Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xbt2aZiWPF-ftJX7uO8dX01ANC8.roa
File: Xbt2aZiWPF-ftJX7uO8dX01ANC8.roa (raw, json)
Hash identifier: j9NbVRkltNR9m+BnasY+qTKOlryeaKcBfA+aaL4AAjs=
Subject key identifier: 5D:BB:76:69:98:96:3C:5F:9F:B4:95:FB:B8:EF:1D:5F:4D:40:34:2F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 01863C4F34F8672B63F45177CF559356FCD7
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xbt2aZiWPF-ftJX7uO8dX01ANC8.roa
Signing time: Fri 10 Feb 2023 17:11:09 +0000
ROA not before: Fri 10 Feb 2023 17:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61344
IP address blocks: 93.170.98.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3c:4f:34:f8:67:2b:63:f4:51:77:cf:55:93:56:fc:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 10 17:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dbb766998963c5f9fb495fbb8ef1d5f4d40342f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f8:5f:ae:e9:83:9d:61:da:a3:aa:50:a3:bc:
eb:b7:c1:8f:dc:c2:78:69:31:b6:93:70:e6:bc:b1:
e3:26:3e:ba:5a:b9:6a:48:15:ba:7d:84:1e:3d:81:
5e:87:88:ce:15:29:fc:d6:30:eb:55:e3:94:68:67:
58:cb:21:de:35:8b:68:cb:1b:d1:94:a3:8f:b5:1c:
82:2c:52:e8:81:62:b3:69:4d:7f:24:37:ce:39:c4:
2c:e7:4e:6f:86:16:92:9a:4a:1f:15:c3:1b:2a:88:
fe:2b:07:76:f6:80:59:6a:6a:d0:84:ec:94:97:db:
7f:85:4a:74:b0:7a:5b:73:d9:96:a1:08:0a:59:4c:
75:e7:47:b7:d9:f7:a7:90:a9:9c:d6:4d:25:2b:e1:
3f:3f:77:18:7f:ec:e0:e5:46:4d:0f:e3:74:d8:b1:
7b:99:59:9c:0a:50:e3:29:0c:6c:03:3d:bd:96:7e:
38:60:ba:32:74:0d:32:24:0c:69:55:4a:89:3c:49:
0c:8b:f1:ea:25:62:1f:ac:61:ce:eb:72:3e:2b:1c:
e8:93:d0:a1:a0:55:1c:fa:41:57:bb:a7:fa:5b:33:
b6:4f:a7:ee:f6:b4:07:91:b0:c2:47:39:64:0f:f5:
10:4c:cf:6f:28:ce:f8:7f:3c:13:bc:08:b0:90:3d:
9a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BB:76:69:98:96:3C:5F:9F:B4:95:FB:B8:EF:1D:5F:4D:40:34:2F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Xbt2aZiWPF-ftJX7uO8dX01ANC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.98.0/23
Signature Algorithm: sha256WithRSAEncryption
11:4c:c9:a7:3f:32:50:7a:a6:0a:96:79:63:de:7c:a2:28:1b:
07:d0:d6:1b:b5:72:12:70:a5:7c:1b:a3:98:df:bf:c6:8a:8f:
13:32:08:a8:a1:85:84:53:f1:42:a1:4d:47:e6:9a:3c:9d:93:
45:c7:69:98:c4:dc:c4:5d:11:93:27:c3:ac:86:98:94:00:7c:
0b:42:5e:a8:c2:90:07:5e:ee:dd:c7:6d:50:aa:59:d3:8c:ea:
c2:47:13:cd:48:fb:df:a7:b5:65:d5:e8:8b:38:b9:df:8f:f4:
39:f6:71:c6:b0:fa:48:51:36:f6:51:d8:47:8f:4f:c6:10:b2:
71:3d:62:f1:cb:60:55:b5:f8:8b:db:57:84:41:57:76:c6:9c:
d4:17:3b:16:e9:0a:0b:fd:1e:6d:7c:e6:cb:41:91:d0:88:82:
26:ca:57:9a:8b:66:27:a6:c8:73:58:72:5a:3f:4a:22:cc:a5:
d2:01:ff:3d:b5:f5:4e:f1:cc:47:81:2d:ee:29:ba:d2:09:4e:
71:ee:d9:a7:e4:71:75:a6:eb:1a:a6:6d:e0:fa:51:88:14:54:
98:47:21:01:ec:8f:46:2c:c6:58:fb:34:e6:69:80:b4:e1:5f:
2a:0e:24:1f:83:e2:9c:3e:d4:d3:81:0a:c0:f1:e1:b8:5b:99:
22:0c:9c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:37 2024 by rpki-client on console-fra.rpki-client.org