Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/XPYTRDQ7JITDfe_JSHAlSZNp0_0.roa
File: XPYTRDQ7JITDfe_JSHAlSZNp0_0.roa (raw, json)
Hash identifier: yOmZ/tM9K//5oUKr5TGz2227eoEgJsBJZjqzfudVHZE=
Subject key identifier: 5C:F6:13:44:34:3B:24:84:C3:7D:EF:C9:48:70:25:49:93:69:D3:FD
Certificate issuer: /CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Certificate serial: 0188CA0D87716110DDEBC4C32D1B1A3542F1
Authority key identifier: B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/XPYTRDQ7JITDfe_JSHAlSZNp0_0.roa
Signing time: Sat 17 Jun 2023 15:51:04 +0000
ROA not before: Sat 17 Jun 2023 15:51:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49870
IP address blocks: 45.67.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Jun 2023 15:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ca:0d:87:71:61:10:dd:eb:c4:c3:2d:1b:1a:35:42:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Validity
Not Before: Jun 17 15:51:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cf61344343b2484c37defc9487025499369d3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d5:07:be:2d:8d:f6:75:49:16:21:58:8d:19:
0b:bb:00:de:52:ce:16:13:22:33:94:26:87:e7:05:
c0:f6:18:1f:c1:ba:ee:e8:8b:5d:b4:0f:6e:a5:6f:
0e:c3:c9:75:6f:18:39:30:1d:79:47:96:3b:12:9d:
6c:e3:88:18:f0:1a:ea:2a:38:32:e6:10:08:08:53:
c2:54:7e:f8:c0:5f:36:f5:32:ad:b4:a8:48:5d:e9:
e0:63:d5:7a:9d:dc:c8:49:b1:03:bb:41:c2:45:3a:
7e:e6:72:10:c5:e0:48:01:97:b0:29:f4:04:2f:9d:
43:a3:8b:4b:38:2a:63:25:9a:34:43:53:50:a1:7e:
06:a3:a2:79:3c:13:00:9b:68:14:00:d0:b7:49:39:
2b:3b:aa:49:c6:f7:b8:ec:1b:60:26:91:10:01:a4:
7f:72:a0:cf:24:5a:98:2b:43:29:23:6e:a8:43:74:
fa:e1:0e:39:b5:8b:67:40:80:32:2c:91:f3:44:f6:
b4:1a:c0:26:ee:78:ee:0e:20:87:8e:b9:e8:76:1a:
f8:6e:9b:0a:3c:8d:25:e0:e7:dc:9f:7c:85:d0:9a:
14:94:08:b3:f9:71:20:05:ea:ad:6c:75:54:59:1d:
c2:9e:cd:1a:b2:36:ca:33:5e:87:ce:92:9f:91:99:
c6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F6:13:44:34:3B:24:84:C3:7D:EF:C9:48:70:25:49:93:69:D3:FD
X509v3 Authority Key Identifier:
keyid:B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/XPYTRDQ7JITDfe_JSHAlSZNp0_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/t8QKdH46wazGEaTEA7YAc5jn158.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.13.0/24
Signature Algorithm: sha256WithRSAEncryption
02:10:95:c9:e2:38:89:2a:b5:55:4b:e4:15:08:db:7d:e3:c9:
03:d1:83:6f:17:63:f2:e3:d0:7b:c9:ad:52:27:0f:cf:68:55:
2a:02:54:f6:da:b3:60:d8:0b:d5:13:9c:2b:61:12:0d:45:b8:
f9:f3:e4:08:11:3d:13:02:5e:d9:6c:a2:93:35:27:3c:56:c5:
d0:45:a2:ad:55:23:4b:34:27:8e:13:d1:27:d4:de:67:9d:20:
7b:51:6f:27:9d:b0:23:da:ee:30:39:4d:3d:fb:a8:4d:94:93:
dd:6a:b9:3b:5e:de:08:ed:fb:9e:98:2d:b9:03:fe:3a:45:3a:
83:d3:d5:42:10:29:c4:52:b7:a5:56:cb:23:38:43:83:cb:3d:
9a:be:57:df:08:bc:84:a2:41:b8:98:0c:f7:ba:f4:17:29:f5:
ff:48:85:cc:de:b5:66:a7:52:f5:03:9f:06:1d:04:2e:3b:d7:
c6:23:10:2d:31:38:d1:73:af:21:6f:d7:56:0a:8b:fc:06:37:
49:38:e1:61:a5:30:8d:2a:fd:c4:e3:cd:df:e2:e0:3b:75:fc:
97:c8:b5:9d:49:66:90:5d:86:ba:5a:f9:dd:29:a6:56:f8:fa:
03:34:f9:b4:00:5f:ff:37:18:64:d5:dc:68:9d:a9:be:5d:c4:
49:eb:ad:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org