Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/d5e3a6-adf0-4d99-baf2-30502e4a2d6b/1/XORRxs1uzMRVJGZo85W9R9lmvy0.roa
File: XORRxs1uzMRVJGZo85W9R9lmvy0.roa (raw, json)
Hash identifier: OjJAAXg1QYoRXQ0sSFyToHv6OTEJXwqyaeYcKseh2oU=
Subject key identifier: 5C:E4:51:C6:CD:6E:CC:C4:55:24:66:68:F3:95:BD:47:D9:66:BF:2D
Certificate issuer: /CN=5644f7c1a784d80d4605b2bd5a984029aedb0838
Certificate serial: 01856D4ACDE497CD7F05058644B67B477BEF
Authority key identifier: 56:44:F7:C1:A7:84:D8:0D:46:05:B2:BD:5A:98:40:29:AE:DB:08:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkT3waeE2A1GBbK9WphAKa7bCDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/d5e3a6-adf0-4d99-baf2-30502e4a2d6b/1/XORRxs1uzMRVJGZo85W9R9lmvy0.roa
Signing time: Sun 01 Jan 2023 12:24:56 +0000
ROA not before: Sun 01 Jan 2023 12:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.235.228.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:cd:e4:97:cd:7f:05:05:86:44:b6:7b:47:7b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5644f7c1a784d80d4605b2bd5a984029aedb0838
Validity
Not Before: Jan 1 12:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ce451c6cd6eccc455246668f395bd47d966bf2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:42:dd:e6:28:0e:2f:23:1e:2d:3c:58:74:39:
8a:f7:4a:4e:20:0a:f0:e3:25:af:c4:f0:0d:ed:d6:
80:9f:7d:94:48:30:db:74:00:d0:b5:18:7e:80:3e:
72:c2:97:f8:c7:51:18:16:76:42:3b:5f:88:12:6a:
f8:e1:b0:f8:00:7d:b4:8c:94:e7:84:76:29:ce:d9:
3e:bd:4b:ca:ab:6e:ea:17:1a:9e:c4:00:8d:32:f0:
ae:17:d8:6f:c5:b7:7d:8d:94:bd:b4:72:c7:85:54:
70:a6:fc:24:ae:08:50:62:fb:7c:32:c8:f4:13:e2:
77:26:8c:05:84:62:fd:ca:e3:5a:15:d4:ac:33:cd:
3d:7e:25:8f:12:ea:0b:fd:d6:d4:6b:27:3d:a6:2f:
a6:c7:5c:8e:9d:4d:87:54:2b:00:8c:0b:ea:aa:5c:
a4:ef:f1:67:5e:2d:bc:29:ec:cc:7c:59:f8:c1:0b:
a1:be:41:be:61:cb:ee:b5:a7:64:7d:d9:b7:7c:5f:
b6:1b:21:07:4f:1e:00:88:28:35:75:1b:b0:03:3a:
2f:9b:e0:8b:6b:cb:6b:bf:c8:0f:6d:0a:a0:17:6c:
7a:a9:b4:3c:52:de:82:41:4b:a4:55:56:f9:c1:99:
50:87:e4:52:57:1e:0b:fd:2a:04:b3:fe:a9:d2:0d:
23:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E4:51:C6:CD:6E:CC:C4:55:24:66:68:F3:95:BD:47:D9:66:BF:2D
X509v3 Authority Key Identifier:
keyid:56:44:F7:C1:A7:84:D8:0D:46:05:B2:BD:5A:98:40:29:AE:DB:08:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkT3waeE2A1GBbK9WphAKa7bCDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d5e3a6-adf0-4d99-baf2-30502e4a2d6b/1/XORRxs1uzMRVJGZo85W9R9lmvy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/d5e3a6-adf0-4d99-baf2-30502e4a2d6b/1/VkT3waeE2A1GBbK9WphAKa7bCDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.228.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:a7:de:5b:2c:ca:ca:09:61:7d:75:f0:90:9d:04:e9:ea:eb:
82:b5:51:62:58:d8:40:75:69:29:6c:e6:38:ed:8a:db:1f:ec:
7b:d7:e9:9c:4f:f2:c5:51:9e:7a:fb:8d:9b:fb:2d:11:1a:d3:
41:0d:22:6b:be:d3:bb:d7:3a:39:bb:4b:96:6c:de:ec:7e:02:
91:ad:9a:00:a5:be:9a:73:2f:ed:67:71:41:cd:4b:26:3b:f9:
45:fd:2c:ad:11:49:7d:7b:7f:75:4e:dc:5f:36:50:06:1f:af:
db:45:e3:c8:f0:fa:2a:70:9a:ac:84:09:72:ed:74:f2:90:69:
97:73:c3:f7:b4:49:44:4b:2e:04:5d:d8:71:9a:00:f2:4c:01:
f2:24:e9:7f:e6:f8:60:be:59:28:50:95:de:a2:ea:98:d0:d8:
36:17:af:0d:f1:c9:52:32:19:0a:6b:09:c6:8e:72:0c:9a:af:
08:d3:a5:46:83:52:d2:47:cd:6b:0a:bd:39:13:74:f7:e4:61:
40:20:ed:2e:69:ff:74:b4:b3:01:52:2d:4b:50:5d:94:0e:48:
f5:51:be:a9:d6:26:d1:33:9e:20:f8:8a:4d:7e:58:ce:0c:3d:
b1:97:9f:8c:01:7c:7b:ad:ba:59:dd:51:5c:51:3f:7a:22:75:
4e:f2:d2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-ams.rpki-client.org