Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XddMsJ1UK3e6RGJyrRQ7VSXMJSs.roa
File: XddMsJ1UK3e6RGJyrRQ7VSXMJSs.roa (raw, json)
Hash identifier: PGPArxQ0PFDKMkqbuLnLMVUbnrdKXZ9Sfb2nj4FR7dM=
Subject key identifier: 5D:D7:4C:B0:9D:54:2B:77:BA:44:62:72:AD:14:3B:55:25:CC:25:2B
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FF775C3891964C72F2A11676FFF44
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XddMsJ1UK3e6RGJyrRQ7VSXMJSs.roa
Signing time: Mon 02 Jan 2023 17:38:12 +0000
ROA not before: Mon 02 Jan 2023 17:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138195
IP address blocks: 185.227.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:f7:75:c3:89:19:64:c7:2f:2a:11:67:6f:ff:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dd74cb09d542b77ba446272ad143b5525cc252b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:20:2f:af:96:33:39:f4:fd:bc:15:83:6e:40:
5c:db:81:13:11:73:6d:3d:38:39:58:3a:ff:f4:ba:
4e:8b:c7:76:e2:5c:74:aa:bd:19:10:4e:4e:0f:a4:
71:78:97:56:7c:db:8e:24:95:a3:3c:67:4e:e7:21:
19:33:18:22:0f:e1:83:20:90:06:ad:0c:2a:04:85:
93:19:83:6f:a9:a2:d5:8c:f2:54:67:6d:e8:39:78:
f0:fb:6d:db:14:85:8c:15:37:c2:d1:bb:e3:43:0c:
39:63:8a:ef:4b:2a:fb:20:31:37:a0:bb:02:17:42:
25:24:9d:48:66:92:c4:57:32:69:cc:8a:ca:47:77:
03:b9:91:2a:d5:30:fc:56:c9:72:94:17:09:f8:1b:
5d:97:fe:32:72:0f:37:8f:72:65:e8:e6:ac:76:fc:
19:54:31:f8:87:f7:24:ff:8e:fa:c6:ae:76:1a:b1:
7a:c5:e9:d4:30:2d:3e:1b:8d:52:31:23:0a:6b:3e:
eb:99:85:69:d3:8d:5b:70:03:d5:26:69:a6:9d:fe:
a9:56:f4:28:96:c4:ca:bc:7e:d2:b3:4a:e6:27:82:
00:83:50:2e:5a:1b:96:28:4a:ee:46:9b:46:ea:43:
64:09:10:b3:bf:af:64:42:31:2a:62:af:25:7c:63:
89:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D7:4C:B0:9D:54:2B:77:BA:44:62:72:AD:14:3B:55:25:CC:25:2B
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XddMsJ1UK3e6RGJyrRQ7VSXMJSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.70.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:76:b3:d8:fc:4b:e3:34:0f:f9:25:c5:04:de:43:12:83:43:
b1:5e:65:2f:41:95:e3:6c:76:81:9a:8a:8f:a8:61:8b:d9:3e:
28:ff:06:67:44:fa:cb:da:16:94:3b:ff:c8:0d:48:1f:8a:2b:
d6:fe:36:7f:54:ad:31:5e:a0:71:ec:10:6f:40:d8:2b:06:40:
63:6c:10:34:5b:8c:44:fa:ad:a2:ee:b1:58:d1:c3:ee:45:09:
af:5f:97:fd:03:c8:d8:e7:76:94:d2:06:d1:17:af:ad:6d:d9:
ec:3c:4d:18:2a:cb:fa:b0:48:47:90:f6:ef:76:e1:ba:93:06:
75:b7:c4:36:2f:0d:e4:ec:92:0c:e0:fe:f1:e6:8a:68:a9:b2:
73:f9:cc:ff:6e:69:91:9f:2e:96:d8:e3:ee:c5:67:31:88:3b:
ad:0d:cf:80:58:5b:08:54:bb:55:e3:2e:55:7d:a2:87:8b:d8:
bf:8d:9b:0d:9f:29:d2:f5:a6:1b:15:55:5b:db:4a:a8:dd:1d:
f3:73:e5:33:dc:a4:2d:e2:e7:b4:30:a3:5b:cc:39:e9:12:da:
00:70:09:89:33:09:fd:e9:08:50:6b:17:6c:0d:d9:20:21:7c:
3a:d0:32:af:a5:5a:9a:b4:24:4e:ec:41:96:a7:a6:98:ab:54:
af:fb:df:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org