Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/Xg2-m_PeW0AGZA0CAgLbr70qTAo.roa
File: Xg2-m_PeW0AGZA0CAgLbr70qTAo.roa (raw, json)
Hash identifier: gjedpa+JE4ewLC+nNc+MPhoLFTDWmSgvaVR2Si6Bvy0=
Subject key identifier: 5E:0D:BE:9B:F3:DE:5B:40:06:64:0D:02:02:02:DB:AF:BD:2A:4C:0A
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 01857015213B984D5F088A6B4C7769523614
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/Xg2-m_PeW0AGZA0CAgLbr70qTAo.roa
Signing time: Mon 02 Jan 2023 01:25:11 +0000
ROA not before: Mon 02 Jan 2023 01:25:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34416
IP address blocks: 188.214.26.0/24 maxlen: 24
188.215.234.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:21:3b:98:4d:5f:08:8a:6b:4c:77:69:52:36:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Jan 2 01:25:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e0dbe9bf3de5b4006640d020202dbafbd2a4c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e0:7f:b9:37:0b:dc:fa:fc:80:e4:1c:61:1a:
6e:70:bc:f5:c1:53:9e:ed:25:13:14:e8:34:25:9f:
98:7d:1c:8e:9f:0f:51:f6:dd:09:90:4c:65:d2:b8:
93:2a:00:2b:13:bf:be:52:2a:95:5e:34:c4:52:6f:
e8:cd:00:d5:07:1a:83:a4:8b:19:d9:90:ec:e7:e3:
d9:9f:23:77:18:f5:7e:61:03:08:69:04:62:2d:bf:
18:2a:e1:b3:c9:df:57:0e:6a:37:80:34:18:37:4f:
5a:87:14:10:21:d7:fa:45:ee:5e:77:2d:a1:ee:f4:
43:14:b2:c4:ad:5e:94:de:c8:bd:c8:5d:7d:9d:bf:
d9:0d:b4:e0:f5:41:29:3a:b2:6c:2a:a5:6f:68:cc:
77:0b:dc:3c:a2:3e:31:5c:96:e1:dd:f2:a3:39:be:
d2:08:b2:3b:3c:83:03:e9:31:c1:71:3b:2f:62:45:
ed:db:f6:44:1a:61:46:39:04:1b:fc:23:8a:59:42:
a5:98:33:93:55:ed:84:6a:f6:4a:af:1f:c6:d1:1b:
75:5d:24:1a:31:da:f2:a5:55:19:fa:85:a0:30:c5:
2a:6b:54:f7:a1:b0:ea:d9:24:0f:8d:08:d6:bf:aa:
5c:38:72:98:9a:06:b6:cb:4b:70:7e:bd:ea:8f:af:
e6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0D:BE:9B:F3:DE:5B:40:06:64:0D:02:02:02:DB:AF:BD:2A:4C:0A
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/Xg2-m_PeW0AGZA0CAgLbr70qTAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.26.0/24
188.215.234.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f0:1d:fd:68:d3:d5:e7:06:b7:47:66:43:5d:d1:3c:75:5e:
dc:d1:81:25:47:a1:54:13:f8:23:ab:75:90:e9:ba:1a:8e:58:
d0:e6:f4:41:d1:b7:1d:60:04:ee:66:7d:ea:c3:c7:80:19:7e:
f3:35:97:c7:a9:80:29:df:b6:7b:1c:da:16:9d:6f:0c:41:49:
74:3a:77:12:ef:f7:6d:4e:b9:2a:d3:1e:1d:a7:86:53:f2:66:
f5:4f:2d:e6:64:f7:c7:42:77:7d:0e:b4:18:4f:19:32:ff:2a:
e1:f1:f9:a8:4e:90:c7:c4:b4:9e:52:1a:d2:f8:ab:12:af:f7:
c8:ce:fb:2c:b8:38:41:33:2d:b3:ef:c0:f3:eb:0d:30:cc:a6:
b1:65:e5:04:12:4a:29:a2:49:48:51:bd:fc:84:eb:61:e2:84:
78:fb:12:1c:87:74:5a:25:b2:b2:ba:f2:88:6f:a2:d7:7c:b4:
10:85:a0:1e:d7:84:eb:e6:13:66:a6:d8:4e:13:36:ef:b0:10:
84:5b:60:5e:2b:e7:7a:72:24:89:b4:24:1c:76:6f:f6:1d:67:
6e:c7:8f:4a:53:e6:96:6d:8e:7d:e6:5a:33:08:dd:af:29:e0:
5b:33:4e:fa:3a:b7:8a:ca:31:2d:2f:8b:3c:91:d0:6e:a4:3c:
67:af:39:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:01 2024 by rpki-client on console-ams.rpki-client.org