Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/XTFAsQmYPYj-4qlCidIMV84pScc.roa
File: XTFAsQmYPYj-4qlCidIMV84pScc.roa (raw, json)
Hash identifier: m5R1Zwg3UNLdjT49nmrqWMZMWQLbU+F8qWPkynxS+T8=
Subject key identifier: 5D:31:40:B1:09:98:3D:88:FE:E2:A9:42:89:D2:0C:57:CE:29:49:C7
Certificate issuer: /CN=29b899d7dfa63fc8862ec239201eb1f6c08f07f4
Certificate serial: 01856BC127706A41DE03052B9D4B12F80D04
Authority key identifier: 29:B8:99:D7:DF:A6:3F:C8:86:2E:C2:39:20:1E:B1:F6:C0:8F:07:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbiZ19-mP8iGLsI5IB6x9sCPB_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/XTFAsQmYPYj-4qlCidIMV84pScc.roa
Signing time: Sun 01 Jan 2023 05:14:58 +0000
ROA not before: Sun 01 Jan 2023 05:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206004
IP address blocks: 185.194.200.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:27:70:6a:41:de:03:05:2b:9d:4b:12:f8:0d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b899d7dfa63fc8862ec239201eb1f6c08f07f4
Validity
Not Before: Jan 1 05:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d3140b109983d88fee2a94289d20c57ce2949c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f0:b0:20:55:45:38:33:09:e5:9a:42:c9:77:
c1:0d:a0:83:6b:d2:9a:b8:c7:fa:29:74:5e:e2:0c:
97:e4:5e:63:04:2c:12:85:9c:5a:56:12:9a:dc:85:
95:2d:91:c7:83:09:6f:a4:56:b4:e1:11:09:84:15:
39:7f:ef:f5:41:16:2d:71:2d:06:06:6f:d4:1b:04:
a8:29:d9:12:7f:9a:e7:a6:27:4b:59:7c:74:1b:f9:
88:cf:2d:49:05:ee:e9:58:27:cb:f0:7c:e5:c4:81:
7c:0a:9e:10:2b:c2:e0:d0:88:e2:00:a9:9f:34:c2:
42:d5:4f:e4:84:df:a4:31:81:80:8a:e9:b2:e4:7a:
5c:7f:ff:33:53:ef:45:cd:1e:4d:58:d4:32:a8:47:
85:30:1a:4d:90:53:dc:ea:3b:b1:c9:b1:37:8a:b5:
00:96:c1:bd:b6:f1:29:aa:77:ad:97:57:d1:b0:e2:
95:17:34:96:e7:40:58:fd:d1:bd:d0:13:36:0d:16:
18:c7:7b:73:4a:28:c4:5b:b1:7b:11:19:ed:bc:c4:
cd:9e:24:35:22:fe:3b:83:b3:94:2b:ce:91:83:e6:
78:4f:44:b9:51:91:25:f1:5f:0b:ae:35:bb:bc:e2:
ef:87:45:29:77:a3:1f:07:d7:9e:83:63:eb:d4:6f:
64:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:31:40:B1:09:98:3D:88:FE:E2:A9:42:89:D2:0C:57:CE:29:49:C7
X509v3 Authority Key Identifier:
keyid:29:B8:99:D7:DF:A6:3F:C8:86:2E:C2:39:20:1E:B1:F6:C0:8F:07:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbiZ19-mP8iGLsI5IB6x9sCPB_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/XTFAsQmYPYj-4qlCidIMV84pScc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b00316-4893-4152-97e6-d8e2a357cd4b/1/KbiZ19-mP8iGLsI5IB6x9sCPB_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.200.0/23
Signature Algorithm: sha256WithRSAEncryption
79:d8:34:e4:8e:cd:57:1b:1a:5d:f9:12:88:db:60:53:9b:aa:
90:64:4d:e9:53:0b:6e:95:a5:8e:38:d5:69:54:58:f3:e8:a7:
68:aa:82:80:1c:53:9b:4b:ac:a8:09:8f:9a:d2:73:48:b8:b5:
ed:a4:87:e3:5d:47:69:36:2c:86:03:c8:bc:e3:30:2c:aa:70:
5b:cd:8e:38:dd:0e:58:02:4d:ad:dc:c1:b0:70:ca:02:f8:85:
80:12:90:f3:21:1e:8c:6b:37:4c:39:6f:7f:3c:6a:42:90:ab:
a4:32:80:66:48:7f:3f:9c:0c:43:94:e0:76:69:a4:46:32:8a:
e8:02:54:48:2b:4e:48:c6:0b:72:de:89:1f:1f:85:b0:33:2e:
ae:bc:56:8c:55:7d:fa:4a:a2:9d:5c:d5:4c:c8:d3:57:19:e0:
eb:56:0e:3d:80:cf:91:4b:a5:08:b3:bf:d7:53:17:ff:42:3f:
48:04:33:26:ce:de:1b:ce:43:df:e5:db:11:04:b3:26:04:ab:
ea:db:3f:a7:cd:e7:4f:d2:7e:31:e8:1a:65:5e:69:90:42:da:
31:e1:80:80:6c:93:bd:7b:41:bc:54:4f:b1:f5:9a:fc:d6:47:
bc:51:d5:84:cd:0d:38:dc:b3:5c:50:98:89:d5:88:69:d5:9a:
c6:29:a5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:03 2024 by rpki-client on console-fra.rpki-client.org