Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/a72a92-568b-4327-9c1d-6681f916e554/1/xzbq4nG4udF1zzFjBigqFJJenyU.roa
File: xzbq4nG4udF1zzFjBigqFJJenyU.roa (raw, json)
Hash identifier: sLYKk80dDUQBCTqH56/atcKBiiELxQTOy6iUamp38Vw=
Subject key identifier: C7:36:EA:E2:71:B8:B9:D1:75:CF:31:63:06:28:2A:14:92:5E:9F:25
Certificate issuer: /CN=56d57f6cf28c982c1d3ff6c5257f399e9b955bdd
Certificate serial: 018948E801A31B25FC29D085810B70EBDD2F
Authority key identifier: 56:D5:7F:6C:F2:8C:98:2C:1D:3F:F6:C5:25:7F:39:9E:9B:95:5B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtV_bPKMmCwdP_bFJX85npuVW90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/a72a92-568b-4327-9c1d-6681f916e554/1/xzbq4nG4udF1zzFjBigqFJJenyU.roa
Signing time: Wed 12 Jul 2023 07:01:51 +0000
ROA not before: Wed 12 Jul 2023 07:01:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211612
IP address blocks: 94.76.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jul 2023 07:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:48:e8:01:a3:1b:25:fc:29:d0:85:81:0b:70:eb:dd:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56d57f6cf28c982c1d3ff6c5257f399e9b955bdd
Validity
Not Before: Jul 12 07:01:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c736eae271b8b9d175cf316306282a14925e9f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:70:e7:ef:22:f4:e0:08:c9:27:41:2c:d9:15:
6a:d8:5d:7b:89:8a:e7:66:65:f9:93:10:14:bd:29:
24:58:64:70:94:33:36:62:7b:57:ca:5b:1a:46:75:
2c:69:e7:da:b7:56:50:50:a9:fa:ca:1a:6c:b2:c1:
48:81:a1:f7:2d:7d:06:37:0b:cc:04:e7:12:d8:4c:
06:01:da:ba:68:99:1b:75:31:a7:69:b4:c2:36:dc:
7a:d6:49:c0:ac:6e:8b:0d:c5:03:e1:4e:81:8b:59:
35:5b:68:b0:b3:a6:cd:44:69:41:2c:f5:a6:9c:c7:
1b:83:56:a6:6e:47:3b:8a:43:5b:9f:83:2f:00:ed:
b4:be:81:00:90:5a:8c:9e:37:59:c0:d0:c1:fc:e2:
d3:e7:2d:4f:d9:4a:5c:3a:c3:ca:66:de:06:c6:cc:
dc:b8:7e:42:58:50:a6:58:6a:d5:41:a4:11:c3:10:
ce:b9:a4:22:58:4c:e1:30:9a:92:f9:30:91:50:ac:
00:7d:91:fa:df:9a:9a:67:10:c9:32:28:ee:ae:1f:
a0:95:8c:77:5f:53:d3:16:6e:58:09:0f:7b:95:e6:
05:d7:1b:2e:b2:7a:96:d5:c2:4d:84:c7:0b:2f:54:
10:e7:ce:44:aa:0d:f0:2a:85:45:81:52:65:e9:62:
7d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:36:EA:E2:71:B8:B9:D1:75:CF:31:63:06:28:2A:14:92:5E:9F:25
X509v3 Authority Key Identifier:
keyid:56:D5:7F:6C:F2:8C:98:2C:1D:3F:F6:C5:25:7F:39:9E:9B:95:5B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtV_bPKMmCwdP_bFJX85npuVW90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/a72a92-568b-4327-9c1d-6681f916e554/1/xzbq4nG4udF1zzFjBigqFJJenyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/a72a92-568b-4327-9c1d-6681f916e554/1/VtV_bPKMmCwdP_bFJX85npuVW90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.76.40.0/24
Signature Algorithm: sha256WithRSAEncryption
38:2e:ff:ee:86:fd:dd:e7:04:8a:58:75:a4:a4:45:86:19:dd:
2b:27:be:2b:ed:7b:1e:5c:6b:8a:d9:bc:0e:21:c2:ef:66:a4:
5e:23:a9:a7:f7:cc:39:89:1c:15:1f:03:26:c9:d9:6f:a8:bc:
87:84:0e:36:54:0d:6d:c1:fc:50:57:80:40:ad:10:c9:b3:8b:
1e:4b:11:3c:f6:28:ef:25:53:13:a4:ea:67:d5:b9:7d:b4:aa:
f5:62:73:5c:ba:da:d3:51:63:c9:3a:5e:4b:c6:e0:50:0b:08:
fd:86:31:02:8a:67:da:0b:7b:b6:e9:72:70:32:17:96:fe:6b:
5c:27:32:6c:2b:06:bd:9d:48:fd:bd:89:b2:b0:7b:5a:45:9d:
4b:81:72:ba:77:33:17:95:a8:7c:cc:54:47:ea:89:11:2c:42:
b9:db:d4:22:2d:17:ea:40:45:1e:53:69:9f:7e:26:7c:b0:c4:
87:26:5f:36:cc:90:5d:b3:c1:7a:b4:78:30:2f:3a:81:d9:f7:
81:5a:54:8c:20:b0:94:cf:3a:a0:2e:4d:81:09:be:70:87:5e:
55:cf:b9:ad:80:8a:78:12:56:28:e5:6d:d2:9f:9e:03:62:c0:
94:6a:66:34:88:49:c8:f9:f2:78:58:72:47:8c:5a:47:54:0c:
36:cc:75:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-fra.rpki-client.org