Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xhiqcoXm0VdbwtoG2A3wzt8GvEA.roa
File: xhiqcoXm0VdbwtoG2A3wzt8GvEA.roa (raw, json)
Hash identifier: B/UnO/DQqloLzptfV3ez3kkUdJixOj6mXOTeCqzwIk0=
Subject key identifier: C6:18:AA:72:85:E6:D1:57:5B:C2:DA:06:D8:0D:F0:CE:DF:06:BC:40
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01862AE1DC322C739689FCB8464D92B740DA
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xhiqcoXm0VdbwtoG2A3wzt8GvEA.roa
Signing time: Tue 07 Feb 2023 07:58:10 +0000
ROA not before: Tue 07 Feb 2023 07:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 45.131.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 09 Feb 2023 17:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2a:e1:dc:32:2c:73:96:89:fc:b8:46:4d:92:b7:40:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Feb 7 07:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c618aa7285e6d1575bc2da06d80df0cedf06bc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a4:9e:2c:a5:88:a1:2c:a8:35:c9:a1:88:db:
90:a8:23:6b:9c:f5:f7:18:35:af:dc:e4:9d:61:74:
20:27:da:e7:5d:99:34:fb:6f:56:ed:b4:5e:55:89:
fe:2b:0b:b5:43:9c:45:01:b5:67:1f:7f:4a:ae:af:
10:af:fa:79:37:91:31:ba:63:14:2d:e7:64:d4:e7:
fd:b3:65:7a:f6:d1:9f:18:d3:77:f7:6c:43:eb:a4:
64:19:f9:40:2a:e8:62:ae:f5:6e:fc:8f:58:07:b0:
4f:6f:55:0d:e7:22:97:06:ef:2c:58:b7:5c:10:86:
b4:f6:b7:72:71:52:58:5f:ce:d2:21:02:52:d2:54:
16:05:7b:7c:7c:82:98:92:ea:25:46:32:5c:fe:59:
0b:77:c8:a2:91:99:38:ce:eb:4a:17:1d:47:d2:e6:
58:e8:c5:f8:c2:43:37:14:1a:15:34:6f:22:dc:18:
22:85:20:9f:9f:60:84:27:cb:85:90:d4:ad:cb:98:
9e:81:55:3b:fa:04:63:5f:dd:e4:00:b0:90:c9:b9:
3b:64:13:65:6a:65:d3:7d:af:cd:6b:ce:a4:06:59:
72:e5:11:34:e3:dd:d8:2d:d1:e7:1b:5a:77:9a:f9:
a6:87:fd:2a:c6:57:3f:31:77:9e:e6:87:ff:23:d9:
c3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:18:AA:72:85:E6:D1:57:5B:C2:DA:06:D8:0D:F0:CE:DF:06:BC:40
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xhiqcoXm0VdbwtoG2A3wzt8GvEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.184.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:ab:06:7a:41:c4:34:ca:90:99:22:07:27:2b:99:54:b1:07:
35:e1:f3:2d:aa:c3:36:f6:15:94:e2:f2:4c:a9:6b:2c:32:23:
b5:d5:2d:cc:4d:be:e8:ab:5c:6b:7c:90:a3:cf:a7:16:25:8b:
e1:6f:37:86:49:35:0c:8b:35:bf:61:71:9f:50:67:72:9c:ea:
c0:d7:5c:b7:5a:98:75:af:16:64:1a:ff:d2:c5:e7:76:a1:67:
5a:84:80:77:97:f8:28:b5:b4:d0:65:31:90:a5:5d:72:c7:91:
71:72:69:49:28:e3:11:7f:54:62:8b:11:2a:de:7c:19:07:d1:
ca:33:b9:ea:1a:fd:77:ce:8d:07:35:53:33:c7:d1:48:df:8f:
52:6c:50:e1:8f:b2:80:88:24:2e:4c:86:eb:4d:91:4b:31:88:
9a:cc:ef:b7:e8:d7:27:bc:83:f9:a9:33:88:41:36:89:1d:fc:
fd:da:5a:b4:94:c4:13:ac:34:e9:35:21:94:2a:6c:1d:ef:42:
47:05:00:08:74:07:05:73:da:4a:bb:d2:f6:88:64:90:26:0c:
1f:1c:c8:3b:c0:4d:d0:48:4f:8c:7e:2c:3c:15:c2:74:95:c0:
67:ab:b7:19:d2:f7:39:66:13:af:72:b3:4d:2f:ef:8b:33:99:
67:64:8c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:40 2024 by rpki-client on console-fra.rpki-client.org