Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/xe_6UZoP-tHWUPz1wqjZK0zgnRE.roa
File: xe_6UZoP-tHWUPz1wqjZK0zgnRE.roa (raw, json)
Hash identifier: yPxo4kyHmSr9Yzyg4STyS3AR1ItSFXglOJOiHY78Lzc=
Subject key identifier: C5:EF:FA:51:9A:0F:FA:D1:D6:50:FC:F5:C2:A8:D9:2B:4C:E0:9D:11
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 018CC6B9353A7B0F4F20AF5A93CCF02A5FB9
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/xe_6UZoP-tHWUPz1wqjZK0zgnRE.roa
Signing time: Mon 01 Jan 2024 20:31:15 +0000
ROA not before: Mon 01 Jan 2024 20:31:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 45.157.72.0/23 maxlen: 23
92.119.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 20:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:35:3a:7b:0f:4f:20:af:5a:93:cc:f0:2a:5f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 1 20:31:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5effa519a0ffad1d650fcf5c2a8d92b4ce09d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:71:b8:8d:10:b3:b4:af:fb:7d:b6:c9:6f:cb:
73:dd:e4:5c:77:b1:65:9f:b3:4c:87:0c:bf:67:90:
a9:86:6a:98:6d:a2:65:75:43:56:68:24:36:9d:05:
d5:b3:96:da:1d:8b:8d:15:7a:a7:82:13:36:1c:d4:
0f:f2:a6:78:30:f1:0a:71:d7:a5:3e:3f:14:fa:92:
c8:45:76:40:77:d4:f8:8b:12:53:9e:10:3c:2b:9a:
12:ef:c7:0b:e8:0f:3d:be:c7:0a:6c:fc:05:ef:e6:
65:e4:ad:1a:e6:d9:2c:d2:00:50:e4:b4:9f:7a:39:
6b:d0:92:86:71:37:9b:37:7d:b8:5f:e1:a8:3c:e8:
ea:c0:01:67:46:3d:ab:03:60:c4:d3:c3:8e:92:65:
b4:4c:08:c1:32:52:a4:a4:c2:ab:99:15:3c:21:60:
a6:30:d5:d5:7a:7c:56:c7:40:a8:b3:24:54:33:e3:
5d:d2:73:d8:a1:a6:e9:6f:2e:44:43:59:1a:84:88:
bd:dd:22:8c:0e:e2:26:a9:66:74:99:33:97:5e:c2:
a4:f3:da:17:58:67:ca:e8:80:09:aa:db:63:c2:a1:
ac:b3:b9:f1:0f:ee:ad:33:38:2f:9f:7b:d6:b4:e4:
69:d2:c6:e9:85:51:c6:0c:ff:9e:a5:24:29:b5:2f:
c4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EF:FA:51:9A:0F:FA:D1:D6:50:FC:F5:C2:A8:D9:2B:4C:E0:9D:11
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/xe_6UZoP-tHWUPz1wqjZK0zgnRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.72.0/23
92.119.183.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:24:5b:32:32:61:0d:2f:fb:c7:f4:3e:7e:b8:c7:8d:05:16:
55:c1:1e:1b:f6:85:85:05:1e:c3:92:25:9c:a1:ff:c7:00:e7:
bc:32:57:dd:ca:24:0e:a9:c6:57:81:84:9e:6f:96:b1:b8:d3:
8e:df:69:1e:94:a6:2a:58:4b:78:9f:36:30:ba:24:1b:af:3c:
4a:f8:79:b0:81:db:12:d1:68:7a:f7:0a:9a:e6:9e:4a:a1:be:
df:92:be:ca:c2:13:5b:22:c5:75:fa:14:60:18:6d:a7:e3:7f:
98:ba:ca:b8:72:27:34:71:e9:10:52:48:c9:22:b6:41:6f:d5:
f4:20:33:5f:09:39:f4:f9:a2:e6:dd:36:c7:9d:a9:7f:35:f6:
48:b1:9c:95:7b:5c:87:12:e3:3f:42:4e:e7:ef:07:90:c6:3b:
69:b2:fb:9b:67:a7:fb:ec:46:9e:e4:15:db:0d:87:2e:ff:34:
4b:0f:ea:a7:60:79:b3:06:96:6d:a6:76:b5:67:34:30:84:a0:
91:f2:99:16:7b:5b:41:f4:3e:6d:a9:5c:9f:17:14:91:5d:b0:
35:e4:39:d8:68:c1:ca:fd:e1:57:c8:75:2f:7a:02:09:30:24:
77:a8:9e:ca:21:34:38:ac:e1:1a:c9:69:ce:24:be:c9:df:a5:
9a:71:f8:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 23:24:08 2024 by rpki-client on console-ams.rpki-client.org