Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/xmEhM5C7hFuqdb2pOA8MbISINgk.roa
File: xmEhM5C7hFuqdb2pOA8MbISINgk.roa (raw, json)
Hash identifier: v1ZF0PRMFjK5ktaggR5rDepHA55+YKF2Dz7f/5bWbaw=
Subject key identifier: C6:61:21:33:90:BB:84:5B:AA:75:BD:A9:38:0F:0C:6C:84:88:36:09
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018CC794F306071A49577F78674D61BA7A53
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/xmEhM5C7hFuqdb2pOA8MbISINgk.roa
Signing time: Tue 02 Jan 2024 00:31:16 +0000
ROA not before: Tue 02 Jan 2024 00:31:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400175
IP address blocks: 45.141.15.0/24 maxlen: 24
93.177.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 16:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:f3:06:07:1a:49:57:7f:78:67:4d:61:ba:7a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Jan 2 00:31:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c661213390bb845baa75bda9380f0c6c84883609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:13:f9:68:d5:ad:74:30:1f:52:20:65:d5:8c:
75:01:8b:60:37:43:74:32:e8:f9:3a:63:39:37:22:
d0:f2:da:62:d8:a1:58:fc:d7:63:ac:63:3b:38:e5:
a3:96:56:86:72:c4:07:45:0b:44:af:00:fc:80:ae:
f1:48:21:d8:48:42:6b:0d:10:9c:65:60:dd:8e:5b:
e1:81:53:1e:00:84:83:79:70:4c:87:1d:d9:ba:0f:
13:55:96:f5:57:40:55:f3:90:4b:fb:52:33:f5:3e:
a4:bf:7b:5c:a5:00:a0:89:e9:77:fd:f6:08:52:f4:
97:78:b8:c6:34:ae:27:3b:da:82:fc:f6:15:9a:83:
64:f3:31:c0:a0:65:12:74:17:4b:3f:22:81:ee:b4:
3d:2b:2d:28:c3:40:c0:6d:b2:45:5d:4d:94:89:43:
d6:16:30:87:d2:d4:f9:9e:4f:05:e4:29:e0:8c:d1:
66:60:c4:d2:2c:e9:d2:20:02:30:be:7e:05:8d:c9:
44:86:b0:27:64:ff:f2:2e:12:fd:41:fd:1b:36:f7:
6c:71:29:bf:d6:8a:ff:dc:89:ae:5b:7d:66:1f:e8:
f7:06:40:79:32:24:22:76:68:ab:93:75:0a:1d:b1:
95:f6:3e:11:10:92:55:ba:b2:cd:e5:3b:c0:f5:bb:
80:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:61:21:33:90:BB:84:5B:AA:75:BD:A9:38:0F:0C:6C:84:88:36:09
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/xmEhM5C7hFuqdb2pOA8MbISINgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.15.0/24
93.177.109.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:05:b6:2d:de:ad:6f:fc:4d:b1:3a:da:5f:3a:15:b6:2c:69:
7c:48:cd:8d:b7:a7:b0:1e:4d:d4:cf:f6:a3:9c:a4:28:99:6a:
c5:d4:f8:b4:e8:c2:96:f7:1c:0b:66:15:73:92:89:12:1d:c8:
f2:09:5a:4e:1a:f9:a6:3e:a3:ca:86:8b:49:4f:0f:80:d8:a4:
b7:b0:a1:c1:8f:b5:9c:1c:0b:b4:d9:43:17:c3:93:d4:1c:06:
da:36:55:a2:14:a8:4c:1c:75:0f:91:68:15:f7:ca:29:cb:be:
3f:fe:58:47:d8:22:55:52:65:8c:a8:ce:e5:59:f4:fa:ca:7b:
3e:ee:82:00:8e:27:b9:0b:be:d7:1a:fc:fd:86:94:6b:79:e1:
05:2e:a4:6d:1b:6e:49:98:d2:6a:b8:8e:4c:51:24:0c:66:c8:
c0:6d:8f:c0:b4:a2:c8:d8:95:32:b4:39:7f:4b:c0:af:a4:ce:
18:2b:0e:3a:6e:bf:fb:57:38:d4:d7:ea:4b:18:3c:4f:a6:87:
11:a1:76:87:5d:61:76:69:35:da:8f:4d:60:1b:0a:9b:2d:06:
d9:45:ee:1e:a8:8e:1b:52:2c:a9:97:0b:4e:6b:6a:55:1b:bd:
57:84:f2:9e:ac:df:07:ce:3e:cc:3e:61:71:69:52:c6:0d:6e:
69:de:89:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 17:45:13 2024 by rpki-client on console-fra.rpki-client.org