Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/xWJsDJ2WpDPJNfZbvEblaZIHZl8.roa
File: xWJsDJ2WpDPJNfZbvEblaZIHZl8.roa (raw, json)
Hash identifier: jF1Nj1rUrIhhBBK9IWi2w89q2zhouFc0BFV8yO5p2Po=
Subject key identifier: C5:62:6C:0C:9D:96:A4:33:C9:35:F6:5B:BC:46:E5:69:92:07:66:5F
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01856ED4DDB8536ED5131B4A165CC15E65C6
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/xWJsDJ2WpDPJNfZbvEblaZIHZl8.roa
Signing time: Sun 01 Jan 2023 19:35:22 +0000
ROA not before: Sun 01 Jan 2023 19:35:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 109.122.43.0/24 maxlen: 24
193.93.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 10:14:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:dd:b8:53:6e:d5:13:1b:4a:16:5c:c1:5e:65:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 1 19:35:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5626c0c9d96a433c935f65bbc46e5699207665f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:03:b3:63:eb:46:48:cb:f6:a4:f3:51:5e:cb:
2e:d0:d1:c6:01:6e:ef:ea:d6:03:f5:01:5d:67:56:
89:09:79:11:eb:97:59:78:f8:4a:dc:5d:54:23:d4:
22:5b:42:de:bc:39:a1:79:2b:96:91:d8:5c:52:3a:
1d:56:80:6a:46:6f:a2:de:48:86:1c:79:0a:14:16:
0c:50:66:4e:e2:e5:5d:31:83:0e:2f:a7:56:b5:2c:
16:f0:4d:5d:db:53:e9:0e:af:92:4a:46:37:a4:09:
e5:e4:89:1a:1e:74:37:5e:ed:fa:2a:cb:77:8e:13:
5f:cd:f4:c1:8b:1a:ca:25:b1:15:de:c4:fa:b1:70:
ac:94:4c:59:68:e3:21:1d:3a:6f:a2:32:51:20:e9:
b5:8b:b4:b0:53:6f:ee:82:40:a9:50:b5:d3:50:7d:
d9:76:4a:92:fb:d8:40:30:98:af:5a:cb:2b:5d:2d:
ec:53:fa:81:c2:cc:47:f7:6d:4b:93:ed:43:61:10:
04:d7:39:ee:86:01:a6:2a:37:1c:ae:df:b0:e9:fe:
54:a6:b2:c1:79:96:4f:89:80:ac:fc:67:25:8f:4d:
14:c5:37:68:15:2e:1d:6c:a2:80:17:82:ba:eb:7d:
85:f0:32:c0:b0:5e:57:44:64:80:e5:bf:47:f7:71:
20:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:62:6C:0C:9D:96:A4:33:C9:35:F6:5B:BC:46:E5:69:92:07:66:5F
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/xWJsDJ2WpDPJNfZbvEblaZIHZl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.43.0/24
193.93.54.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:c0:d5:60:40:a9:43:e7:f1:ac:4e:72:c2:cd:3b:13:bd:e7:
48:2e:e1:88:63:33:fe:1c:7c:68:34:4f:71:ff:7e:ce:dc:a8:
07:d7:5e:ee:4a:c2:7c:f8:58:c7:71:9a:99:6f:bd:0b:a2:a7:
a6:c1:04:0f:1c:55:50:d3:55:c8:ba:b9:3c:31:de:17:03:7c:
05:c2:00:c1:cd:08:dc:22:6b:74:b3:a3:25:b9:00:29:c5:eb:
d1:1e:64:0b:88:de:b5:ba:77:1d:9d:f1:d9:65:26:c4:eb:98:
99:bf:f5:2f:3f:6a:a9:af:9f:b6:33:9d:68:5c:77:24:dc:35:
f5:a9:a5:b3:74:60:c8:fa:6f:71:ec:9a:a5:a4:33:5e:36:1d:
1c:e4:1d:89:2b:18:5f:17:d9:bb:a8:ba:8f:c5:ef:28:5b:25:
87:ba:0a:bc:4f:cd:4e:71:c1:e0:d3:fb:9d:9d:ea:a8:80:bc:
8f:02:7d:86:b8:00:8a:50:a5:fd:3d:04:aa:8c:f5:8a:82:54:
26:75:04:53:d1:d1:91:d8:96:2b:e6:01:49:75:86:22:40:af:
df:c1:0c:98:59:c5:77:c1:2c:16:32:54:64:a2:ce:3a:a8:93:
09:02:e5:83:a2:51:69:50:65:53:f5:a5:2c:d7:fb:ef:50:f6:
6e:70:ff:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:07 2024 by rpki-client on console-ams.rpki-client.org