Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3f7bcd-a7ea-4e10-ba34-4ce4d8fea6ef/1/xX9txr79fFJW5BiPf5X0Q2pLrOI.roa
File: xX9txr79fFJW5BiPf5X0Q2pLrOI.roa (raw, json)
Hash identifier: TjohpC1VSou25iypM4QQN1ubiX55B7C+uf9FgHYAj/Y=
Subject key identifier: C5:7F:6D:C6:BE:FD:7C:52:56:E4:18:8F:7F:95:F4:43:6A:4B:AC:E2
Certificate issuer: /CN=5fb88d91788fe9921089d9b6271e210f7f8914a2
Certificate serial: 01867ED07A2EA2C1543B1B4B5EFF54A0FE77
Authority key identifier: 5F:B8:8D:91:78:8F:E9:92:10:89:D9:B6:27:1E:21:0F:7F:89:14:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7iNkXiP6ZIQidm2Jx4hD3-JFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3f7bcd-a7ea-4e10-ba34-4ce4d8fea6ef/1/xX9txr79fFJW5BiPf5X0Q2pLrOI.roa
Signing time: Thu 23 Feb 2023 15:07:17 +0000
ROA not before: Thu 23 Feb 2023 15:07:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.52.203.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:d0:7a:2e:a2:c1:54:3b:1b:4b:5e:ff:54:a0:fe:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fb88d91788fe9921089d9b6271e210f7f8914a2
Validity
Not Before: Feb 23 15:07:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c57f6dc6befd7c5256e4188f7f95f4436a4bace2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:fc:4e:8e:59:e3:4b:1e:3e:07:9d:15:01:
14:c7:43:c2:1a:c6:9d:4d:3e:2f:3b:0f:ac:7d:14:
79:70:46:ab:d1:ca:b6:44:8f:13:70:16:99:8c:52:
77:ce:92:8d:08:c3:34:3b:29:3b:e3:6b:17:a3:a8:
78:85:3d:ca:0b:c3:64:83:0e:7a:e0:b3:58:59:23:
25:4c:20:f9:fc:7d:fc:dc:d4:93:9b:de:fc:1c:5d:
99:6e:84:f0:ba:82:fd:3a:53:f9:c9:ae:c0:73:c8:
c5:ba:06:71:d2:77:90:6d:b7:ba:27:6d:84:e9:8b:
0d:d8:9b:b9:6f:26:65:6b:c0:00:6c:43:a2:fa:90:
f0:a1:1e:fd:2c:da:0d:04:91:09:58:c6:16:03:05:
46:e5:50:a1:51:2f:16:df:53:76:5c:b7:28:15:63:
3a:6f:28:96:80:eb:da:31:a9:26:d3:ff:9a:c5:1b:
86:b8:70:4e:74:e6:bf:86:01:2b:dc:01:ab:02:f9:
e8:29:47:6d:8a:2b:22:39:72:04:37:ca:b4:f8:e8:
ad:e9:56:3f:25:c2:ec:69:1a:f6:34:7a:20:05:5d:
4f:bd:87:5e:b7:7b:d8:ba:9f:dd:86:19:f8:82:4d:
06:aa:d7:df:db:dd:6d:69:8f:72:8c:5f:b6:8c:85:
b5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7F:6D:C6:BE:FD:7C:52:56:E4:18:8F:7F:95:F4:43:6A:4B:AC:E2
X509v3 Authority Key Identifier:
keyid:5F:B8:8D:91:78:8F:E9:92:10:89:D9:B6:27:1E:21:0F:7F:89:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7iNkXiP6ZIQidm2Jx4hD3-JFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3f7bcd-a7ea-4e10-ba34-4ce4d8fea6ef/1/xX9txr79fFJW5BiPf5X0Q2pLrOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3f7bcd-a7ea-4e10-ba34-4ce4d8fea6ef/1/X7iNkXiP6ZIQidm2Jx4hD3-JFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.203.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:20:da:1b:c5:90:9f:0c:ae:78:1d:d9:3e:f8:79:59:6b:40:
78:a9:0e:99:a7:c9:0d:28:e9:9b:c6:fe:5d:eb:3f:6c:24:5f:
49:b7:a1:3f:43:a1:40:c1:1f:78:4f:7d:12:07:cb:47:ed:71:
75:04:07:ae:46:71:5d:eb:53:00:d2:4b:4c:0c:c3:e1:7f:57:
ea:f6:a3:7d:6f:b6:10:ce:b9:97:83:e4:67:68:17:cf:9d:ba:
d5:50:36:cc:83:64:dd:93:43:47:ef:c9:26:ba:e9:c5:68:f6:
17:88:f9:9b:4c:fe:56:82:eb:e6:e5:ab:e5:f1:76:87:8a:28:
b5:8b:39:20:63:47:0c:8e:4b:5c:69:e0:0c:da:8d:2d:b2:d9:
bf:1d:cf:15:36:c7:fa:b5:4b:ac:2c:93:be:23:31:fa:f2:9e:
1f:ed:87:3a:1f:72:4d:52:31:fa:0a:22:70:16:2e:bf:c8:b0:
e7:d2:85:ea:12:fa:d1:f8:01:04:f9:62:98:40:05:40:b1:47:
b4:71:b4:d4:7e:83:4f:32:60:ba:93:35:1e:2f:13:87:7d:0a:
05:d3:ca:e2:3a:39:8a:97:b9:13:9a:d7:ae:2a:a0:7f:9f:df:
f3:12:b6:1d:08:28:4c:55:1a:b8:e8:82:72:5f:36:02:c2:d5:
a2:e9:65:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:16 2024 by rpki-client on console-fra.rpki-client.org