Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Xgy-389d_DBhHkZKzWnhnGXlW80.roa
File: Xgy-389d_DBhHkZKzWnhnGXlW80.roa (raw, json)
Hash identifier: h9DQcWYbUxmHToXDMksTBc6qVV4E2Zn3GEe+AsFsgYc=
Subject key identifier: 5E:0C:BE:DF:CF:5D:FC:30:61:1E:46:4A:CD:69:E1:9C:65:E5:5B:CD
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018EA8FBC51E3B90985DBFE2B2574F0CC859
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Xgy-389d_DBhHkZKzWnhnGXlW80.roa
Signing time: Thu 04 Apr 2024 12:00:56 +0000
ROA not before: Thu 04 Apr 2024 12:00:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211557
IP address blocks: 46.38.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 12:15:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a8:fb:c5:1e:3b:90:98:5d:bf:e2:b2:57:4f:0c:c8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Apr 4 12:00:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e0cbedfcf5dfc30611e464acd69e19c65e55bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b8:c8:01:e4:47:af:9f:61:ce:6c:bf:bd:70:
55:96:fe:ff:e6:3b:ca:37:47:a1:93:ad:38:a3:79:
7d:cc:94:11:d4:aa:d1:ed:27:13:d4:cf:c9:a3:54:
7f:18:d6:36:21:87:4b:a7:75:3d:bb:9a:9e:dc:22:
9f:bc:4e:ed:10:74:1e:ff:83:a3:e6:af:db:6c:df:
4b:58:3b:11:bc:a7:0f:4c:41:75:1a:00:3e:95:af:
3f:77:71:0e:be:79:d1:8b:4d:61:bd:90:67:67:6e:
e9:ca:0b:a6:72:a8:3e:a2:6b:f7:43:85:7b:74:28:
cb:ca:47:15:ec:25:85:de:be:ca:4e:c7:62:4c:0c:
15:d5:95:32:a5:42:53:13:93:db:4f:db:46:c2:c0:
2f:45:2d:96:a7:46:fc:3c:1c:cb:22:a1:ee:8c:21:
8f:cd:8c:63:62:3b:18:ea:86:f0:84:7a:bf:5a:a3:
58:32:e7:a3:ed:4d:43:c6:26:0e:54:3e:09:e7:80:
51:b3:47:28:fb:a2:e7:40:98:50:b2:90:78:e7:84:
e4:3a:42:8e:e9:ce:37:d3:d8:89:81:e7:54:6b:fc:
c9:c5:d4:aa:e0:07:ea:41:13:ac:9f:3b:ac:ea:fc:
79:ee:aa:bd:f5:e6:71:09:24:d2:0a:e1:ae:71:c4:
0a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0C:BE:DF:CF:5D:FC:30:61:1E:46:4A:CD:69:E1:9C:65:E5:5B:CD
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Xgy-389d_DBhHkZKzWnhnGXlW80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:89:0a:ce:1f:9c:55:ca:d1:51:10:5b:a8:f3:b2:d0:45:5f:
29:ba:2b:d3:39:e7:d4:f7:be:bd:df:a3:ab:4b:18:a3:cb:4f:
f0:bf:8c:f8:0b:2e:fd:1e:e4:be:e7:f5:6a:73:91:d6:1c:e8:
51:e1:d5:da:ce:9c:b2:61:56:f2:1b:d8:18:45:89:10:a2:30:
02:25:8a:06:62:fc:34:70:05:de:61:14:86:4b:4b:4e:22:91:
c6:8b:54:a3:8c:84:ab:86:85:13:c8:74:aa:af:d0:15:90:5c:
14:29:78:dc:e4:ff:cb:3f:76:96:14:fa:ae:e0:66:91:b1:8a:
03:33:33:74:2c:3c:a7:51:f1:b9:71:2f:19:d0:82:80:41:80:
f4:1e:a2:ce:b0:54:da:ed:71:9d:23:d1:cb:d3:af:6e:61:47:
bc:d5:6f:61:80:58:c6:62:a7:30:14:da:70:3b:70:83:cf:54:
2c:fb:eb:fe:8a:50:42:11:ca:29:9b:47:06:66:bb:89:e2:c0:
73:07:75:cb:00:c4:21:72:68:bf:7f:dc:fa:01:0b:52:4d:f0:
76:d6:a9:e4:ca:3f:4d:79:c5:d6:6f:d5:39:8c:7a:f6:4c:d4:
16:52:2b:b2:ee:83:59:94:c9:03:fd:22:83:bf:7f:96:2d:c5:
f4:d1:61:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:06 2024 by rpki-client on console-ams.rpki-client.org