Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/xmbfqwr3pnTozXOojURqGWJTiBg.roa
File: xmbfqwr3pnTozXOojURqGWJTiBg.roa (raw, json)
Hash identifier: ElZMaxqqgYXppgFXyZv8sVmtY2khLK6vu2xXmjG+GzQ=
Subject key identifier: C6:66:DF:AB:0A:F7:A6:74:E8:CD:73:A8:8D:44:6A:19:62:53:88:18
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018612A551C3C1BBBC2B6943E93B5D4AFED2
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/xmbfqwr3pnTozXOojURqGWJTiBg.roa
Signing time: Thu 02 Feb 2023 15:01:09 +0000
ROA not before: Thu 02 Feb 2023 15:01:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Feb 2023 10:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:12:a5:51:c3:c1:bb:bc:2b:69:43:e9:3b:5d:4a:fe:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Feb 2 15:01:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c666dfab0af7a674e8cd73a88d446a1962538818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3f:11:22:96:37:20:d0:5c:5f:59:ad:d6:79:
47:29:8a:c4:77:f3:1f:93:57:3a:f4:1d:10:13:a8:
ef:db:43:26:3c:31:f2:7d:b1:db:14:a2:5d:b2:3e:
7f:a3:15:0a:e0:e7:0c:ae:4f:8e:c4:ef:95:15:ca:
f4:1b:69:8b:4a:6f:d8:e4:51:5e:4b:75:0f:1f:c6:
42:59:df:3e:ce:41:dc:0d:6e:0d:1b:49:d7:79:0f:
2c:f8:c0:b6:1e:e4:d0:5b:3e:ec:b0:31:fd:58:11:
ec:10:4b:8a:a7:47:a0:f1:aa:54:c5:6b:ab:52:e2:
0d:d3:c9:88:11:3f:44:89:58:2b:a4:26:d6:cf:35:
12:52:ba:05:b5:20:db:3f:ad:29:62:f0:4c:15:31:
d4:b6:00:c8:2d:53:72:10:20:1f:27:1c:50:54:b2:
3d:31:39:1f:fe:1e:99:fa:c6:f0:4b:28:46:9b:e4:
4d:c1:78:d7:b0:4c:ea:91:ed:db:28:52:79:f9:80:
c5:70:ae:4f:90:a7:30:f7:67:a4:b4:01:5f:43:22:
1e:da:b1:f0:4c:3f:d5:1c:c6:64:bb:20:ef:00:0d:
90:7a:43:eb:37:a8:3d:90:b2:7c:51:72:59:a6:d7:
76:90:38:74:a2:a2:14:be:ca:f9:37:07:d9:5d:d4:
13:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:66:DF:AB:0A:F7:A6:74:E8:CD:73:A8:8D:44:6A:19:62:53:88:18
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/xmbfqwr3pnTozXOojURqGWJTiBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
22:91:2d:e9:77:ef:5f:09:72:f5:d8:81:dc:e7:14:37:de:d1:
05:43:8a:de:d2:07:d2:b3:c5:3e:85:80:8a:b9:6b:cf:85:a1:
08:58:d4:24:da:5c:6e:20:cc:4b:4e:7b:98:70:c3:7c:24:15:
38:dd:a2:f4:0f:5e:0b:6f:ab:d7:9f:b0:ff:e1:6f:8a:7f:1e:
ff:bf:f0:7f:2e:57:59:38:8e:0e:ab:80:04:54:bf:9c:0a:b7:
23:e0:8d:9d:54:3d:09:80:af:e1:a7:bb:2b:77:02:e0:3c:3e:
de:65:28:7f:01:62:52:eb:3f:26:08:22:a1:4d:58:9f:e1:a8:
4f:ce:bb:0c:45:71:83:62:58:d8:d1:42:32:fc:31:6b:20:0e:
6f:b9:4e:2c:b0:e7:89:48:df:ad:94:12:4f:d2:83:59:91:14:
13:3c:e4:29:97:4d:e2:5d:bd:1d:aa:9a:3c:39:ca:0d:f9:b4:
68:26:28:ab:f0:81:1f:0c:4c:c2:86:73:68:dc:d7:ee:7b:81:
34:09:1b:c6:1e:54:29:cd:99:52:59:25:74:19:0d:83:97:03:
e7:7e:2b:15:f5:f9:d1:15:c4:db:8c:55:c4:fd:ee:ff:10:da:
7b:80:bd:36:73:7c:f3:c8:5c:f1:ea:6e:9d:04:7a:49:ec:56:
ff:4c:ff:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org