Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/XTSeFBOCibJwI3K-_4U65Rp5FMk.roa
File: XTSeFBOCibJwI3K-_4U65Rp5FMk.roa (raw, json)
Hash identifier: TVUJU4/eP7V5xdLP2uZ3J7WdQtb1a/MPOH+T9VEi3kU=
Subject key identifier: 5D:34:9E:14:13:82:89:B2:70:23:72:BE:FF:85:3A:E5:1A:79:14:C9
Certificate issuer: /CN=83375b43ae8a53d48c888671e67fc17bf27f2b7e
Certificate serial: 01857246C9F4007FE6E0D668569C15D1CD46
Authority key identifier: 83:37:5B:43:AE:8A:53:D4:8C:88:86:71:E6:7F:C1:7B:F2:7F:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzdbQ66KU9SMiIZx5n_Be_J_K34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/XTSeFBOCibJwI3K-_4U65Rp5FMk.roa
Signing time: Mon 02 Jan 2023 11:38:39 +0000
ROA not before: Mon 02 Jan 2023 11:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49702
IP address blocks: 185.109.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c9:f4:00:7f:e6:e0:d6:68:56:9c:15:d1:cd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83375b43ae8a53d48c888671e67fc17bf27f2b7e
Validity
Not Before: Jan 2 11:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d349e14138289b2702372beff853ae51a7914c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c3:99:08:bd:76:a9:a0:df:08:9f:d7:35:86:
d1:a3:e6:86:3b:d5:cd:c4:cf:23:2e:e4:60:56:c7:
37:2f:5a:48:f6:eb:50:8c:f1:b6:80:37:c3:35:d3:
4c:3e:6f:a4:72:8c:9b:8b:94:3e:05:5d:16:ec:24:
50:77:69:4b:8b:9d:63:30:c7:ea:65:5c:f7:12:89:
13:51:c0:f0:61:23:de:13:4d:ae:08:51:af:f9:c0:
72:ef:39:f1:78:9c:cf:4a:c0:d5:99:2b:88:10:1f:
07:0a:8e:58:20:93:c9:12:e5:27:c6:56:2c:35:37:
4f:6a:5b:ae:89:b5:d8:61:8e:d8:01:72:1e:21:e0:
e2:fe:30:11:47:2f:f1:c0:1f:a2:13:41:25:d3:8c:
2e:b8:18:24:f1:13:2c:16:a2:1b:cd:4c:bc:b7:a0:
f2:f8:ab:b1:91:31:3d:2e:e4:8d:9a:19:22:68:74:
13:d0:02:90:a0:fc:61:a1:18:d2:11:45:83:49:39:
05:6a:de:cc:eb:96:02:99:62:02:75:0b:74:96:cf:
c7:56:9b:76:5b:ef:a4:00:46:58:af:d2:bb:89:4f:
c5:0e:04:62:3c:f5:e1:38:b4:ef:72:e9:9f:bc:83:
b4:cb:91:37:e4:f2:16:27:f1:71:e5:8a:21:67:ff:
7b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:34:9E:14:13:82:89:B2:70:23:72:BE:FF:85:3A:E5:1A:79:14:C9
X509v3 Authority Key Identifier:
keyid:83:37:5B:43:AE:8A:53:D4:8C:88:86:71:E6:7F:C1:7B:F2:7F:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzdbQ66KU9SMiIZx5n_Be_J_K34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/XTSeFBOCibJwI3K-_4U65Rp5FMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/192bba-1a74-4ba4-90d6-72c4c4b804a7/1/gzdbQ66KU9SMiIZx5n_Be_J_K34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.112.0/22
Signature Algorithm: sha256WithRSAEncryption
29:ea:18:04:45:cb:f9:30:e0:0d:04:ef:ba:82:c1:7c:ae:72:
fa:4e:6f:7f:58:cf:e7:0d:6e:50:36:24:52:79:a6:4b:d7:99:
0a:5e:d2:a4:ba:62:af:66:1d:70:1d:77:b2:59:ac:ac:de:8c:
34:5a:9c:a1:b2:46:54:1d:69:f0:7b:8d:26:1e:78:49:c4:be:
e0:41:77:83:55:e0:29:6d:61:84:d3:12:b0:4a:4f:55:06:13:
d0:4e:14:91:6d:54:8c:e4:fb:89:47:7b:9d:07:fb:d3:5b:35:
6a:7f:d8:11:85:e6:49:1a:6f:19:b2:b6:be:70:0e:1b:61:fb:
fd:25:6e:e4:6f:a3:d8:ba:b1:03:24:4b:77:9c:0b:98:1e:85:
35:e3:38:cf:8f:d0:54:fb:df:a7:32:5d:5f:78:a4:c2:2e:10:
4d:3c:73:7c:c2:b1:19:e6:d3:fd:1a:5f:bf:b9:70:c6:d1:b2:
cc:2b:f3:8d:84:9f:cf:32:17:25:dc:15:4f:b4:11:6e:b0:e1:
eb:21:c1:dc:87:b9:55:7e:b1:11:d4:f5:94:3f:d4:a2:3c:85:
e2:96:5d:4d:41:be:86:d4:3f:5e:6d:4d:63:bd:4f:c2:8c:ab:
29:6a:72:94:ba:b0:c5:1a:f8:83:9a:8b:05:1d:a5:ba:e9:06:
bc:84:da:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:46 2024 by rpki-client on console-fra.rpki-client.org