Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XHCDZm04VYZPhHozKYVeHCWkSNE.roa
File: XHCDZm04VYZPhHozKYVeHCWkSNE.roa (raw, json)
Hash identifier: Aq4aOmFwrBkBrg/KbYYJSkJFf/HXAjUp0pMZEMCSPKQ=
Subject key identifier: 5C:70:83:66:6D:38:55:86:4F:84:7A:33:29:85:5E:1C:25:A4:48:D1
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A7414752ECED777FA117B62813A6BD5D6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XHCDZm04VYZPhHozKYVeHCWkSNE.roa
Signing time: Fri 08 Sep 2023 09:16:52 +0000
ROA not before: Fri 08 Sep 2023 09:16:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150075
IP address blocks: 188.241.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:74:14:75:2e:ce:d7:77:fa:11:7b:62:81:3a:6b:d5:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 8 09:16:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c7083666d3855864f847a3329855e1c25a448d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ad:43:2b:07:fb:09:a9:4a:bc:10:9b:0b:ed:
d8:08:68:39:54:36:5f:19:8f:69:78:0c:80:18:f4:
33:e0:01:23:0f:d0:70:ef:51:1c:56:bd:45:23:d5:
9a:b1:fe:f9:2c:ee:e5:13:e6:4a:41:6f:20:e1:84:
fb:29:86:20:99:39:98:41:20:2e:07:d1:57:3e:fe:
69:2f:d8:dc:df:06:7a:ec:42:ca:fb:63:cd:90:48:
d4:2c:b6:00:28:48:95:6e:8f:e8:0a:15:db:a8:22:
6e:e9:c1:42:16:45:b2:7b:a4:1c:31:0a:ea:59:b8:
a8:ad:42:e5:af:22:e1:92:34:5c:93:ab:64:31:6f:
86:de:29:ca:84:04:d9:16:86:be:53:38:ab:b7:19:
72:8e:bc:28:cf:83:6e:77:3f:15:91:14:08:09:0b:
af:ad:28:ec:ad:97:1c:01:8e:2f:77:b8:ee:76:7d:
4c:52:78:53:42:af:f0:2d:b5:64:85:53:79:ef:c8:
67:5b:d5:68:b1:d4:e6:c6:d7:5f:ae:83:7a:be:56:
59:53:01:61:94:a2:4b:45:b5:55:68:b6:34:f3:49:
68:05:25:8e:35:76:bb:17:d0:b6:ac:4b:b4:b3:25:
a5:85:d8:ed:75:17:09:a0:15:61:c8:b1:4b:7a:c0:
7d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:70:83:66:6D:38:55:86:4F:84:7A:33:29:85:5E:1C:25:A4:48:D1
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XHCDZm04VYZPhHozKYVeHCWkSNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
79:74:e9:e8:dc:26:1f:cf:a2:fc:94:6e:bf:34:c8:ca:7b:97:
85:00:52:9e:3d:a8:b5:e2:ac:63:b6:72:0a:e2:64:2d:5b:11:
b1:4f:2f:0e:92:96:63:29:ca:3e:30:8c:9f:98:80:c7:1e:27:
61:6a:e6:a0:62:a3:87:4a:0e:c9:8b:09:2c:80:0b:67:17:46:
ff:87:73:c1:27:3c:32:6d:46:63:b4:11:7d:8e:1c:73:11:9c:
d7:1e:f0:e6:c7:62:a2:a5:54:76:ca:92:f9:de:4d:4f:77:f5:
b1:26:64:47:a6:58:d6:4f:2b:4b:9b:f6:6d:e1:ef:c2:42:6b:
cd:04:97:63:1c:71:99:92:cd:53:10:ec:52:29:44:ce:31:6b:
94:e6:d3:c1:78:40:3c:70:fb:13:bd:3d:34:1c:a4:00:a9:98:
49:86:8e:7b:9e:1a:51:db:80:e2:f1:18:e5:37:37:3a:a9:32:
fa:22:a5:7d:04:d1:8d:6a:d3:de:f7:4b:21:98:a0:04:2f:ca:
d9:29:48:c3:1e:1c:ae:92:e6:79:ed:5e:eb:75:c4:a7:68:f4:
9d:90:33:14:a0:21:f2:62:39:30:69:ed:b1:80:0d:87:2e:77:
11:f2:b8:cc:7e:cf:ff:c5:28:ca:e5:62:ed:08:8d:fd:1b:8e:
f9:e0:a1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org