Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/X8K_Mb_SE2EgQtqguMEpojvMTPg.roa
File: X8K_Mb_SE2EgQtqguMEpojvMTPg.roa (raw, json)
Hash identifier: ob7yyaCJm8vK9yYx5csGqFat9hFY1WFyhD7O0hXRWFs=
Subject key identifier: 5F:C2:BF:31:BF:D2:13:61:20:42:DA:A0:B8:C1:29:A2:3B:CC:4C:F8
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 01856F42C9E841C6C677627EB64D590264CE
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/X8K_Mb_SE2EgQtqguMEpojvMTPg.roa
Signing time: Sun 01 Jan 2023 21:35:25 +0000
ROA not before: Sun 01 Jan 2023 21:35:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48806
IP address blocks: 193.39.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:c9:e8:41:c6:c6:77:62:7e:b6:4d:59:02:64:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 21:35:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fc2bf31bfd213612042daa0b8c129a23bcc4cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:27:b5:d1:c0:da:2a:1d:1a:2a:dd:10:1f:b0:
12:86:67:08:18:2f:fc:69:89:55:e1:00:23:3c:f8:
96:71:64:78:91:65:73:fc:df:c5:7c:21:3f:ec:0c:
8e:b7:43:c9:fe:9d:63:b6:97:ae:6f:66:86:af:14:
62:06:7d:10:16:1c:71:8a:68:d2:27:54:70:23:04:
b6:59:5d:ef:ed:b5:1f:f9:69:b2:b4:4c:7a:ee:63:
db:65:1a:bd:ef:a5:28:98:9e:5d:97:ea:86:bc:ab:
f3:27:fe:3b:02:59:3a:b7:5f:87:4e:f0:26:b0:8a:
c3:dd:dc:64:c0:3e:10:bd:b9:5a:be:23:ab:96:69:
56:70:c6:71:11:df:ba:7b:55:88:47:44:ca:1b:d2:
13:ab:71:89:f7:a7:b9:1a:72:83:31:bc:75:84:71:
a6:dd:e1:64:c7:66:a1:59:21:21:e3:43:28:63:86:
1c:b7:c0:af:cb:d1:a6:b1:0a:e3:2e:ad:45:4f:3b:
b4:57:44:02:3d:a2:70:b4:53:87:d2:b6:a8:03:6a:
d6:12:46:b0:80:45:1d:d1:e3:d4:a3:dc:4b:84:06:
99:39:1b:d5:57:07:9e:ce:7f:0c:2a:aa:95:a3:37:
0b:da:49:87:81:3b:ea:00:1a:cd:1d:46:94:75:39:
25:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C2:BF:31:BF:D2:13:61:20:42:DA:A0:B8:C1:29:A2:3B:CC:4C:F8
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/X8K_Mb_SE2EgQtqguMEpojvMTPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.215.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:14:ef:85:6c:5f:7f:66:d3:ef:01:35:1a:cd:27:4f:18:c6:
43:be:52:9c:c5:2c:61:ce:7e:00:b7:8f:43:12:f0:39:6f:fe:
e2:70:19:f5:6b:df:85:e2:7d:df:f3:1f:3f:4f:3f:45:96:02:
77:e4:f5:56:4c:b3:0b:54:d2:4f:32:2b:07:d3:63:71:df:f0:
60:df:20:78:64:00:40:b4:5c:e1:3f:da:72:f4:e3:0c:0e:ed:
b9:a0:1f:f9:88:53:d1:12:3f:2d:4d:7b:60:05:88:35:91:b3:
cf:ee:9c:e0:83:45:e1:c5:c1:a6:51:24:cc:21:00:eb:96:98:
1e:bb:a1:f1:3c:cc:d2:06:d8:c7:1b:d7:16:48:c9:68:a2:7f:
0f:ce:18:46:43:53:92:0b:01:7d:92:a7:42:fb:48:a3:07:e2:
04:44:e2:74:bd:8b:d4:ad:39:79:ee:45:19:09:30:68:be:08:
70:35:2b:6e:cc:a2:f5:9f:9b:f1:30:05:3f:70:25:a5:72:46:
1c:79:0c:6d:8a:f6:4d:58:2e:0a:42:0c:cf:ae:6c:de:fb:61:
e5:4a:2c:92:dc:b4:de:5d:da:af:aa:9d:06:32:54:ee:f5:95:
c2:1a:b7:ed:ce:04:7f:49:d5:a7:c6:02:71:47:92:d4:c6:f2:
b3:8e:fc:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:58 2024 by rpki-client on console-ams.rpki-client.org