Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/XLP_Snwfy_EbAOae3YJkGzgl4yQ.roa
File: XLP_Snwfy_EbAOae3YJkGzgl4yQ.roa (raw, json)
Hash identifier: BOvR1oh1gHy8QZ2GKg3c59aSFY/Occxp7JAmRWPFy5I=
Subject key identifier: 5C:B3:FF:4A:7C:1F:CB:F1:1B:00:E6:9E:DD:82:64:1B:38:25:E3:24
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018608094BACC9579C39F9816110177F59AC
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/XLP_Snwfy_EbAOae3YJkGzgl4yQ.roa
Signing time: Tue 31 Jan 2023 13:34:32 +0000
ROA not before: Tue 31 Jan 2023 13:34:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3316
IP address blocks: 194.190.138.0/24 maxlen: 24
194.190.141.0/24 maxlen: 24
194.190.142.0/24 maxlen: 24
194.190.145.0/24 maxlen: 24
194.190.148.0/24 maxlen: 24
194.85.105.0/24 maxlen: 24
194.85.106.0/24 maxlen: 24
194.85.117.0/24 maxlen: 24
194.85.118.0/24 maxlen: 24
194.85.31.0/24 maxlen: 24
195.208.22.0/23 maxlen: 23
193.232.85.0/24 maxlen: 24
194.85.119.0/24 maxlen: 24
194.226.29.0/24 maxlen: 24
194.226.44.0/24 maxlen: 24
195.19.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Feb 2023 09:08:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:09:4b:ac:c9:57:9c:39:f9:81:61:10:17:7f:59:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jan 31 13:34:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cb3ff4a7c1fcbf11b00e69edd82641b3825e324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c6:eb:ac:e6:c6:34:b8:c8:94:00:d1:3c:af:
e6:1e:fa:df:41:f8:a4:84:b1:a4:50:b6:ce:2c:c4:
53:fc:5b:96:c9:ae:24:4a:f5:37:f2:84:d5:c7:be:
3f:dc:bb:7d:03:44:65:9c:b2:e3:ca:5e:6c:59:37:
b7:e1:36:51:4a:f9:0e:85:80:e6:62:11:9d:02:73:
5b:91:b1:69:24:f2:08:da:4a:bc:c9:fe:9a:2e:c3:
c6:29:6d:8e:c8:dd:c6:f7:a0:a4:eb:d2:a1:fe:1a:
7f:c5:98:28:10:1e:9d:1c:19:d2:58:90:fd:ee:c5:
b9:23:8e:af:86:72:61:b0:de:b5:2f:f8:b9:60:b0:
a1:97:d4:d7:fd:b0:f2:4a:63:cc:9a:3e:21:ba:5c:
12:eb:93:66:06:6f:74:2f:89:fa:2c:a1:f8:d2:02:
32:f3:fe:69:be:aa:f3:d5:01:36:f5:58:0f:41:3b:
57:bc:5b:cc:e4:be:b8:43:89:a9:a2:be:01:21:13:
25:e2:49:5b:f7:f5:1e:91:4f:e2:02:5f:0f:b4:46:
6f:54:9e:07:25:97:34:ae:90:32:c6:01:2c:79:63:
73:14:2e:3e:81:3a:33:bb:2e:b5:b3:14:5d:b6:bd:
d7:58:ee:d5:30:f6:bc:8e:14:8e:5f:f3:32:17:44:
fd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B3:FF:4A:7C:1F:CB:F1:1B:00:E6:9E:DD:82:64:1B:38:25:E3:24
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/XLP_Snwfy_EbAOae3YJkGzgl4yQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.85.0/24
194.85.31.0/24
194.85.105.0-194.85.106.255
194.85.117.0-194.85.119.255
194.190.138.0/24
194.190.141.0-194.190.142.255
194.190.145.0/24
194.190.148.0/24
194.226.29.0/24
194.226.44.0/24
195.19.26.0/24
195.208.22.0/23
Signature Algorithm: sha256WithRSAEncryption
33:d7:5e:8f:68:6b:6f:a3:b1:c8:ad:02:44:8d:65:69:23:43:
cc:c7:2d:fd:af:b5:c1:30:4c:8d:28:8f:d2:f6:af:6c:5a:a9:
cd:6b:d4:47:9f:80:38:14:14:cb:d8:60:d9:7a:d8:da:ae:bc:
b6:19:06:fa:43:26:8e:9a:17:4a:c7:38:c9:61:a6:bd:19:d4:
44:8f:4b:8a:d2:e0:ea:8f:5c:70:98:76:f4:64:d2:17:d9:77:
fd:5f:96:0d:b7:06:05:c0:ba:9b:ed:42:36:a6:6b:b8:dc:91:
66:c2:ea:1a:54:96:77:74:cb:76:4d:55:0c:3f:4b:d6:49:a5:
df:b7:74:b6:63:7e:52:3a:6d:b6:02:a5:a7:c3:3c:41:22:76:
af:93:90:eb:b9:12:f4:c9:72:5c:50:6d:2c:3a:82:52:61:83:
a3:30:2a:01:ac:3a:d7:6e:df:ab:04:4c:67:52:2c:b2:a4:9c:
16:16:81:92:28:e5:32:12:89:6f:5e:e0:36:e2:ff:4a:d3:78:
19:28:f4:70:fe:59:2e:30:36:e6:b4:51:a4:84:f8:14:c6:7e:
b3:1c:0e:8f:b2:1f:16:36:e9:21:21:1d:7f:0e:e3:c1:47:80:
4d:2e:09:e2:43:6d:89:a7:a5:bc:cf:55:46:2e:bc:81:2a:1d:
eb:3e:31:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:51 2024 by rpki-client on console-ams.rpki-client.org