Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/xxQ74v8HCXb6KolthXKi1MpdT08.roa
File: xxQ74v8HCXb6KolthXKi1MpdT08.roa (raw, json)
Hash identifier: ftIb4KEa4xVyYPVn6i9XJUH6OILQwcR98OmFT3WWJFs=
Subject key identifier: C7:14:3B:E2:FF:07:09:76:FA:2A:89:6D:85:72:A2:D4:CA:5D:4F:4F
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0189C0655596A307626ED0DB02C96EB823B9
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/xxQ74v8HCXb6KolthXKi1MpdT08.roa
Signing time: Fri 04 Aug 2023 11:53:33 +0000
ROA not before: Fri 04 Aug 2023 11:53:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201776
IP address blocks: 5.188.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Aug 2023 14:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:65:55:96:a3:07:62:6e:d0:db:02:c9:6e:b8:23:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Aug 4 11:53:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7143be2ff070976fa2a896d8572a2d4ca5d4f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:08:99:09:c2:fc:c7:11:9a:2f:a7:c8:84:61:
84:30:9b:24:ab:10:33:3c:94:50:4f:0e:1d:58:ee:
b8:66:55:96:fe:90:03:c8:3a:4a:11:9e:46:72:ea:
69:f8:0e:02:17:37:f4:d4:06:b1:3f:55:16:20:25:
3b:33:ce:82:10:58:7a:ca:98:b8:fe:0f:ac:11:49:
55:4b:71:e7:3b:c5:6f:64:ea:62:7f:eb:aa:9e:43:
27:98:77:36:28:e7:df:6f:6a:62:39:01:5f:62:e5:
c2:77:71:ce:ad:88:9e:a4:d7:2b:99:ea:c5:31:00:
ac:45:1a:3d:1e:cd:a9:c1:6a:67:5c:ef:cc:0e:84:
db:d6:28:43:7c:b0:46:66:94:ac:0a:74:d7:fe:64:
15:94:b9:38:0b:8b:2a:9c:55:e7:22:05:da:23:50:
52:11:69:db:01:13:8a:3c:c3:2c:0c:cb:a4:db:d5:
a0:b2:94:30:07:4e:e0:1b:41:13:98:5c:1e:28:cf:
6d:f8:41:cc:da:6a:f1:b3:96:76:e5:c4:02:18:3a:
ce:4e:1b:a2:71:be:b9:8c:74:e4:a5:ae:8e:27:60:
60:e7:9d:05:d7:3d:f1:55:8d:e7:6c:ec:48:88:bd:
05:09:c6:4c:b4:ad:28:e0:8c:57:61:0c:2a:30:a6:
25:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:14:3B:E2:FF:07:09:76:FA:2A:89:6D:85:72:A2:D4:CA:5D:4F:4F
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/xxQ74v8HCXb6KolthXKi1MpdT08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.206.0/24
Signature Algorithm: sha256WithRSAEncryption
11:1d:c3:a3:9b:a3:12:19:56:ec:6a:2f:7e:b9:6f:ce:71:2b:
ec:43:10:a6:ab:07:05:ba:c5:48:c9:f7:05:70:2a:03:ab:77:
55:ac:08:07:37:3a:16:0a:da:4a:5b:89:c8:f3:c1:7c:30:c6:
59:1f:b7:2f:a3:c3:20:ef:5d:8c:1c:c0:8b:75:1d:6d:df:dd:
41:c4:b1:47:3e:70:cd:92:98:a4:82:58:18:0d:fc:7a:ba:63:
fc:e2:6e:d0:cc:b4:3f:c8:b6:47:e9:01:68:50:d5:b6:43:2c:
ec:f1:b3:aa:b6:ea:a5:08:27:66:ca:09:a9:de:46:03:24:11:
2c:c5:11:43:d9:01:4d:cf:0b:fe:20:fe:34:5d:78:31:72:d0:
b3:64:d4:b3:74:eb:13:c8:1b:79:01:a4:b3:d1:18:f3:50:80:
67:25:20:b0:bb:dc:2d:a1:3a:2d:13:b5:4f:ab:e2:27:ee:6e:
1a:a6:e2:3b:0a:4d:fb:a2:27:8a:97:92:93:df:53:4d:1d:ce:
dd:8f:a9:cb:7a:a1:23:1f:ec:ab:65:8d:02:75:77:cd:47:b5:
6e:86:be:3e:35:5c:8e:5b:56:b4:77:40:bc:a3:06:82:bf:35:
2e:a5:cc:48:58:5a:56:9b:d1:c7:d3:3b:f8:83:1e:ae:c2:12:
05:c5:85:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:29 2024 by rpki-client on console-fra.rpki-client.org