Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Xko69NrjEjyZ1ku2BxFCzvvZW8U.roa
File: Xko69NrjEjyZ1ku2BxFCzvvZW8U.roa (raw, json)
Hash identifier: jSee0cYB2SoJOPnQJmOSi2/PsX0Ba9h4Kbuvg8RRv2w=
Subject key identifier: 5E:4A:3A:F4:DA:E3:12:3C:99:D6:4B:B6:07:11:42:CE:FB:D9:5B:C5
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 01857247068BA85B5CA5376242E4D76762DD
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Xko69NrjEjyZ1ku2BxFCzvvZW8U.roa
Signing time: Mon 02 Jan 2023 11:38:55 +0000
ROA not before: Mon 02 Jan 2023 11:38:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 5.8.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:06:8b:a8:5b:5c:a5:37:62:42:e4:d7:67:62:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e4a3af4dae3123c99d64bb6071142cefbd95bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:73:f2:98:4e:52:b8:18:5b:5d:8f:93:09:05:
8d:66:83:91:ed:d4:83:a2:e2:e2:6f:bf:a4:b6:da:
d1:2e:24:0e:f6:72:0c:92:01:26:0b:1f:b2:06:05:
33:59:de:64:9a:7e:a3:2c:ad:ad:f6:3c:39:32:40:
cb:7b:14:82:e4:55:3f:34:61:26:60:36:ce:b2:00:
b3:17:b2:cf:48:74:2b:f5:1b:8e:b0:76:61:5a:e7:
20:e6:86:a7:cb:be:c3:84:6e:52:5f:93:6e:d4:c7:
0e:05:69:af:df:ce:c1:8e:be:4e:dd:78:a1:4a:df:
22:49:69:38:38:46:90:13:84:fb:ca:b6:15:8e:6d:
dc:d0:13:8a:53:b1:dd:27:15:d0:57:53:c4:15:6e:
c7:28:ba:c6:0b:94:3a:6d:ba:33:7b:97:85:bc:d4:
df:18:9f:11:80:7e:18:86:c4:a8:f4:04:0f:21:65:
5b:23:76:ff:42:31:c3:39:29:28:2b:45:b5:17:16:
55:8f:11:0b:53:92:64:9f:f0:5e:07:cd:f1:35:82:
48:59:bd:30:3c:8d:8c:c2:9a:ee:58:7c:98:94:03:
48:a9:3a:b4:f8:8c:ef:69:aa:87:31:b0:86:e7:a3:
64:9c:e4:76:e1:db:a8:ec:5b:5c:f7:d7:b2:34:66:
3c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4A:3A:F4:DA:E3:12:3C:99:D6:4B:B6:07:11:42:CE:FB:D9:5B:C5
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Xko69NrjEjyZ1ku2BxFCzvvZW8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.64.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:33:df:67:95:97:2d:67:42:7a:71:90:78:85:3a:15:5e:a8:
1e:3a:09:76:18:53:bb:b6:85:95:7e:98:ee:38:ab:4b:db:ce:
bb:6d:fe:52:d4:da:33:42:8d:6a:83:3d:db:ff:23:0b:e5:7c:
10:8e:fc:b6:cc:49:33:bc:00:a0:22:6c:eb:62:f1:8f:90:b5:
5b:7e:fe:02:09:2e:2e:22:64:6b:47:cd:0a:04:37:b8:e2:ac:
d4:c4:c3:02:1e:f3:a0:9f:c9:a0:5e:55:cd:38:7a:9f:ef:e9:
98:21:15:40:fb:61:15:1e:22:bc:b0:93:53:4e:44:41:77:37:
19:06:04:e1:6c:c5:cc:4c:f4:56:ad:f0:3a:dc:e4:35:ea:fd:
e3:81:63:e1:c9:9f:16:dc:dd:e0:95:5e:68:6a:96:8e:54:ff:
67:ce:79:15:ab:ea:94:1f:e8:66:0c:60:d5:5a:72:65:84:94:
24:7a:f1:ba:31:e4:b7:be:d8:40:c2:1a:3a:b7:fc:b2:39:81:
93:4f:64:d1:52:60:af:ba:89:7d:02:45:92:72:b4:40:82:d2:
95:e6:fc:e9:f7:51:29:c4:38:b2:9c:c8:c6:f8:67:b3:c9:8a:
e9:8f:d3:71:02:04:30:ba:55:f3:ee:b7:ba:41:7b:72:1d:67:
a9:2e:1a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org