Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XbjbPP_wjOHBP-7JKWHMGbmP5y8.roa
File: XbjbPP_wjOHBP-7JKWHMGbmP5y8.roa (raw, json)
Hash identifier: RtHXUg11EXG+icqIl/hT53gapgu/rpAq4cmrY4eTGCw=
Subject key identifier: 5D:B8:DB:3C:FF:F0:8C:E1:C1:3F:EE:C9:29:61:CC:19:B9:8F:E7:2F
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0185700291A19E11E5BCEAC27B215866DFFD
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XbjbPP_wjOHBP-7JKWHMGbmP5y8.roa
Signing time: Mon 02 Jan 2023 01:04:54 +0000
ROA not before: Mon 02 Jan 2023 01:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205192
IP address blocks: 78.135.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jan 2023 11:14:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:91:a1:9e:11:e5:bc:ea:c2:7b:21:58:66:df:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5db8db3cfff08ce1c13feec92961cc19b98fe72f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ba:4d:de:1c:d1:34:25:9d:0d:39:65:bc:ea:
a6:dd:43:6f:ff:5d:59:b9:d4:85:c6:a3:e0:e6:8e:
1a:22:17:f3:75:ed:ec:3a:f9:72:ad:94:ee:10:14:
ca:fc:31:99:db:2d:75:a9:f0:ab:fe:60:c2:f5:6b:
fb:3a:12:7d:b3:4c:a0:db:cc:ac:ff:60:c5:c3:8b:
4e:1a:57:e7:ef:17:5f:95:eb:47:39:9c:e1:63:59:
ba:b2:1a:ad:7a:9d:c3:ad:4c:57:7f:27:30:f6:ab:
ae:9f:64:3d:56:af:0a:c0:05:91:6a:f2:1e:e2:87:
2c:58:a6:54:e2:4a:8c:f7:6a:d8:64:ea:8a:02:41:
09:9d:17:5b:61:94:0c:4c:52:25:ad:b4:da:9f:f1:
4b:79:bd:19:67:62:cd:6f:73:b5:74:33:51:e2:90:
c0:43:69:09:58:c2:d1:41:c5:bc:03:49:4b:eb:1b:
44:db:f7:4e:27:c9:73:cf:e3:f4:3b:77:26:93:50:
ef:5c:15:58:9b:0c:31:14:9e:b0:90:6e:c1:1d:16:
73:9a:9c:8c:b9:ea:39:53:bf:eb:d1:63:06:f4:dc:
ba:46:00:88:34:c6:7a:88:96:a3:9f:00:7d:64:d8:
f3:d9:0d:c8:fe:86:0f:a6:b2:e3:0a:31:13:f0:30:
fb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B8:DB:3C:FF:F0:8C:E1:C1:3F:EE:C9:29:61:CC:19:B9:8F:E7:2F
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XbjbPP_wjOHBP-7JKWHMGbmP5y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.106.0/24
Signature Algorithm: sha256WithRSAEncryption
59:71:43:47:97:87:6d:0a:76:95:9d:4f:a4:a0:f6:93:1f:33:
87:72:5c:c9:fb:e7:13:bb:a9:ea:e4:b9:a6:a3:8e:78:a6:b6:
54:42:eb:6a:4b:28:2e:1e:6b:12:ec:b0:00:4c:a2:63:97:36:
bf:16:b0:b2:00:d0:9a:be:51:3a:f4:9c:2a:b6:5e:10:a2:c2:
f5:b9:61:4f:f8:04:c8:10:12:01:aa:fd:e6:ef:84:20:cf:ad:
c6:6d:16:c2:be:66:68:25:7f:b4:cc:26:7d:6b:42:19:82:cc:
7c:5a:b2:f0:58:0f:2b:c2:47:c8:9a:da:77:fc:68:15:f0:65:
68:b6:69:3b:55:39:19:4e:80:21:87:31:1a:61:d1:23:d4:16:
49:dc:fe:4f:e8:10:f4:00:e1:97:9d:e3:5e:1a:f9:4d:d6:36:
70:b0:f3:a9:f9:0e:6f:bd:37:98:c5:50:63:7f:8d:f9:32:26:
c2:e8:30:3a:eb:1a:eb:5a:12:16:e4:f5:7b:a7:60:2a:1c:69:
53:1f:89:84:dd:04:0d:d0:a4:21:5b:b5:da:92:10:81:35:3e:
f9:bd:2f:92:0d:74:78:fd:28:b2:83:7d:30:4b:9c:d3:65:45:
6f:d5:af:e1:93:b3:85:b9:06:07:b5:bc:1b:e2:40:f7:0d:ed:
78:8c:83:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org