Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XLA87Fl0dnFMO-MVVz4WS8WahFk.roa
File: XLA87Fl0dnFMO-MVVz4WS8WahFk.roa (raw, json)
Hash identifier: zdDfhGCHSX5KOQfvZF2eEAdsZ8KkM2EflwA5wvOFgHI=
Subject key identifier: 5C:B0:3C:EC:59:74:76:71:4C:3B:E3:15:57:3E:16:4B:C5:9A:84:59
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01857095824B5311380015546E16260016BE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XLA87Fl0dnFMO-MVVz4WS8WahFk.roa
Signing time: Mon 02 Jan 2023 03:45:24 +0000
ROA not before: Mon 02 Jan 2023 03:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62327
IP address blocks: 93.170.188.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:82:4b:53:11:38:00:15:54:6e:16:26:00:16:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cb03cec597476714c3be315573e164bc59a8459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:37:0d:0b:8c:88:e2:ce:75:fe:dd:01:fa:3f:
8e:38:ec:54:0f:be:e5:f9:83:5c:2f:40:34:b8:25:
b1:ef:65:00:24:69:97:e8:aa:6d:46:ad:33:d7:3b:
40:8a:30:92:d1:90:e0:ab:25:ec:76:c6:98:26:94:
e2:22:68:11:d6:d9:4f:43:18:56:6c:77:35:c8:74:
aa:5e:bb:02:c5:7c:45:aa:a0:1b:ff:8b:7b:ec:09:
f8:87:38:50:ba:51:38:fb:58:c8:b6:c5:30:a7:de:
d4:f3:33:e7:0b:dc:23:29:6a:ff:0b:65:40:69:73:
a3:19:9b:9a:f7:08:4a:97:5d:8a:a3:74:17:a7:71:
8d:df:5e:95:2d:46:79:3e:19:1d:af:63:31:3d:e7:
93:fd:31:6b:10:35:14:49:8f:49:1b:07:10:33:6b:
81:4c:55:75:73:fc:46:6c:64:77:e3:3d:34:64:76:
e1:2d:4e:44:23:23:fd:49:ae:f4:88:44:f3:6a:f5:
77:3e:f9:e9:18:3f:52:aa:32:47:f2:32:24:fe:e9:
8f:f6:6a:0c:0d:22:90:9e:90:64:cf:26:11:c3:73:
a2:d3:5a:44:a7:2f:ae:52:31:f4:38:53:b9:b2:63:
78:4a:d7:b5:13:79:68:6e:94:ac:b0:da:af:73:6e:
b6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B0:3C:EC:59:74:76:71:4C:3B:E3:15:57:3E:16:4B:C5:9A:84:59
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/XLA87Fl0dnFMO-MVVz4WS8WahFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.188.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:b1:99:12:9b:6e:93:9f:57:ef:90:9a:c5:82:6c:38:b9:af:
03:2d:30:59:47:cf:a8:c8:90:ed:8e:f7:b5:13:fb:3a:77:ec:
d6:a9:19:fc:65:ff:c6:8c:86:81:f1:7e:7c:08:06:7f:e1:c9:
45:72:a0:cc:c9:46:0a:0d:0e:48:05:12:5f:14:4a:84:4f:64:
9c:70:f5:d0:ab:21:82:0b:47:2d:32:31:c4:bb:5a:7d:ed:e7:
2e:f8:95:11:3f:6d:10:a6:1d:b1:9e:4b:25:ce:22:91:05:b0:
54:6e:50:67:44:64:39:a8:30:f6:fb:5c:d4:c2:52:7b:53:f8:
f2:fc:c3:f6:c0:67:04:45:bf:2d:d3:f1:52:d4:e9:ce:4f:2e:
46:14:ac:de:76:9a:d3:84:c5:e8:04:ba:4c:90:81:5d:87:2a:
8c:a1:43:cf:28:30:cf:08:8c:7b:6a:c0:e8:fc:3d:5c:dd:02:
1d:cc:77:76:38:dd:dc:20:5e:df:2a:3e:05:91:7d:a0:30:56:
77:1c:bb:99:85:1c:a6:cb:89:83:b0:c5:4d:e3:57:b7:7b:d5:
00:48:00:fc:a2:ee:11:8b:33:d4:f5:0a:08:21:4f:e4:69:ad:
06:e7:d4:f1:b4:e2:11:f0:73:25:01:23:e6:c6:7f:3a:db:0d:
b5:61:9f:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlYJLUxE4ABVUbhYmABa+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Y2IwM2NlYzU5NzQ3NjcxNGMzYmUzMTU1NzNlMTY0YmM1OWE4NDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jcNC4yI4s51/t0B+j+OOOxUD77l
+YNcL0A0uCWx72UAJGmX6KptRq0z1ztAijCS0ZDgqyXsdsaYJpTiImgR1tlPQxhW
bHc1yHSqXrsCxXxFqqAb/4t77An4hzhQulE4+1jItsUwp97U8zPnC9wjKWr/C2VA
aXOjGZua9whKl12Ko3QXp3GN316VLUZ5Phkdr2MxPeeT/TFrEDUUSY9JGwcQM2uB
TFV1c/xGbGR34z00ZHbhLU5EIyP9Sa70iETzavV3PvnpGD9SqjJH8jIk/umP9moM
DSKQnpBkzyYRw3Oi01pEpy+uUjH0OFO5smN4Ste1E3lobpSssNqvc262rwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFywPOxZdHZxTDvjFVc+FkvFmoRZMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvWExBODdGbDBkbkZNTy1NVlZ6NFdTOFdhaEZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXaq8MA0G
CSqGSIb3DQEBCwUAA4IBAQCxsZkSm26Tn1fvkJrFgmw4ua8DLTBZR8+oyJDtjve1
E/s6d+zWqRn8Zf/GjIaB8X58CAZ/4clFcqDMyUYKDQ5IBRJfFEqET2SccPXQqyGC
C0ctMjHEu1p97ecu+JURP20Qph2xnkslziKRBbBUblBnRGQ5qDD2+1zUwlJ7U/jy
/MP2wGcERb8t0/FS1OnOTy5GFKzedprThMXoBLpMkIFdhyqMoUPPKDDPCIx7asDo
/D1c3QIdzHd2ON3cIF7fKj4FkX2gMFZ3HLuZhRymy4mDsMVN41e3e9UASAD8ou4R
izPU9QoIIU/kaa0G59TxtOIR8HMlASPmxn862w21YZ8w
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:00 2024 by rpki-client on console-ams.rpki-client.org