Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/xFXLj34xiWuwDmQvQoufywHYqGA.roa
File: xFXLj34xiWuwDmQvQoufywHYqGA.roa (raw, json)
Hash identifier: tleyWCHmMdpkQrNdzj3y+M2PAQPxGBWfiJUou4VetbI=
Subject key identifier: C4:55:CB:8F:7E:31:89:6B:B0:0E:64:2F:42:8B:9F:CB:01:D8:A8:60
Certificate issuer: /CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Certificate serial: 01857246A3C46E86479135BA6FA070BC25D3
Authority key identifier: E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/xFXLj34xiWuwDmQvQoufywHYqGA.roa
Signing time: Mon 02 Jan 2023 11:38:30 +0000
ROA not before: Mon 02 Jan 2023 11:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60239
IP address blocks: 185.34.202.0/24 maxlen: 24
2a04:5ec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:a3:c4:6e:86:47:91:35:ba:6f:a0:70:bc:25:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Validity
Not Before: Jan 2 11:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c455cb8f7e31896bb00e642f428b9fcb01d8a860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:10:83:97:e8:91:fb:76:d5:44:db:10:c0:4a:
23:c6:fb:9c:d7:50:a2:6b:1c:c6:ec:01:01:9c:27:
2f:83:84:fe:6c:c7:7a:f5:81:cb:e8:0c:f2:23:66:
ff:f8:b9:da:f4:68:44:68:e8:26:6c:81:48:97:7d:
15:ba:d9:c5:63:4a:09:22:42:68:d5:ff:ed:e8:7a:
1d:03:83:2d:d3:54:69:34:a2:2b:42:91:5e:02:63:
80:2f:30:49:8f:70:af:59:26:53:28:b4:d3:13:ff:
91:8c:98:57:d6:cc:9e:8b:9b:4d:45:0f:cd:d5:7a:
86:2d:ce:79:78:ee:dd:66:37:42:44:cb:a0:03:4c:
22:84:5c:df:76:78:91:c5:97:1e:1d:1d:6b:3b:27:
b3:2c:04:17:b8:c2:22:8d:0f:12:89:88:ab:27:63:
15:86:19:99:4c:d9:2c:22:54:66:f9:dc:57:5c:b6:
f3:7a:8d:1f:4d:14:20:cc:49:9c:aa:c4:4f:58:66:
97:30:ef:e7:13:3f:5a:67:61:c7:04:25:45:90:73:
32:ce:01:d8:78:67:c3:c3:f2:1c:f9:4c:8d:d8:0d:
be:06:c7:4c:9a:f6:c2:12:8a:1a:e8:bc:af:8a:0f:
46:fe:b8:d5:cc:5d:81:b6:40:76:f2:17:14:15:d4:
de:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:55:CB:8F:7E:31:89:6B:B0:0E:64:2F:42:8B:9F:CB:01:D8:A8:60
X509v3 Authority Key Identifier:
keyid:E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/xFXLj34xiWuwDmQvQoufywHYqGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/50wpC1vM233lOD7kW6YV0vMGdh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.202.0/24
IPv6:
2a04:5ec0::/29
Signature Algorithm: sha256WithRSAEncryption
0c:b6:37:c7:32:0e:aa:ac:88:11:f5:32:ac:cb:88:ba:17:1e:
81:60:45:9b:32:7b:1a:3d:c4:d4:bb:00:cf:28:21:7f:42:22:
db:6e:75:46:32:12:a9:3b:d4:a5:3d:93:cb:d1:4c:5c:af:24:
ee:09:8b:40:f5:59:8a:d4:d4:2c:80:ae:f1:af:ca:f0:9c:5c:
ce:f7:8c:7f:8c:9f:74:8f:5c:92:78:2f:ce:0c:70:fa:5e:96:
20:ef:4a:c6:b9:99:2b:38:fd:ef:c9:5a:32:90:6c:ca:96:26:
35:41:4e:d2:fe:6f:10:91:16:4d:7d:f4:a5:05:81:d6:de:0c:
83:79:6a:c8:04:6e:bc:51:df:50:d8:d0:f7:b1:d7:94:52:54:
f5:57:b7:71:b2:20:0b:b5:b8:3d:5d:02:ea:83:eb:ed:81:85:
2d:40:60:6f:31:8a:30:f9:86:91:8a:86:d5:e5:26:2d:f7:26:
27:06:dd:19:cb:ee:3e:a8:75:d0:4b:1e:b6:38:ab:07:c9:1d:
6e:36:43:c8:6b:fd:7c:4c:82:09:74:05:09:85:1d:3b:56:8e:
13:78:30:db:22:b6:b9:d1:26:1f:02:a3:c6:09:52:e0:3b:55:
35:49:5c:67:fd:93:5e:81:99:0c:78:ca:db:59:24:6e:b3:25:
4a:df:50:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:01 2024 by rpki-client on console-ams.rpki-client.org