Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/X1CxAfJTFGu1ctj9V2R6n_JSOhQ.roa
File: X1CxAfJTFGu1ctj9V2R6n_JSOhQ.roa (raw, json)
Hash identifier: gX9LTilF/P31tAPlhNNtpOsc/rnDXrVREkPbkm6qFW0=
Subject key identifier: 5F:50:B1:01:F2:53:14:6B:B5:72:D8:FD:57:64:7A:9F:F2:52:3A:14
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01914116E3B342488394BD536652E0603991
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/X1CxAfJTFGu1ctj9V2R6n_JSOhQ.roa
Signing time: Sun 11 Aug 2024 10:58:24 +0000
ROA not before: Sun 11 Aug 2024 10:58:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198831
IP address blocks: 185.253.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 12:44:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:41:16:e3:b3:42:48:83:94:bd:53:66:52:e0:60:39:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Aug 11 10:58:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f50b101f253146bb572d8fd57647a9ff2523a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6f:2b:2f:53:fc:a4:28:2d:78:25:94:fe:ca:
d1:d0:3e:c0:74:e2:05:c8:1c:08:bd:25:56:9d:91:
f3:55:e6:50:56:23:1a:1d:b9:6d:07:0f:09:61:b8:
ad:4b:75:fe:c0:be:2b:65:2c:8a:4c:eb:e1:f0:8a:
46:be:75:f9:b8:30:8f:3a:fd:40:fa:46:c8:a1:14:
aa:f5:d3:4a:ca:42:28:2b:1e:4d:58:03:46:2b:4b:
87:ea:bd:ad:be:59:50:03:bd:22:e8:b0:28:58:c7:
d6:ae:78:b0:8d:c7:96:3c:32:e5:b5:66:f6:15:6e:
87:89:57:35:77:1e:2b:19:a4:26:e6:46:f3:2c:98:
f5:57:d5:1f:7b:d3:61:65:85:93:a8:e1:40:84:ad:
dc:52:da:da:50:8b:68:e5:6d:3f:be:a5:91:ef:0d:
67:92:76:86:b9:28:d2:11:f7:58:fc:93:87:a5:bf:
d5:c5:d2:0d:0a:a9:a9:f2:e6:dc:83:d4:69:e5:fb:
e7:17:25:5d:b0:aa:fd:50:c6:6b:08:2b:5d:1b:83:
57:6a:c5:e5:b0:b0:3e:a4:cf:db:e2:91:62:d1:95:
80:fe:9a:6e:c5:69:43:c8:6a:25:a0:0f:86:89:9c:
77:49:90:6f:5b:5b:1c:47:2c:3f:ed:65:55:66:a0:
10:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:50:B1:01:F2:53:14:6B:B5:72:D8:FD:57:64:7A:9F:F2:52:3A:14
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/X1CxAfJTFGu1ctj9V2R6n_JSOhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
50:bf:94:f7:f7:d1:f0:88:77:42:44:df:00:e9:49:7e:d9:74:
23:13:b3:ab:11:50:02:5f:dd:99:cd:b9:0e:02:3b:b2:a0:31:
36:f2:02:4d:57:92:a1:79:b7:7e:9a:0b:e5:7d:f1:70:85:75:
11:21:92:94:06:ea:0b:0d:10:d7:04:11:70:b8:10:e2:89:04:
b4:fa:01:22:d5:71:da:31:b0:a8:72:30:c0:af:30:4d:aa:58:
c2:ed:db:33:da:af:79:41:d3:bf:75:eb:de:13:cd:65:f3:02:
6c:57:0d:b9:9e:f9:37:61:b9:f2:05:75:f4:e3:78:f8:5b:85:
50:1a:04:31:7e:34:08:aa:68:32:15:a3:a9:09:82:8c:c8:0b:
c5:14:0a:e9:4a:f4:b1:1c:e1:b5:e2:19:22:fd:1d:f2:24:f4:
a7:20:5a:37:ba:e7:d2:70:e0:3e:54:e0:49:54:a7:78:08:91:
a5:1d:6f:a5:70:22:12:2c:28:5f:f9:a7:1e:76:7e:1f:f7:43:
6a:1d:38:38:a7:05:e8:7c:8a:80:74:00:3c:7e:bd:17:d5:4a:
5f:49:22:de:66:22:eb:f1:a7:57:4f:6e:b6:36:9f:e3:41:3b:
97:2d:3d:4b:57:a3:43:ff:7b:cc:d4:80:bd:6c:f9:c5:33:f5:
0f:75:6f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 15:05:27 2024 by rpki-client on console-fra.rpki-client.org