Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/XwII4GlkbPfiBULTJUoUtZAUSRs.roa
File: XwII4GlkbPfiBULTJUoUtZAUSRs.roa (raw, json)
Hash identifier: bxiIGXwkOiUtxJaXFRYGYzAWdSqe4koN4Qlja4j0PVM=
Subject key identifier: 5F:02:08:E0:69:64:6C:F7:E2:05:42:D3:25:4A:14:B5:90:14:49:1B
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0191D7BCEEBA752AE08A0398D4CB04EBFC41
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/XwII4GlkbPfiBULTJUoUtZAUSRs.roa
Signing time: Mon 09 Sep 2024 17:02:48 +0000
ROA not before: Mon 09 Sep 2024 17:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57604
IP address blocks: 93.185.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 14:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:bc:ee:ba:75:2a:e0:8a:03:98:d4:cb:04:eb:fc:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Sep 9 17:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f0208e069646cf7e20542d3254a14b59014491b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bb:cf:65:d7:a8:00:9c:50:3f:5a:05:1e:2f:
97:52:80:52:9b:ff:fd:99:2e:50:ac:1a:36:dd:63:
e6:7f:37:61:e4:38:e0:cc:38:57:b0:91:5f:be:b8:
28:be:5f:04:72:6a:ce:f7:28:10:95:ee:b2:fc:60:
bd:32:d1:8e:46:f4:04:0e:10:67:ce:e7:96:b6:8a:
61:44:2b:d0:0a:63:7c:43:eb:23:cb:5c:0a:da:59:
8e:c0:f2:02:e6:b4:a5:60:9b:35:ba:67:b8:92:6c:
f3:6a:e9:15:7f:b4:0f:41:aa:23:15:5a:e8:41:53:
4d:a6:34:28:e0:41:19:34:f7:0d:22:67:b7:81:23:
59:69:f6:21:54:04:d0:8d:11:7d:d0:37:50:25:9e:
f1:fe:d9:7a:b2:07:82:25:f6:d6:76:9e:ce:9e:9d:
40:57:6a:6f:a7:ad:ca:83:5e:5c:db:f2:9e:76:5b:
0d:d0:c6:3c:1c:21:43:72:4c:1f:bd:d3:5a:d1:31:
bc:05:d0:48:36:50:c3:a7:4c:6d:ac:e6:9e:12:c7:
d3:95:c7:77:37:be:5f:fa:6b:b6:65:81:6b:3f:7b:
f5:e5:11:c1:c6:8d:aa:f2:41:37:75:e1:49:2b:39:
7c:2a:9e:52:23:47:e4:4b:27:8e:2c:e2:76:ec:ce:
23:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:02:08:E0:69:64:6C:F7:E2:05:42:D3:25:4A:14:B5:90:14:49:1B
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/XwII4GlkbPfiBULTJUoUtZAUSRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.165.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:11:5f:54:07:23:ae:e8:cd:25:bd:2e:21:9c:84:27:b0:60:
bc:2e:db:6d:cf:fe:f5:98:b1:d2:45:26:50:dd:92:73:b5:f6:
6d:f7:ac:30:6b:6c:90:ec:96:27:ff:76:bb:01:f1:45:92:64:
6f:4f:b9:0a:a4:b9:a9:c7:5b:ee:46:70:b1:fe:b2:76:bc:46:
b1:0d:43:3f:89:e1:20:11:cd:b8:a3:cc:72:99:1d:db:a0:60:
ad:89:3d:a6:b8:5c:bf:5e:7a:2d:e7:53:15:f0:70:da:0b:d0:
e2:fe:e4:0f:7e:c1:da:bb:31:4a:f9:e7:23:4b:fe:a4:8e:bb:
ad:21:2c:38:ab:5a:c9:3c:08:a2:68:00:29:9d:c8:a1:b0:ea:
3f:f4:34:bb:14:ab:42:d7:41:ee:2c:b9:49:a7:c6:bb:2d:00:
20:f3:96:0a:f9:d2:26:d2:0e:e5:24:c6:b2:1a:fa:a3:a1:35:
19:f5:87:43:5d:ce:f7:d4:44:39:ab:41:3b:1e:a6:65:cf:99:
b8:42:f6:14:59:8d:b7:63:f6:8a:31:fe:30:2b:11:00:43:fe:
d9:e6:e6:86:aa:a9:98:16:d2:d9:80:98:c8:a8:dc:c9:46:f3:
08:01:43:23:c1:f5:ad:46:e2:d4:bf:bf:80:bd:5b:d8:a8:86:
50:36:f8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 17:40:32 2024 by rpki-client on console-fra.rpki-client.org