Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/xpxNcpTtgsR4arZ8AFrLPDji0OI.roa
File: xpxNcpTtgsR4arZ8AFrLPDji0OI.roa (raw, json)
Hash identifier: okxW/BntcFTMnxA67OWabKeMg9Iol8Q1Ct0gd78cLSI=
Subject key identifier: C6:9C:4D:72:94:ED:82:C4:78:6A:B6:7C:00:5A:CB:3C:38:E2:D0:E2
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01856C6EFA0F7C34027CB12466852A60391B
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/xpxNcpTtgsR4arZ8AFrLPDji0OI.roa
Signing time: Sun 01 Jan 2023 08:24:50 +0000
ROA not before: Sun 01 Jan 2023 08:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50939
IP address blocks: 93.174.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:fa:0f:7c:34:02:7c:b1:24:66:85:2a:60:39:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 08:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c69c4d7294ed82c4786ab67c005acb3c38e2d0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d7:3c:d6:04:bc:23:bf:ea:1c:f7:75:f4:84:
93:2b:7d:30:7a:df:d7:0f:2b:6c:8d:1b:54:52:49:
eb:eb:be:21:70:26:a4:34:de:b7:cd:12:c8:5a:72:
1e:71:74:dd:87:84:6d:aa:df:9b:7c:fd:b0:07:35:
5b:e6:5f:87:24:5c:1c:7b:03:58:bf:29:48:00:d0:
31:38:1a:84:b4:f1:81:fa:16:5d:f4:60:f9:a7:7e:
66:eb:18:92:65:13:d6:05:e0:b1:91:39:96:7d:50:
25:1a:1c:cc:e1:a3:26:07:4c:3a:29:10:2c:30:23:
d6:e9:eb:b7:52:2b:79:1b:ff:2c:64:71:fd:44:aa:
23:9e:40:11:b8:db:89:a1:1d:68:a4:23:96:3e:45:
3d:97:57:ac:62:92:d2:ae:31:38:18:8f:f6:7f:f9:
48:25:28:56:52:26:db:fa:33:6b:79:2a:a0:70:08:
eb:17:13:1c:45:2b:23:ba:16:d5:05:2d:67:e5:a6:
b9:ab:48:ba:1e:6c:0e:4c:67:32:f0:42:f0:7a:c5:
b0:65:a8:24:dc:43:df:85:51:19:d6:56:a5:ee:8c:
91:f2:aa:39:d0:99:30:c6:63:c8:24:f1:a0:ce:e2:
ad:0d:d8:7f:f0:6a:24:9b:e2:0d:3b:a9:a6:14:bb:
77:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:9C:4D:72:94:ED:82:C4:78:6A:B6:7C:00:5A:CB:3C:38:E2:D0:E2
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/xpxNcpTtgsR4arZ8AFrLPDji0OI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:f2:de:0c:36:aa:cb:2f:fd:86:6b:ea:9d:bc:60:4d:de:24:
bb:3a:d1:9f:c6:29:0f:97:3b:01:40:91:df:f0:67:f5:80:eb:
65:f4:4d:f2:a2:bb:f0:ff:d8:62:d1:52:e8:61:cf:46:31:bb:
0b:db:c1:33:f2:e7:26:48:7b:bd:ff:b0:d3:92:de:2f:eb:be:
19:2b:f8:9b:d7:6d:46:59:77:72:09:1d:bf:0a:13:3f:93:6f:
07:88:ff:57:82:74:23:12:5d:e4:5f:9d:bf:b3:c0:21:43:eb:
fe:04:38:e6:7c:84:69:44:c0:80:05:3d:b3:1f:4a:62:bd:e3:
92:eb:23:b4:07:2f:6c:d1:dd:f7:d1:9b:bb:2e:55:c2:ac:41:
1f:cc:3c:03:92:75:77:f6:b3:bf:cc:b9:93:0b:26:e0:a1:47:
87:14:43:9d:17:fe:d2:50:d8:e8:f7:ce:07:a8:60:69:fe:f2:
a7:4d:0e:72:11:3f:1a:09:21:af:b3:2c:6c:dd:e3:da:64:2f:
7b:ea:71:f8:30:29:4c:c5:a5:96:a9:0c:bd:eb:3f:8a:64:46:
d7:57:d7:52:96:4b:0c:88:3a:f7:1f:a3:9a:d7:dc:98:36:94:
ae:ee:04:70:44:8e:fc:d4:c0:1e:a0:9c:eb:24:87:20:11:0c:
df:03:04:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:28 2024 by rpki-client on console-fra.rpki-client.org