Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/Xeq56k8svU2idQbfUjT08Kl0ttI.roa
File: Xeq56k8svU2idQbfUjT08Kl0ttI.roa (raw, json)
Hash identifier: CXFIItWnoSbZ0JhOUx42hjsLqq3QG8gVKXuSvVDoS0s=
Subject key identifier: 5D:EA:B9:EA:4F:2C:BD:4D:A2:75:06:DF:52:34:F4:F0:A9:74:B6:D2
Certificate issuer: /CN=e4baad9f5f69bad910075f8e1d805eb41d0df7cb
Certificate serial: 018571153AC8ED27A93E556AF01A92E59A57
Authority key identifier: E4:BA:AD:9F:5F:69:BA:D9:10:07:5F:8E:1D:80:5E:B4:1D:0D:F7:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Lqtn19putkQB1-OHYBetB0N98s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/Xeq56k8svU2idQbfUjT08Kl0ttI.roa
Signing time: Mon 02 Jan 2023 06:04:54 +0000
ROA not before: Mon 02 Jan 2023 06:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35224
IP address blocks: 45.93.72.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:3a:c8:ed:27:a9:3e:55:6a:f0:1a:92:e5:9a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4baad9f5f69bad910075f8e1d805eb41d0df7cb
Validity
Not Before: Jan 2 06:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5deab9ea4f2cbd4da27506df5234f4f0a974b6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:58:7e:14:67:8e:6d:e8:10:d2:30:59:cd:db:
5a:70:70:18:1d:f6:90:01:eb:36:b2:4c:d3:4f:2f:
f6:41:d4:9e:19:ca:fe:98:7c:ac:f4:df:d1:34:a2:
f3:cf:85:b9:26:5a:50:3e:9c:ee:2f:29:7f:9b:67:
0f:24:15:18:4b:94:54:a1:36:f0:d3:f1:cd:3f:08:
b1:ff:33:bd:a8:83:4d:2c:be:79:8c:46:ed:49:1f:
41:be:26:ea:c0:77:e8:4d:f5:21:dc:27:2e:88:79:
8a:5e:76:94:0f:84:59:90:2f:33:4b:c2:c1:86:36:
91:e7:db:33:28:f5:49:39:ad:7b:68:61:56:cc:51:
3f:47:d9:c9:c7:bf:d5:b0:ac:3d:1c:03:9e:5d:99:
7f:a3:e9:1d:5d:34:c3:e2:79:05:db:ac:b2:20:e7:
7f:da:23:c0:44:30:84:25:4a:b0:15:cb:a7:6f:2e:
84:8c:13:1e:53:79:2a:1c:f2:97:5a:cc:b0:cc:e3:
7f:07:58:91:10:94:59:f5:ba:39:85:e0:63:98:7d:
a3:e1:83:21:e6:90:5e:20:18:8e:3b:ff:d0:19:17:
e4:22:e4:79:5f:d5:64:78:f9:52:48:fa:9c:7c:bb:
a0:ca:f5:39:41:ce:38:e7:56:89:88:98:3b:3b:00:
70:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EA:B9:EA:4F:2C:BD:4D:A2:75:06:DF:52:34:F4:F0:A9:74:B6:D2
X509v3 Authority Key Identifier:
keyid:E4:BA:AD:9F:5F:69:BA:D9:10:07:5F:8E:1D:80:5E:B4:1D:0D:F7:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Lqtn19putkQB1-OHYBetB0N98s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/Xeq56k8svU2idQbfUjT08Kl0ttI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/5Lqtn19putkQB1-OHYBetB0N98s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.72.0/22
Signature Algorithm: sha256WithRSAEncryption
68:fd:e0:e0:49:8f:16:58:ff:46:6f:77:49:7c:28:89:7e:35:
64:4a:d6:4a:c4:a9:a8:36:36:9b:7e:c0:98:6d:07:0c:fa:c3:
67:17:86:9c:46:83:8a:46:28:a4:e4:21:9c:a9:12:6e:06:08:
5a:18:44:8f:b3:2d:e8:10:3f:6b:4d:a4:c4:63:ec:53:04:22:
c6:47:26:60:c5:4f:f8:32:9a:b1:c8:f7:f3:51:95:10:8b:da:
71:93:39:4f:c9:b8:7a:5b:12:a7:8a:da:21:22:8a:8f:37:7d:
b5:57:87:c2:b3:90:ce:c3:3a:68:88:fa:12:8a:63:6d:7f:7c:
0b:a1:8a:b4:0e:44:cc:c3:e7:d1:99:18:3a:07:71:a0:b8:59:
0f:a0:ab:9f:42:47:80:65:bf:92:62:1e:b7:ae:e2:14:eb:97:
64:14:9a:8a:85:18:fa:20:ab:7c:7f:93:18:9b:fd:38:21:15:
a2:fd:db:42:0a:69:f8:11:78:88:53:5b:bd:7a:f5:b8:61:f8:
1c:72:ce:73:c7:28:cc:84:08:50:4d:20:c5:66:e9:9f:df:63:
8d:da:e0:01:78:55:e8:55:ff:82:39:07:22:9d:83:b8:e9:1c:
9e:63:d6:b4:46:18:32:7c:ad:69:cb:0c:1b:41:a8:48:90:4a:
24:f1:11:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:22 2024 by rpki-client on console-fra.rpki-client.org