Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/XK8X0Fa51yAVp-0NsXwvhmMXdsc.roa
File: XK8X0Fa51yAVp-0NsXwvhmMXdsc.roa (raw, json)
Hash identifier: bszXF/ZDZxGzDd3VzEg0QIcUxQ34oTGY5PhbarYaNKE=
Subject key identifier: 5C:AF:17:D0:56:B9:D7:20:15:A7:ED:0D:B1:7C:2F:86:63:17:76:C7
Certificate issuer: /CN=1034068b5e9f7314277e2be9726c732131b1756c
Certificate serial: 0190441F35BEFB6B133FE01B0F943C3CFA81
Authority key identifier: 10:34:06:8B:5E:9F:73:14:27:7E:2B:E9:72:6C:73:21:31:B1:75:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EDQGi16fcxQnfivpcmxzITGxdWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/XK8X0Fa51yAVp-0NsXwvhmMXdsc.roa
Signing time: Sun 23 Jun 2024 08:03:34 +0000
ROA not before: Sun 23 Jun 2024 08:03:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 82.178.144.0/21 maxlen: 24
2001:1670:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Jul 2024 08:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:44:1f:35:be:fb:6b:13:3f:e0:1b:0f:94:3c:3c:fa:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1034068b5e9f7314277e2be9726c732131b1756c
Validity
Not Before: Jun 23 08:03:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5caf17d056b9d72015a7ed0db17c2f86631776c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:45:55:47:0c:4b:a1:25:49:47:28:65:9b:
cb:8d:25:85:c8:45:14:51:8c:d5:46:45:97:4f:5c:
fe:4b:b1:9c:74:b4:01:3e:ba:c8:c8:74:61:09:00:
23:5f:cd:7a:4f:05:f9:84:06:f3:68:ec:53:ca:2e:
74:7c:6e:89:c5:d3:ce:e5:8a:fe:7b:f5:c8:a7:1a:
c9:f7:98:58:4a:92:1e:23:af:88:15:7c:23:e0:9a:
f7:50:bd:bf:8a:2e:79:26:06:3d:53:f1:9a:a5:5c:
66:b6:18:d9:19:d4:3e:5c:b4:65:12:0b:d2:4d:49:
e7:79:45:3d:63:56:5d:59:69:52:c1:cf:0e:d9:6f:
f1:bb:ff:ae:08:61:6c:da:90:1d:41:05:7d:fe:dd:
72:ce:e5:de:a8:78:76:b1:92:15:03:dc:fd:83:d5:
37:81:e4:89:d1:44:03:ae:63:83:2c:5d:dd:95:02:
d2:a7:64:dc:de:c2:58:8d:7a:4e:ea:32:02:9e:99:
bc:16:45:6b:a9:cb:8d:e9:af:33:1e:b1:60:67:af:
55:bd:9c:f4:e0:17:c3:69:c0:4f:bf:b8:60:40:63:
dc:0e:dd:cc:cd:08:83:b5:80:81:5c:f5:f5:e2:3d:
98:c1:88:40:ab:6e:6e:05:cb:ca:24:f4:80:01:e0:
b4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AF:17:D0:56:B9:D7:20:15:A7:ED:0D:B1:7C:2F:86:63:17:76:C7
X509v3 Authority Key Identifier:
keyid:10:34:06:8B:5E:9F:73:14:27:7E:2B:E9:72:6C:73:21:31:B1:75:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDQGi16fcxQnfivpcmxzITGxdWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/XK8X0Fa51yAVp-0NsXwvhmMXdsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a0450e-5634-458d-918f-103d93d251ab/1/EDQGi16fcxQnfivpcmxzITGxdWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.178.144.0/21
IPv6:
2001:1670:2::/48
Signature Algorithm: sha256WithRSAEncryption
7a:c9:7b:94:cf:a0:d2:e5:6e:d4:ca:9c:16:1c:4c:01:a9:94:
9c:ac:dd:41:2b:d1:b9:0a:4b:27:6b:f8:da:51:f3:9a:04:9e:
95:24:f4:42:7d:9a:0d:ee:29:97:13:7d:fd:67:19:ac:3f:76:
72:bf:75:82:36:31:b2:43:72:83:5c:c3:9f:11:9b:79:b9:a5:
c6:6d:e9:ed:a0:00:ae:00:cd:e7:d9:7a:95:c7:b9:47:ec:a3:
e8:fd:01:59:9c:25:3b:40:a5:76:8f:35:4a:f9:b9:9c:85:0f:
c8:21:46:df:eb:60:a2:a5:69:f1:29:d8:6d:a9:ab:3c:61:09:
75:97:7e:d5:58:45:24:90:a0:a8:4a:bc:e1:bc:41:68:4b:70:
99:bd:85:6d:1b:7e:d8:ff:14:c3:91:33:03:2a:80:2b:18:bc:
50:9a:bd:c7:0d:ed:1a:b2:e3:d1:f7:c2:73:1d:9f:b3:62:a8:
41:9b:5f:0c:fc:f7:0d:94:f4:40:61:ce:87:04:a9:55:7a:89:
2c:36:54:35:ef:f0:da:c1:b1:f0:f3:bc:9f:21:de:60:7d:06:
fb:e0:81:b7:67:b3:91:57:c4:4d:a1:8b:a7:5d:31:a7:15:56:
a2:fa:fc:f9:2e:5e:db:3b:35:d0:fc:e6:a8:7b:c8:33:ef:cc:
94:b0:54:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 11:03:18 2024 by rpki-client on console-fra.rpki-client.org