Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/xgpscZrrghUuyNhhCbuwZcWIQJk.roa
File: xgpscZrrghUuyNhhCbuwZcWIQJk.roa (raw, json)
Hash identifier: OTh7hnXNZXxTEQA1kfGsqAvMREXnX4yUxwMHd5YNB4o=
Subject key identifier: C6:0A:6C:71:9A:EB:82:15:2E:C8:D8:61:09:BB:B0:65:C5:88:40:99
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018872E8148ED5EBFFE895582204C6962692
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/xgpscZrrghUuyNhhCbuwZcWIQJk.roa
Signing time: Wed 31 May 2023 17:43:12 +0000
ROA not before: Wed 31 May 2023 17:43:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 62.56.208.0/21 maxlen: 24
213.170.145.0/24 maxlen: 24
185.104.12.0/22 maxlen: 24
85.208.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:72:e8:14:8e:d5:eb:ff:e8:95:58:22:04:c6:96:26:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: May 31 17:43:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c60a6c719aeb82152ec8d86109bbb065c5884099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:90:d0:0a:c1:f2:4a:20:0e:8a:b9:7d:94:5b:
9b:de:b3:3c:bb:bd:bc:c4:ea:b6:3e:f9:63:bd:05:
c0:0c:02:60:89:40:6d:00:1e:3c:90:f2:61:1b:51:
e4:c5:bb:fc:d3:02:45:9e:33:12:c6:c3:38:c4:50:
3d:4d:b8:6b:26:15:c5:67:c1:26:08:10:d1:e4:92:
78:c6:ad:54:05:5b:b7:d0:b8:dd:ee:d2:93:51:65:
73:a2:35:ff:92:84:78:d4:60:58:eb:23:ec:31:94:
8d:6a:30:47:7b:a2:f9:87:11:b4:83:a9:d1:22:84:
c2:d4:71:a7:31:a8:da:8b:66:c7:d4:16:e2:37:0d:
8d:11:3e:c9:ae:64:cf:95:c3:93:6a:31:f4:9d:94:
31:18:48:68:47:13:2a:05:80:c8:54:75:7b:23:fc:
2a:eb:12:79:24:ef:de:b1:87:3d:e3:44:d9:f1:71:
29:d4:6a:54:13:db:d0:00:27:a8:5c:a0:44:a5:fe:
9c:b6:55:e3:ea:6f:5b:39:00:a8:9a:9b:ec:79:f0:
9d:b1:8c:e3:d2:fc:d8:05:45:23:57:2d:af:99:20:
ef:e8:2c:34:af:36:10:b7:68:ff:a2:da:6f:4b:d1:
5a:33:bb:fc:ea:73:4e:3f:d0:65:5b:53:dd:91:02:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0A:6C:71:9A:EB:82:15:2E:C8:D8:61:09:BB:B0:65:C5:88:40:99
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/xgpscZrrghUuyNhhCbuwZcWIQJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.56.208.0/21
85.208.44.0/24
185.104.12.0/22
213.170.145.0/24
Signature Algorithm: sha256WithRSAEncryption
48:bd:96:d9:00:e2:a3:28:68:2b:9a:5a:fe:cb:bf:ed:34:fc:
4b:96:52:b8:8e:cc:6e:6d:6f:a1:e2:d6:46:0a:ff:d2:dd:59:
a6:d0:81:2b:98:7e:60:0f:3a:f8:1f:62:7b:89:2f:c5:10:db:
bc:9b:bc:15:89:42:c1:94:ce:5b:18:8d:65:85:ae:c0:fe:3e:
b2:b9:df:fe:64:42:a9:67:81:9b:38:6a:19:c9:fd:23:6d:d3:
7e:c5:e0:8d:3c:b9:57:a2:2a:56:6d:2f:4b:2b:03:20:0a:75:
4b:bc:7d:51:29:3c:19:00:72:a3:26:5e:34:a2:a7:74:1f:65:
b6:79:6f:72:98:1f:76:8d:66:2e:07:be:bb:88:37:87:75:36:
b4:b8:d9:e1:11:4c:c0:9c:7d:09:9a:b3:55:4e:97:06:82:76:
b7:20:02:ee:47:08:f7:29:2e:bb:5b:e7:9f:fa:84:27:26:96:
02:6f:52:e0:70:42:c7:1b:df:f4:13:fa:14:7d:e3:f5:33:de:
b6:75:ad:b1:8f:1e:c5:16:bf:be:71:fd:9e:7f:00:e3:09:03:
42:2b:47:71:f1:06:be:87:ae:ed:78:ce:dd:31:71:ec:70:99:
ca:22:78:1d:87:18:4a:2e:f0:57:4f:00:c1:9c:5a:7a:e6:43:
d3:00:1b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org