Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/xQyW26vrSRr8DkLYUqtQvpGvcRM.roa
File: xQyW26vrSRr8DkLYUqtQvpGvcRM.roa (raw, json)
Hash identifier: haBD8JU4L3YA0esU7L0st025B6/pg0vGTJTXj4OrWIQ=
Subject key identifier: C5:0C:96:DB:AB:EB:49:1A:FC:0E:42:D8:52:AB:50:BE:91:AF:71:13
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A48491A8C303FD0EFF6699401DC11
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/xQyW26vrSRr8DkLYUqtQvpGvcRM.roa
Signing time: Sun 01 Jan 2023 03:05:08 +0000
ROA not before: Sun 01 Jan 2023 03:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210160
IP address blocks: 37.18.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:48:49:1a:8c:30:3f:d0:ef:f6:69:94:01:dc:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c50c96dbabeb491afc0e42d852ab50be91af7113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c2:71:fe:59:71:cb:ad:ec:db:37:d1:53:8b:
94:0c:73:d7:8f:f6:85:2a:f3:e2:cc:fa:d2:ad:c5:
75:9a:0e:c8:d1:28:ed:bd:eb:b3:6c:5b:db:e1:37:
15:24:91:d2:f4:0a:31:07:d4:7c:f3:25:d5:ec:41:
25:87:17:ba:24:9e:7e:d7:1b:b3:75:27:e0:13:16:
42:29:49:63:1c:4b:b2:e6:99:3f:eb:80:1a:9c:db:
fc:b4:c5:fe:b8:8c:9e:3b:22:78:b7:6f:68:83:80:
06:5e:9c:98:b3:13:36:52:46:95:9d:bb:6d:bf:de:
c7:00:88:b9:43:56:6b:bb:86:18:a0:03:4b:ea:5c:
1f:b7:9a:8b:95:60:5e:bb:bf:a7:55:81:1f:91:42:
a4:79:b6:ce:b8:06:54:3c:8f:ea:1d:9f:54:01:47:
ce:e3:b0:38:34:0b:0f:bb:24:4c:57:e6:b5:84:18:
d0:43:a2:ed:57:c1:a6:46:bc:e2:da:12:a3:98:c3:
88:a6:5b:ea:b5:65:85:af:8f:8b:e0:83:41:36:ba:
15:02:3b:3e:c4:89:7f:4d:e5:0c:20:f6:57:2a:db:
b5:61:0c:34:58:6c:f9:6d:8e:1f:17:09:3d:60:57:
a3:8a:c7:f2:2b:a1:19:e0:a8:bb:1a:aa:05:cf:a9:
82:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0C:96:DB:AB:EB:49:1A:FC:0E:42:D8:52:AB:50:BE:91:AF:71:13
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/xQyW26vrSRr8DkLYUqtQvpGvcRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.95.0/24
Signature Algorithm: sha256WithRSAEncryption
75:bc:17:86:e5:5d:c8:98:ed:b0:db:94:6f:c2:00:b4:bc:15:
cc:62:d7:1c:c3:33:b8:52:e5:ef:f0:38:9b:c0:a8:05:61:44:
45:9b:6b:0b:e4:3a:18:e2:5a:c1:b6:d3:f7:f9:8c:e8:10:01:
24:a9:2a:eb:5e:4d:5e:86:9f:3a:96:19:05:66:31:59:6e:c4:
ac:7c:8c:c8:2d:c0:8b:71:07:8f:bf:66:47:95:16:34:6b:73:
5b:23:32:f1:ed:2b:1b:d4:a4:98:31:8c:50:71:27:bc:56:ea:
84:18:14:9f:b6:ec:73:37:a6:50:74:fa:70:d8:f6:1c:0f:45:
ca:7b:c0:0b:7e:2b:ee:08:23:97:b0:67:87:74:c7:30:59:46:
83:59:0b:f0:65:7a:c1:fa:9a:4e:6c:34:e2:7d:df:99:90:1d:
80:39:81:1c:d1:7e:76:ac:7e:8f:fc:a9:52:bb:39:f3:eb:27:
f1:17:dd:91:d4:84:25:63:4d:e8:db:f3:d6:c5:69:78:14:fe:
f0:e6:84:1f:59:af:9b:1b:a3:41:60:ec:6f:30:6b:d8:d2:13:
bc:42:75:f6:13:44:e2:2a:ce:2d:3e:84:e5:ca:6b:c3:ee:57:
39:ae:f0:77:e9:2f:66:ef:49:b0:5c:24:f1:ce:92:f8:d5:df:
30:87:e3:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org