Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/XzVPmfKNA9CyP25R7bTxRlbIhmw.roa
File: XzVPmfKNA9CyP25R7bTxRlbIhmw.roa (raw, json)
Hash identifier: c09rcljV7dL66ja4ZWq+XQH4EghOnqfCWSh1JjWOVME=
Subject key identifier: 5F:35:4F:99:F2:8D:03:D0:B2:3F:6E:51:ED:B4:F1:46:56:C8:86:6C
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018ADBE4EB88D9D4E52F3555FAF0B30812BA
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/XzVPmfKNA9CyP25R7bTxRlbIhmw.roa
Signing time: Thu 28 Sep 2023 13:05:27 +0000
ROA not before: Thu 28 Sep 2023 13:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1199
IP address blocks: 145.152.0.0/13 maxlen: 13
145.111.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Thu 28 Sep 2023 14:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:e4:eb:88:d9:d4:e5:2f:35:55:fa:f0:b3:08:12:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Sep 28 13:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f354f99f28d03d0b23f6e51edb4f14656c8866c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:2e:69:34:94:bd:a1:84:15:c6:80:4d:f5:
df:52:e5:1c:67:8b:7f:86:c1:0c:6c:71:8f:16:cb:
aa:ed:e6:63:52:ba:4b:ba:90:2d:fa:86:23:fe:7d:
63:7a:ce:93:60:35:bc:59:00:17:fd:82:56:b5:68:
13:ce:7e:f4:2f:75:a4:b8:63:66:6f:cf:e7:5a:c8:
35:18:fe:0a:61:52:6b:c6:2c:b0:31:99:07:44:c8:
c4:b2:1d:40:2d:1a:8c:5d:fa:30:4e:2d:88:6f:92:
46:74:8f:d1:ca:a6:3c:7e:ed:50:6d:f6:a5:fe:15:
31:d7:df:2a:55:3e:c1:4d:65:43:ef:36:26:bd:85:
25:5a:be:be:be:dc:b0:2b:df:a2:25:1c:c9:ff:50:
fb:9e:90:24:6b:33:ac:9d:0d:a8:ff:a5:8f:6a:c9:
f2:ba:f1:98:49:ee:3d:9c:87:42:29:3a:42:3b:fd:
b0:d4:be:6b:de:cf:73:00:00:62:65:5d:37:72:10:
02:19:68:34:01:aa:d5:c9:b4:e4:a8:1c:db:99:fd:
01:53:34:df:9d:9e:f7:e7:f4:4d:da:8f:c1:32:a7:
91:6e:86:c1:68:84:c0:d4:3a:50:98:89:18:2a:99:
3b:74:fc:7c:0f:3e:c0:72:4b:27:3f:1e:23:3b:8f:
3a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:35:4F:99:F2:8D:03:D0:B2:3F:6E:51:ED:B4:F1:46:56:C8:86:6C
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/XzVPmfKNA9CyP25R7bTxRlbIhmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.111.0.0/16
145.152.0.0/13
Signature Algorithm: sha256WithRSAEncryption
23:c5:5f:27:03:82:81:89:5d:b0:e5:11:46:46:ce:b6:27:ce:
3e:17:af:5b:42:e0:d3:53:45:32:12:b2:f1:a6:93:6c:97:04:
32:32:4e:b7:e4:bd:a9:00:ee:01:cb:36:1d:ee:15:72:88:ab:
43:9d:cd:8c:95:26:79:60:69:25:89:48:6d:16:f1:4a:87:95:
a2:9b:e4:ad:e2:fe:d6:0a:3c:6d:b4:b5:26:b6:a0:2e:55:87:
be:78:ea:b2:2f:78:d5:8d:58:2c:65:bd:fc:f1:b2:29:7d:98:
72:c0:26:c8:58:71:37:44:5e:57:c7:63:58:83:75:91:31:58:
2f:42:8d:79:3f:4e:9e:de:bb:31:a6:68:c2:cf:5e:0f:d6:9c:
62:3a:dd:08:6b:9b:af:fb:a8:ed:ea:84:b4:b1:71:df:6f:b0:
1b:81:4f:7b:67:90:4e:02:34:bd:24:3e:1f:d1:d1:fe:21:ad:
62:97:92:30:66:15:49:74:24:6e:5b:fa:2d:89:36:96:9b:ea:
e1:77:44:a2:00:1c:7e:92:45:67:3e:57:f9:f7:a7:e9:74:7a:
79:36:ba:b6:46:3d:36:cb:d8:3b:30:32:16:e8:81:55:8f:56:
1b:a1:41:d2:88:7c:5f:d5:9d:53:dc:8e:28:42:d0:a9:da:29:
c7:d9:33:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org