Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/XKZW1qnH_bigFwPyJVQ2cknW5Pw.roa
File: XKZW1qnH_bigFwPyJVQ2cknW5Pw.roa (raw, json)
Hash identifier: OvOkWlmPu+1tgJp6qWpkFM4ftkMAzhApfd+xW8Sy6K4=
Subject key identifier: 5C:A6:56:D6:A9:C7:FD:B8:A0:17:03:F2:25:54:36:72:49:D6:E4:FC
Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Certificate serial: 018847F78952A27ACB5D8089CF0193576108
Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/XKZW1qnH_bigFwPyJVQ2cknW5Pw.roa
Signing time: Tue 23 May 2023 09:36:24 +0000
ROA not before: Tue 23 May 2023 09:36:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199287
IP address blocks: 80.76.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:f7:89:52:a2:7a:cb:5d:80:89:cf:01:93:57:61:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Validity
Not Before: May 23 09:36:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ca656d6a9c7fdb8a01703f22554367249d6e4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:65:86:98:dc:5a:99:2b:3c:75:86:41:b4:c8:
fc:09:e4:fc:c6:3d:ca:78:dd:49:7e:04:68:cf:c9:
92:89:69:af:f3:6e:8e:11:a4:b2:fb:65:84:31:e6:
96:f4:ee:f1:69:db:e4:43:cc:82:d5:50:6a:00:39:
6a:44:c5:77:30:62:c0:d6:0a:70:c4:59:e4:68:36:
4c:ea:ca:24:07:de:fc:93:e0:7a:73:96:cd:a2:25:
a6:9b:82:24:c4:2e:01:d2:bf:a3:90:27:7f:71:c0:
19:51:46:5a:a2:e8:e1:28:97:6f:96:c2:1e:34:4a:
55:34:96:6c:9c:42:6b:73:04:20:f7:7b:bb:90:8e:
25:26:36:b3:90:de:89:94:af:92:ef:9b:c0:92:b6:
b0:3e:ad:85:b0:1b:a2:f2:ec:78:f6:5d:10:f1:af:
8a:5d:7c:11:7b:a5:1f:d4:72:f6:e7:b0:f9:6c:cd:
af:9c:00:1d:34:9c:f1:54:4e:ee:8d:35:12:68:0c:
a9:c6:41:8c:9a:2c:27:c4:2e:da:65:5d:5c:00:fd:
fb:55:61:35:a0:bd:b5:96:86:6f:ac:01:22:4b:2f:
73:7e:ce:9f:36:00:2f:1b:1a:a8:49:7d:de:8c:2a:
8b:10:fe:7d:54:ca:d4:0c:9f:71:ef:56:96:52:7e:
76:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A6:56:D6:A9:C7:FD:B8:A0:17:03:F2:25:54:36:72:49:D6:E4:FC
X509v3 Authority Key Identifier:
keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/XKZW1qnH_bigFwPyJVQ2cknW5Pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.228.0/24
Signature Algorithm: sha256WithRSAEncryption
73:77:57:30:cb:89:5c:9f:ed:7c:d9:0e:1c:a1:5e:d1:89:92:
7e:e2:33:a7:0a:23:f9:f1:60:c1:f6:fb:d8:41:e2:0b:5f:15:
c8:2b:a1:9b:c9:8b:38:2c:ea:4c:ea:3a:31:7c:3b:47:ff:32:
9e:0e:f3:c4:af:81:df:ef:23:8a:3c:4b:e0:03:74:33:6b:aa:
57:d3:6d:70:3a:bb:3d:52:b7:4b:45:18:c8:1a:c1:48:03:8c:
69:ab:48:52:c7:c2:b1:84:6f:89:19:2b:c9:b2:08:03:06:14:
85:73:51:b5:71:e5:e5:a9:bb:16:c2:c5:78:10:6a:77:b2:ff:
60:4d:2b:fd:df:93:7d:15:db:86:aa:e7:0a:61:42:7f:67:58:
82:d8:23:b9:7d:f7:07:1c:cc:f6:ef:0a:c2:dc:3a:82:ed:62:
2a:65:3d:72:38:d3:29:df:ce:a7:c5:d2:a6:ea:45:54:4a:be:
d2:07:ec:65:b0:44:55:57:0f:53:6d:37:a5:05:d0:03:83:87:
c9:ac:bb:db:f4:0c:6f:0a:ce:51:49:0e:01:20:f3:22:eb:0d:
0d:f7:77:ad:46:80:01:d3:f0:b0:77:4e:76:d2:10:5e:7b:39:
ed:29:6c:e0:88:43:87:78:2a:fd:df:f3:79:a9:13:d7:cb:ba:
7e:91:8f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:32 2024 by rpki-client on console-ams.rpki-client.org