Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/xtbiPHyQ0raesBFDR7FB-uQspCI.roa
File: xtbiPHyQ0raesBFDR7FB-uQspCI.roa (raw, json)
Hash identifier: nv0FHw4U8ro7uvPdEYDvww0wFlwtYe0jVS1ZRZPMh4k=
Subject key identifier: C6:D6:E2:3C:7C:90:D2:B6:9E:B0:11:43:47:B1:41:FA:E4:2C:A4:22
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 01874B3943205B40D7E9C3CFF32037B896E6
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/xtbiPHyQ0raesBFDR7FB-uQspCI.roa
Signing time: Tue 04 Apr 2023 07:44:16 +0000
ROA not before: Tue 04 Apr 2023 07:44:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210791
IP address blocks: 78.136.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4b:39:43:20:5b:40:d7:e9:c3:cf:f3:20:37:b8:96:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Apr 4 07:44:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6d6e23c7c90d2b69eb0114347b141fae42ca422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:37:f8:98:b4:1f:f3:6d:9b:73:a8:9f:78:a6:
15:2e:db:77:d1:46:12:fd:75:11:70:3b:d8:5e:50:
c3:9f:3c:22:e1:88:2a:66:80:2d:e6:62:03:ca:e6:
fd:9f:ac:e2:40:80:a1:11:fe:23:a7:d4:9e:a4:f4:
7d:59:54:46:79:dc:ea:ff:83:ed:e1:31:b8:86:d6:
aa:a6:b1:5e:59:6a:c0:29:d3:fe:a6:e7:02:eb:34:
54:61:45:25:1d:8d:28:ec:2c:f7:65:62:6d:5e:e4:
59:70:68:db:d4:96:76:94:48:e2:2b:09:26:2b:53:
b2:0c:11:4e:7a:88:69:26:9d:8d:60:47:88:05:c9:
a7:8f:e8:46:82:36:e0:c6:57:e3:bb:f0:5a:85:be:
38:40:ea:eb:7b:7b:a3:71:3f:fc:1d:9b:e2:b5:76:
59:64:e6:30:98:13:79:2e:b1:18:0f:3a:7d:3e:33:
46:7d:09:8f:66:4c:57:cf:b6:d4:13:2f:14:58:ce:
15:d6:9d:da:81:5b:02:bd:51:6c:26:e6:9d:03:36:
27:8c:50:16:6a:7a:d9:be:61:5d:94:cd:fc:a0:30:
9b:5b:60:a9:67:42:79:f7:81:0f:4b:b9:64:32:ed:
76:29:a2:3f:9c:67:b4:37:10:23:2b:18:50:5c:e7:
3f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D6:E2:3C:7C:90:D2:B6:9E:B0:11:43:47:B1:41:FA:E4:2C:A4:22
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/xtbiPHyQ0raesBFDR7FB-uQspCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.110.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:2b:64:05:2e:56:88:16:d5:c1:91:ed:33:26:e2:54:f2:93:
d5:7f:db:05:5b:ab:26:8b:f3:8a:7f:bf:bf:33:03:43:5d:81:
31:bb:dc:8c:01:5b:e5:21:cd:0d:94:f8:03:53:2a:a8:97:3e:
0a:ed:c1:d8:30:9d:c5:79:c0:a6:c2:30:0a:67:75:b4:03:31:
bc:ef:bd:fe:d2:eb:ae:34:7c:b7:bb:ba:c2:11:cc:c2:82:59:
f5:e7:98:37:84:b9:08:70:d5:20:3c:d7:9a:77:77:ae:30:e6:
22:4d:b0:59:4e:79:b7:75:6c:0b:b0:2f:93:2b:7d:b4:8a:04:
65:c4:a1:df:77:cb:bc:a2:ab:f4:c1:b7:8f:57:28:dc:79:4c:
ab:25:3f:ff:f0:87:0e:2e:9d:49:bc:92:f8:69:19:1d:23:7d:
2b:ea:e8:7e:54:38:93:3e:89:20:ba:64:6d:8d:e2:04:83:d4:
a1:9f:a3:eb:35:bf:19:00:91:a0:47:29:7c:0e:05:de:37:4a:
73:f1:61:e8:b9:eb:24:1a:84:ac:fd:16:44:44:b6:c5:1d:78:
3a:60:8c:fa:88:f7:47:2b:00:92:c8:0e:5d:4b:b3:44:c6:83:
46:04:cc:8e:83:51:f4:3e:e7:e9:8d:da:1a:bc:0d:e9:82:77:
42:06:7f:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org