Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/XPPOsDja5B3zFkJjHkreRwL5bW4.roa
File: XPPOsDja5B3zFkJjHkreRwL5bW4.roa (raw, json)
Hash identifier: OghraxgmXF5yCayQlio3W5iAqQa/0TB31C5J5Y4VaMY=
Subject key identifier: 5C:F3:CE:B0:38:DA:E4:1D:F3:16:42:63:1E:4A:DE:47:02:F9:6D:6E
Certificate issuer: /CN=10543a5197eb2544447e9d36b3ebf14452c777eb
Certificate serial: 01857070598B2A74449746F6FD321C440B4C
Authority key identifier: 10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/XPPOsDja5B3zFkJjHkreRwL5bW4.roa
Signing time: Mon 02 Jan 2023 03:04:49 +0000
ROA not before: Mon 02 Jan 2023 03:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24622
IP address blocks: 193.120.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:59:8b:2a:74:44:97:46:f6:fd:32:1c:44:0b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10543a5197eb2544447e9d36b3ebf14452c777eb
Validity
Not Before: Jan 2 03:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cf3ceb038dae41df31642631e4ade4702f96d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:02:d2:74:bb:88:4b:e5:ec:b3:47:4f:94:d4:
70:01:55:e3:f9:15:bd:71:f3:dd:40:57:df:af:4c:
da:22:dd:d8:c4:67:f2:20:0c:f2:8f:8d:f2:35:29:
d1:2f:36:ff:23:e1:2c:af:5b:1c:0e:06:17:37:1a:
f7:39:14:cc:56:e0:f9:f1:97:46:70:5e:e0:a1:96:
4d:4c:a6:5b:ad:ff:e4:e3:20:e1:a5:ce:3d:26:27:
69:74:d6:3e:98:f5:03:85:2f:61:59:ec:45:3e:03:
c9:27:5f:9f:f8:07:e7:90:2c:bf:ca:bf:9f:a1:16:
f1:a4:2f:bc:c4:92:6c:5d:64:df:39:cf:4f:bf:1d:
ea:af:e6:d0:49:b6:bb:6c:dd:9b:5d:18:54:cc:9e:
5f:ce:85:f6:41:b1:d5:ad:68:2c:ce:78:f2:c4:90:
2a:6a:a1:fe:7f:bf:34:ed:f2:a0:c6:d1:b1:b8:5e:
8f:d5:1f:28:71:19:48:c8:8b:5f:08:60:b1:cd:1a:
ad:cc:cf:11:bb:12:2b:6b:03:7c:3c:a1:37:9b:08:
95:e1:71:9f:f4:d1:d8:d2:55:ae:9f:c5:0a:c9:82:
57:e1:94:38:3c:12:20:4c:ed:44:b1:ac:ef:f7:1e:
5b:1f:68:d0:e8:e7:c9:e3:3c:c6:aa:12:4d:16:0a:
0d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F3:CE:B0:38:DA:E4:1D:F3:16:42:63:1E:4A:DE:47:02:F9:6D:6E
X509v3 Authority Key Identifier:
keyid:10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/XPPOsDja5B3zFkJjHkreRwL5bW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/EFQ6UZfrJUREfp02s-vxRFLHd-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.120.161.0/24
Signature Algorithm: sha256WithRSAEncryption
86:1a:d9:29:80:07:34:27:03:fc:b3:60:eb:49:fe:f6:f9:d0:
38:6c:4c:e3:11:2c:74:9d:32:be:13:e4:29:79:f1:9c:7b:eb:
63:45:b0:7f:6b:e1:77:33:76:76:0b:6a:81:fa:c6:44:37:cb:
2b:1e:f3:85:51:8a:1a:73:dd:18:58:d5:90:f9:4c:d3:dc:9f:
80:6e:c4:7d:cb:84:ae:ca:5e:e1:78:aa:df:db:45:17:be:ba:
18:f7:37:46:6a:46:1e:5c:bd:05:0e:0c:23:2b:5b:4a:85:fa:
c4:6f:aa:54:a7:8a:ad:3d:a1:54:33:1e:de:7a:7e:a9:0f:29:
0b:e2:4f:ba:2b:62:5d:c0:49:ec:62:65:63:76:52:72:46:15:
85:90:bb:47:36:89:b4:ed:97:1b:59:ce:5e:c1:ea:fa:ad:60:
de:6c:48:0f:06:1b:e2:28:79:c0:0f:74:e4:23:64:3e:91:79:
67:07:3c:69:8e:48:cd:73:c1:49:e2:02:ec:30:22:50:ff:87:
5e:3e:a5:b7:7a:37:63:04:cc:b8:8b:93:eb:71:1b:f1:74:70:
56:a0:c2:84:a4:bb:3d:17:78:db:05:a7:f0:77:fe:9f:dd:61:
2d:34:c5:0a:24:90:a4:68:de:ff:fe:af:7e:ed:43:7b:b1:42:
94:4e:50:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:55 2024 by rpki-client on console-ams.rpki-client.org