
b5:b8:03:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:26 2024 by rpki-client on console-ams.rpki-client.org