Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/XuJkGf4j93ye1uYvW90YDPLH2bU.roa
File: XuJkGf4j93ye1uYvW90YDPLH2bU.roa (raw, json)
Hash identifier: 5wkqQF+J13oc9kG5fHPlAnDBb8HAgoq67mnNEzuDhVU=
Subject key identifier: 5E:E2:64:19:FE:23:F7:7C:9E:D6:E6:2F:5B:DD:18:0C:F2:C7:D9:B5
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 018573B1951F41B1444582425F2472831CDE
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/XuJkGf4j93ye1uYvW90YDPLH2bU.roa
Signing time: Mon 02 Jan 2023 18:14:55 +0000
ROA not before: Mon 02 Jan 2023 18:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42237
IP address blocks: 185.255.122.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:95:1f:41:b1:44:45:82:42:5f:24:72:83:1c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Jan 2 18:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ee26419fe23f77c9ed6e62f5bdd180cf2c7d9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:68:9b:ce:ee:6a:5a:05:76:75:39:12:65:e2:
d7:58:e9:97:7a:ae:f9:1d:a3:fa:5b:38:10:63:d0:
b8:3f:c6:3c:70:2d:16:37:c0:dc:6f:76:f0:b1:da:
f4:02:d2:57:c1:5e:61:05:fd:c9:e7:0d:53:cd:8b:
a4:07:d9:99:37:fa:1e:b5:46:9b:dc:55:0a:55:71:
31:0f:d5:34:95:cf:1b:99:94:d5:3d:33:63:2a:c2:
36:ca:d8:91:55:7f:9a:16:e5:e0:ec:47:6e:6b:f9:
43:c8:13:b1:93:bc:36:87:d5:5b:fb:5b:d0:3a:1d:
7a:56:b4:6f:81:de:2f:92:b4:54:b4:27:18:a9:32:
0c:4c:30:81:ab:f5:b8:1a:40:3f:a2:d5:8a:19:3b:
5b:7a:21:57:15:f6:2c:a3:1e:6b:a6:b4:78:ec:f7:
b5:d3:22:eb:97:d3:99:a9:6c:72:af:af:7b:13:30:
b4:69:68:7c:11:26:62:6a:f6:95:3a:20:7d:a3:56:
ab:53:14:7f:46:4e:91:12:4f:6b:f3:b8:94:11:ef:
a4:e3:1c:4b:70:aa:79:86:89:fd:34:1c:1c:9e:5f:
a0:0c:d7:c0:0c:d4:a2:6f:a3:4e:bd:24:99:74:32:
07:0e:4a:e3:56:58:d8:97:d8:66:96:36:cd:65:8d:
7f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E2:64:19:FE:23:F7:7C:9E:D6:E6:2F:5B:DD:18:0C:F2:C7:D9:B5
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/XuJkGf4j93ye1uYvW90YDPLH2bU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.122.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:4a:39:d2:42:13:54:37:df:8b:ef:e5:ac:ca:f8:f8:2a:d7:
d9:00:c9:2c:37:9e:25:6d:8d:e7:a1:33:fe:57:31:af:da:bb:
8e:5b:84:22:ff:bb:b9:3f:fd:f6:68:1c:7f:a7:eb:4c:8a:54:
41:67:01:82:77:83:d4:06:a2:55:ec:c2:b7:a5:64:fc:0d:47:
16:48:75:87:63:e5:1e:f6:44:a7:09:9f:98:91:03:f9:10:3f:
97:5c:0d:b1:5d:2f:83:bb:ae:97:1d:81:4b:8b:3c:82:18:2f:
a0:b6:31:3a:1f:00:ed:ce:4e:56:5b:9f:ee:ea:c1:46:22:50:
50:f0:94:af:1d:03:14:45:dc:ff:04:04:41:4e:40:75:18:1c:
67:2e:da:cf:12:4e:92:63:e7:d3:27:44:fd:da:45:6a:38:a5:
ed:2b:43:e4:36:c9:46:27:1f:2f:bd:01:71:88:82:d5:6b:86:
e4:58:6b:ec:7c:fa:a2:6e:8c:d9:3b:44:9f:95:93:83:46:bf:
ea:93:af:fb:06:12:74:59:39:02:13:86:55:2f:ae:29:03:60:
f2:76:7b:88:2c:83:1c:38:6e:dc:a9:e2:d3:2f:c2:ad:63:94:
36:44:0e:13:f7:fe:0d:f1:77:b3:37:9e:a0:63:76:9d:79:e5:
85:67:f0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:07 2024 by rpki-client on console-fra.rpki-client.org