Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/XxClwhTI9fPCfyYdql-JBuCGf-U.roa
File: XxClwhTI9fPCfyYdql-JBuCGf-U.roa (raw, json)
Hash identifier: XMSAxpZSiUHoSSFIqnsOW9VCI2YpKwQCVkawfGvyMvQ=
Subject key identifier: 5F:10:A5:C2:14:C8:F5:F3:C2:7F:26:1D:AA:5F:89:06:E0:86:7F:E5
Certificate issuer: /CN=3aa9e9832ed25de78c3ce0501208261066281f51
Certificate serial: 0187A89BE469F3415ABA9B68C9098FAA5BE3
Authority key identifier: 3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/XxClwhTI9fPCfyYdql-JBuCGf-U.roa
Signing time: Sat 22 Apr 2023 10:56:41 +0000
ROA not before: Sat 22 Apr 2023 10:56:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203409
IP address blocks: 185.217.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:9b:e4:69:f3:41:5a:ba:9b:68:c9:09:8f:aa:5b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aa9e9832ed25de78c3ce0501208261066281f51
Validity
Not Before: Apr 22 10:56:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f10a5c214c8f5f3c27f261daa5f8906e0867fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5d:08:85:ae:45:92:84:9f:7f:e7:be:81:c3:
3f:51:57:7b:c5:20:05:32:f7:81:84:c5:11:94:d2:
34:49:bc:6b:00:86:29:3e:0b:47:95:01:0c:94:d6:
21:cf:fe:f6:40:57:7d:f4:76:85:eb:13:41:7f:fb:
ed:95:fd:8f:4a:0c:45:c3:37:72:ea:c8:cb:d1:33:
eb:ce:fb:f2:ea:50:8b:ea:71:46:8b:37:5e:0b:ab:
74:19:7a:02:b1:b8:f0:d9:ec:a6:d5:e8:a8:48:64:
bb:8b:66:2c:20:1c:e1:03:eb:b9:53:66:b2:40:d9:
87:64:ee:37:e5:84:c4:4f:f2:3d:8f:b6:48:39:40:
a9:39:ac:02:5e:85:a7:af:01:55:a0:b0:87:5b:8f:
09:8c:c4:c0:15:ae:9e:06:1b:f1:d2:88:60:55:68:
47:db:78:15:e8:cb:fd:81:7f:58:93:66:8a:a7:4e:
70:91:14:44:5d:c7:e1:50:e5:be:42:a4:87:85:91:
d4:47:a5:ad:d7:ef:08:99:3b:4f:12:50:a0:52:42:
a8:9b:84:96:95:d5:aa:67:30:07:68:58:01:be:76:
96:e2:f8:39:58:97:31:4c:2f:8b:cf:2a:2e:b7:8b:
33:23:5f:ec:e1:76:c7:94:4e:61:4c:ee:68:fe:93:
76:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:10:A5:C2:14:C8:F5:F3:C2:7F:26:1D:AA:5F:89:06:E0:86:7F:E5
X509v3 Authority Key Identifier:
keyid:3A:A9:E9:83:2E:D2:5D:E7:8C:3C:E0:50:12:08:26:10:66:28:1F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oqnpgy7SXeeMPOBQEggmEGYoH1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/XxClwhTI9fPCfyYdql-JBuCGf-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5fd273-f3a9-4755-b23a-3bbd887d05c2/1/Oqnpgy7SXeeMPOBQEggmEGYoH1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.61.0/24
Signature Algorithm: sha256WithRSAEncryption
27:90:47:9c:47:51:85:e4:05:39:9a:24:53:e4:79:08:0b:f0:
f5:3a:49:4b:50:04:34:38:62:b9:da:31:7c:7c:81:32:9f:38:
c5:56:64:c8:04:2a:b5:0d:b7:41:2e:11:3a:66:0c:70:b3:10:
aa:ff:20:17:b5:56:cf:58:4b:3f:9b:f9:41:a4:20:91:e6:17:
14:c0:f0:0b:35:de:f3:7c:97:72:e7:b7:25:1a:71:05:74:10:
26:99:98:7c:d8:41:0e:09:14:62:68:4b:02:04:f5:cf:79:f8:
00:1c:98:78:da:6a:af:57:89:a7:5c:98:fe:73:8f:78:3a:b0:
37:90:cc:97:1c:ce:e1:2b:f8:0e:c4:3c:bf:ed:c8:4b:86:7b:
81:df:87:69:03:ed:a9:18:0d:da:09:cf:2e:28:17:af:0b:d1:
ee:8c:e6:3b:43:b4:cb:ce:78:34:f6:71:e4:c3:7e:00:95:6e:
0d:af:e1:51:69:2b:09:fc:97:c8:07:8e:33:e9:f1:02:cf:88:
59:6e:98:0e:2a:5c:8d:5b:f4:2a:62:89:69:6e:79:09:1b:c0:
4e:44:6a:8c:ac:55:5f:9e:ca:12:69:c6:f0:8c:1d:71:7e:a5:
4e:a9:1f:47:e0:40:44:b0:2b:cf:c7:1d:29:67:0e:8f:63:3b:
71:ae:a7:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:29 2024 by rpki-client on console-ams.rpki-client.org