Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/X2LIw4yDDxa-qeFFVUejgfEM944.roa
File: X2LIw4yDDxa-qeFFVUejgfEM944.roa (raw, json)
Hash identifier: 38dGJ2e4KP9OJJnYo0ERS7FnHyLdW5D1ssZGnWueLZk=
Subject key identifier: 5F:62:C8:C3:8C:83:0F:16:BE:A9:E1:45:55:47:A3:81:F1:0C:F7:8E
Certificate issuer: /CN=d6f2e142c44d5d51bc7e42ca0710f6b64ef11091
Certificate serial: 018805B9E7466D92E2562F6407154386FA03
Authority key identifier: D6:F2:E1:42:C4:4D:5D:51:BC:7E:42:CA:07:10:F6:B6:4E:F1:10:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vLhQsRNXVG8fkLKBxD2tk7xEJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/X2LIw4yDDxa-qeFFVUejgfEM944.roa
Signing time: Wed 10 May 2023 12:54:09 +0000
ROA not before: Wed 10 May 2023 12:54:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62313
IP address blocks: 185.63.128.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:b9:e7:46:6d:92:e2:56:2f:64:07:15:43:86:fa:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6f2e142c44d5d51bc7e42ca0710f6b64ef11091
Validity
Not Before: May 10 12:54:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f62c8c38c830f16bea9e1455547a381f10cf78e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b5:11:5d:d0:77:78:2f:e7:47:01:dd:0c:08:
e5:b2:13:7d:ac:eb:cc:79:65:f5:10:16:ca:8f:27:
b7:e2:dd:3d:2c:a3:d9:4c:bb:a3:37:98:a3:f4:5f:
03:5c:3b:fd:b4:de:27:17:01:5b:a3:f0:cc:5e:ea:
2d:85:da:de:54:7d:98:5f:25:86:76:35:36:bb:0e:
8e:88:ba:3b:20:db:bd:a5:0d:d4:bd:2d:7f:98:af:
ba:9f:ee:b4:27:18:81:8c:59:91:56:07:13:04:d0:
82:05:10:03:fe:65:66:bf:e1:0f:c3:68:5c:60:65:
41:b3:01:52:13:9e:28:46:bf:87:cb:98:29:4d:1f:
31:15:22:45:c6:cd:2d:ec:f4:03:c4:b7:bd:1d:80:
c0:7d:4b:71:7c:d6:38:83:30:94:8d:02:e7:6e:83:
a7:94:7b:d7:e2:2b:d1:89:6e:a5:1f:6d:3f:95:59:
a1:c9:78:d3:a7:1f:ca:ce:1b:48:8d:e5:cf:7e:d0:
17:a4:7f:43:e1:2a:82:be:83:e8:25:42:15:3c:46:
b2:f1:b8:e7:bb:b5:3d:34:5a:5a:c4:fb:6f:d4:a4:
1a:54:4c:d3:ad:3e:27:18:bf:ec:85:a8:4d:35:ad:
0f:48:1a:9c:a7:bd:74:3c:08:59:38:bd:eb:b5:65:
37:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:62:C8:C3:8C:83:0F:16:BE:A9:E1:45:55:47:A3:81:F1:0C:F7:8E
X509v3 Authority Key Identifier:
keyid:D6:F2:E1:42:C4:4D:5D:51:BC:7E:42:CA:07:10:F6:B6:4E:F1:10:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vLhQsRNXVG8fkLKBxD2tk7xEJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/X2LIw4yDDxa-qeFFVUejgfEM944.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2e881a-8141-44a0-8f3c-cb7c9ecc7798/1/1vLhQsRNXVG8fkLKBxD2tk7xEJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.128.0/22
Signature Algorithm: sha256WithRSAEncryption
88:c9:ce:bb:81:92:53:1c:d5:2c:78:43:98:82:83:8d:fb:07:
17:64:63:38:ac:0d:4a:56:4e:10:fe:b7:2e:ed:20:6c:9e:71:
e8:72:ee:56:3f:12:95:8b:ed:92:be:3a:35:0a:3e:01:c6:f0:
b9:d2:c7:2e:d7:8d:2c:bd:f7:db:d3:c1:82:06:14:b2:56:88:
b1:bb:e8:4c:98:68:ea:3b:87:64:d6:27:24:79:d9:b9:a6:35:
db:35:ee:21:f2:19:02:8d:e8:ba:1d:03:ce:a8:60:2a:15:0b:
3e:36:a7:e1:b9:40:30:02:b8:33:42:fe:ab:16:48:35:ee:2f:
2b:95:3a:22:7e:fc:b2:9c:cb:25:e6:93:0a:bb:93:08:99:21:
0d:e5:f8:02:9a:f5:7f:5c:4c:b9:44:d7:37:c4:bc:e0:ed:72:
48:ab:4c:5c:bd:db:54:88:07:7b:5f:fd:9c:24:19:42:39:e0:
97:a0:b9:c7:5a:90:36:d6:8f:f4:a2:89:91:30:77:52:86:f3:
5a:01:80:79:6c:74:c1:2b:46:a9:6f:c0:5e:1c:92:b8:88:b7:
76:10:7a:b0:df:d1:53:9c:05:4e:08:3f:22:48:8b:e7:11:1e:
10:55:1a:50:92:63:b7:ea:76:c4:c9:42:b0:c4:93:b4:a4:bb:
c5:6f:3e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:23 2024 by rpki-client on console-ams.rpki-client.org