Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Xw4VljSsiAAVXjBoTUzvwo1fRDs.roa
File: Xw4VljSsiAAVXjBoTUzvwo1fRDs.roa (raw, json)
Hash identifier: 1eJa84/dboUVdVQd0nHizqCmigyPRaWtl+WhzAimh+I=
Subject key identifier: 5F:0E:15:96:34:AC:88:00:15:5E:30:68:4D:4C:EF:C2:8D:5F:44:3B
Certificate issuer: /CN=45ad6f1f1b730c7a016b562c12b31becc4b3e1fa
Certificate serial: 018CC7934A187FBE06E6F532B53D9DA0115B
Authority key identifier: 45:AD:6F:1F:1B:73:0C:7A:01:6B:56:2C:12:B3:1B:EC:C4:B3:E1:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ra1vHxtzDHoBa1YsErMb7MSz4fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Xw4VljSsiAAVXjBoTUzvwo1fRDs.roa
Signing time: Tue 02 Jan 2024 00:29:27 +0000
ROA not before: Tue 02 Jan 2024 00:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198218
IP address blocks: 82.205.202.0/23 maxlen: 24
82.205.204.0/22 maxlen: 24
82.205.208.0/20 maxlen: 24
82.205.224.0/19 maxlen: 24
82.205.128.0/22 maxlen: 24
82.205.132.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 04:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:4a:18:7f:be:06:e6:f5:32:b5:3d:9d:a0:11:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45ad6f1f1b730c7a016b562c12b31becc4b3e1fa
Validity
Not Before: Jan 2 00:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f0e159634ac8800155e30684d4cefc28d5f443b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:bb:c9:91:2f:98:8f:19:c1:75:ad:43:04:
34:76:f8:a0:93:77:7e:f0:00:5b:a4:ab:69:41:28:
33:42:85:fe:25:75:cc:ea:9b:fb:dc:63:f1:e1:f7:
32:6f:a1:8d:1c:3a:46:24:76:e1:49:b3:eb:59:bb:
36:ba:06:40:28:82:dc:71:54:a2:b5:67:96:af:01:
23:6b:09:27:84:d5:cd:dd:51:a2:9f:ae:f9:c7:bf:
20:64:7a:9d:a1:4a:f6:34:bf:73:7b:17:76:fe:b6:
e2:63:7e:ca:6e:28:06:89:f9:04:db:f5:ab:97:0e:
3c:a3:4e:6c:6b:4e:34:fb:d9:a1:d3:52:67:c2:18:
cc:51:96:8b:f8:c0:9e:eb:49:18:d4:5a:9b:b7:1f:
a5:3d:43:4e:99:b4:73:5d:66:ec:b0:9a:e2:d1:4c:
6a:dc:05:49:c7:d9:51:13:28:22:26:e4:83:1f:30:
21:50:07:cf:e9:d4:e4:02:d7:c0:c2:0b:71:27:70:
87:b4:b0:9c:e3:af:63:e1:b3:94:51:e9:bf:e9:15:
05:59:b8:2e:87:d5:65:f8:cb:d3:f7:38:61:65:df:
b4:dd:4f:b4:b0:43:bd:43:54:b1:f7:2d:dd:58:c5:
44:b3:96:44:04:ff:49:a5:18:3d:0b:81:37:95:f3:
d4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:0E:15:96:34:AC:88:00:15:5E:30:68:4D:4C:EF:C2:8D:5F:44:3B
X509v3 Authority Key Identifier:
keyid:45:AD:6F:1F:1B:73:0C:7A:01:6B:56:2C:12:B3:1B:EC:C4:B3:E1:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ra1vHxtzDHoBa1YsErMb7MSz4fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Xw4VljSsiAAVXjBoTUzvwo1fRDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/00c03c-d207-4ec1-9dd9-32449ce6cf89/1/Ra1vHxtzDHoBa1YsErMb7MSz4fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.205.128.0-82.205.133.255
82.205.202.0-82.205.255.255
Signature Algorithm: sha256WithRSAEncryption
73:b8:25:7c:6b:71:94:3a:28:17:cb:cd:72:2f:ef:b1:55:5a:
41:fd:ef:c0:cb:a9:e2:3e:07:d9:a7:5f:9e:ba:82:99:b0:d2:
8b:8f:3e:3a:1f:1e:e4:b9:d7:91:d1:93:af:f8:c9:46:20:83:
88:40:9c:08:3e:11:70:73:3c:45:62:f5:e6:eb:9c:d3:fc:64:
a4:33:ee:08:09:e5:6b:1f:4a:9d:cf:c7:28:ed:ed:b8:e7:36:
ce:53:73:02:4d:ca:72:d6:11:00:84:4c:f9:29:36:13:aa:88:
62:91:ee:a4:5d:3c:d7:71:8c:ba:aa:fb:1b:83:3a:95:3b:77:
da:37:c9:13:a3:9a:8e:85:f6:65:8f:4e:56:48:7a:96:ce:d9:
26:6b:21:7e:2a:70:70:c4:45:8f:b4:6b:16:28:97:f7:dd:7b:
31:36:10:23:9b:de:0d:35:58:76:54:06:1c:d4:ff:e9:33:ee:
f0:96:6c:14:0c:6d:9e:5d:19:5e:16:17:b3:55:4a:95:cf:5b:
35:23:12:8f:9e:d4:ef:cd:a6:6e:01:a3:85:0c:19:f4:9a:c8:
f1:cf:21:92:45:c1:7f:8d:43:6e:0d:60:00:71:36:fc:f1:45:
d1:db:ca:c0:99:57:6a:2b:be:5b:b1:8d:aa:1e:83:b5:03:7c:
05:3b:18:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:33 2024 by rpki-client on console-ams.rpki-client.org