Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/xiudIVUZJKjYq70-lbJsOGlAFuM.roa
File: xiudIVUZJKjYq70-lbJsOGlAFuM.roa (raw, json)
Hash identifier: rA3BqPhjYPwSA5Vnu1Fo2IsIKZm4MzEs/sbHGcw+po0=
Subject key identifier: C6:2B:9D:21:55:19:24:A8:D8:AB:BD:3E:95:B2:6C:38:69:40:16:E3
Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c
Certificate serial: 01856DCAFE01BB1581B9E6ECAFD6591858D8
Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/xiudIVUZJKjYq70-lbJsOGlAFuM.roa
Signing time: Sun 01 Jan 2023 14:44:57 +0000
ROA not before: Sun 01 Jan 2023 14:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.218.222.0/24 maxlen: 24
193.219.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jul 2023 18:26:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:fe:01:bb:15:81:b9:e6:ec:af:d6:59:18:58:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c
Validity
Not Before: Jan 1 14:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c62b9d21551924a8d8abbd3e95b26c38694016e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:f7:a5:9e:da:fc:a8:82:16:d6:de:9c:37:
c4:1e:96:cb:6a:a4:f7:6d:58:e0:98:66:2e:29:35:
d9:3b:74:ef:0c:77:f8:4a:2a:6c:6b:98:df:00:bf:
3a:77:97:64:f1:e9:2b:ec:96:23:88:99:92:c9:a4:
46:37:d6:80:47:63:f1:f1:68:ab:09:fb:35:88:89:
25:f8:e1:c5:e4:be:0a:66:65:d3:80:af:17:b8:3b:
a1:62:e0:f7:40:eb:da:f5:f6:36:49:b0:1c:a7:2e:
d2:90:94:91:89:d3:63:0e:6f:5b:9b:c7:1e:e7:7b:
3b:13:07:1e:fd:90:22:98:bd:43:20:39:ef:c5:ba:
e9:82:84:78:84:d5:74:09:87:03:cd:2d:94:2f:89:
5d:41:5e:9b:17:4b:d0:68:d4:a2:81:e1:f6:28:7d:
17:16:bd:20:a6:fc:5d:62:2f:3b:af:ed:f2:cd:1c:
77:e6:9b:8e:ab:5f:cd:23:cb:c1:27:44:fc:47:c1:
5f:07:a0:39:98:28:82:1e:37:56:8c:3e:54:0e:ff:
82:38:3f:51:bf:f3:ed:96:c7:bf:8f:e6:cf:aa:65:
45:bd:f1:b0:70:7b:e5:5c:57:c1:36:18:c0:51:f4:
39:cb:f4:af:24:bf:51:e4:9a:b4:e1:da:a6:eb:36:
dd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2B:9D:21:55:19:24:A8:D8:AB:BD:3E:95:B2:6C:38:69:40:16:E3
X509v3 Authority Key Identifier:
keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/xiudIVUZJKjYq70-lbJsOGlAFuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.222.0/24
193.219.0.0/24
Signature Algorithm: sha256WithRSAEncryption
18:79:05:fb:44:0c:8e:cd:af:eb:e4:08:25:6d:e5:bc:b1:78:
13:f6:3c:9b:b3:be:e4:6a:5e:0e:25:25:37:84:bf:91:a1:31:
2d:bb:1e:2e:b8:35:f9:07:bb:f2:73:4d:8c:1f:c0:10:17:92:
b1:05:8d:23:c4:26:8a:84:ba:c5:f9:46:c0:e5:4d:fe:37:96:
3d:9e:5d:6c:09:10:8a:1a:f4:b4:c6:2c:75:17:95:15:85:79:
7c:98:58:81:4c:6e:de:cd:9b:bf:b5:56:77:b2:9d:cc:49:ab:
2d:bb:d9:c1:0a:f8:51:1e:16:2f:e8:8f:14:6a:59:3a:74:52:
89:50:1e:3e:6d:2d:09:0d:58:bf:e8:0b:7c:81:cf:75:8d:54:
16:55:07:6d:6d:5f:70:dd:80:b2:e3:76:6e:f5:ee:73:23:3d:
ca:b5:01:01:d8:5d:85:ca:2c:69:9e:9f:4b:7a:90:5b:fc:a0:
4b:61:12:53:7f:93:12:6f:c5:c5:23:0d:92:6b:9e:98:63:fa:
d7:70:a9:b4:35:2c:51:f8:71:ee:b7:c6:41:1e:65:b0:65:25:
93:92:58:98:cc:75:4a:47:9a:6e:89:d6:12:1c:03:84:b2:54:
34:0b:6f:64:16:c1:d7:70:b2:47:ca:0d:1b:a4:5e:a4:29:47:
8f:45:f9:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:32 2024 by rpki-client on console-fra.rpki-client.org