Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/XjnfnQDZxOCl51czKkYGgqR6dIo.roa
File: XjnfnQDZxOCl51czKkYGgqR6dIo.roa (raw, json)
Hash identifier: QIHNBKG4zeuNkFHwlgEBD8rgj61erw8SXJ45VEYP++U=
Subject key identifier: 5E:39:DF:9D:00:D9:C4:E0:A5:E7:57:33:2A:46:06:82:A4:7A:74:8A
Certificate issuer: /CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Certificate serial: 018CC80171A7A10F9E1BBB7326CF9FE61A3F
Authority key identifier: 17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/XjnfnQDZxOCl51czKkYGgqR6dIo.roa
Signing time: Tue 02 Jan 2024 02:29:46 +0000
ROA not before: Tue 02 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204383
IP address blocks: 82.208.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 17 Mar 2024 10:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:71:a7:a1:0f:9e:1b:bb:73:26:cf:9f:e6:1a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Validity
Not Before: Jan 2 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e39df9d00d9c4e0a5e757332a460682a47a748a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:e2:12:06:e7:59:ce:2b:8c:bb:12:ea:8d:
dc:54:74:e7:6d:e4:47:db:e3:4a:9f:f8:94:67:85:
3c:77:1e:43:aa:33:f6:75:ac:43:84:dd:1d:8c:68:
c4:9e:44:6c:2b:93:d5:c6:27:c9:2b:80:ca:37:aa:
a2:dd:e7:7f:58:fb:69:42:92:e6:68:e0:f8:e9:ef:
ee:54:01:70:05:c0:40:6c:ff:ee:85:cb:88:b8:a0:
b9:a5:b6:3c:a3:50:5c:6a:d5:89:e9:11:12:85:77:
09:4c:a0:4b:8a:34:ae:1f:89:7a:b8:b0:41:a8:3f:
c3:d3:f5:53:3c:58:59:16:36:ef:cc:8f:9b:c5:61:
3b:a5:d5:e4:08:65:4b:37:7d:20:76:ca:3a:ba:48:
5d:09:af:5e:dc:e0:e8:24:40:2e:20:5b:9b:8b:0e:
62:3d:fd:1d:23:0e:6e:ad:18:b7:e9:93:4b:f1:28:
a6:e2:a1:8f:3a:a8:a3:10:a8:ed:64:0d:b4:aa:b5:
67:c1:58:85:98:07:42:a3:f0:75:a8:0d:bc:c0:2f:
87:7f:f3:89:8c:8a:7f:91:a1:43:67:89:1c:68:89:
5d:b7:0e:01:23:01:0e:05:5f:a7:31:d5:7e:83:b7:
da:0a:70:26:9c:e2:49:ff:79:f6:9f:82:bf:db:79:
b4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:39:DF:9D:00:D9:C4:E0:A5:E7:57:33:2A:46:06:82:A4:7A:74:8A
X509v3 Authority Key Identifier:
keyid:17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/XjnfnQDZxOCl51czKkYGgqR6dIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.208.60.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:fc:67:6a:25:58:f5:20:84:f1:eb:8d:59:28:79:9f:e7:9e:
52:fe:fb:6d:89:5a:70:cc:db:ea:d5:c2:92:71:5d:b4:72:24:
02:9e:c8:6f:92:4e:d0:f2:c7:35:07:e8:73:d4:f4:8b:81:ca:
32:0e:76:d5:b7:c7:21:ae:26:59:96:83:0f:61:66:6a:7b:78:
56:61:58:eb:14:8a:30:2c:fe:b5:38:0f:b5:7c:8c:cb:da:7c:
6d:11:ab:6f:e4:0e:a0:91:95:48:3e:13:04:15:6b:69:df:21:
12:3c:f8:87:1e:66:74:36:31:13:c9:a6:3d:bc:3a:30:ba:2e:
08:11:ea:e1:6c:e9:a3:21:d1:f6:d3:5a:ca:66:28:6c:ea:73:
92:64:67:61:65:f5:16:b7:a7:d6:46:9d:19:74:9a:56:e6:e6:
76:bd:8d:df:3c:84:0e:53:03:fa:65:e3:76:99:9b:f9:a2:71:
c8:38:64:e5:68:f7:91:41:ea:0b:88:6b:55:89:bd:1d:68:51:
26:9a:24:6a:3f:8d:e3:1c:27:74:26:7c:d6:9f:20:95:a1:9f:
1c:bc:50:a8:88:9b:20:d3:ba:31:31:a9:17:23:1f:88:1d:c9:
11:61:bb:8a:fc:0b:b0:8d:bb:80:c5:f9:1b:0d:70:e9:95:12:
6b:4e:8c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:40 2024 by rpki-client on console-fra.rpki-client.org