Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/XiVwDJA0umuhaEjz_MxuCm1DRMU.roa
File: XiVwDJA0umuhaEjz_MxuCm1DRMU.roa (raw, json)
Hash identifier: +tFihaTskNWp61uxL8oOQUQbVVb6XoB3pObo3/vFQss=
Subject key identifier: 5E:25:70:0C:90:34:BA:6B:A1:68:48:F3:FC:CC:6E:0A:6D:43:44:C5
Certificate issuer: /CN=054d4fe780fe45330780deb6ec384cb9493f2df2
Certificate serial: 01856BF7E1606A944E589A7C5C4F9B370CDE
Authority key identifier: 05:4D:4F:E7:80:FE:45:33:07:80:DE:B6:EC:38:4C:B9:49:3F:2D:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/XiVwDJA0umuhaEjz_MxuCm1DRMU.roa
Signing time: Sun 01 Jan 2023 06:14:45 +0000
ROA not before: Sun 01 Jan 2023 06:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203787
IP address blocks: 185.30.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 10 Nov 2023 12:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:e1:60:6a:94:4e:58:9a:7c:5c:4f:9b:37:0c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054d4fe780fe45330780deb6ec384cb9493f2df2
Validity
Not Before: Jan 1 06:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e25700c9034ba6ba16848f3fccc6e0a6d4344c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d5:02:5f:31:bc:ac:bf:f9:5e:a1:47:49:ef:
32:1b:fe:16:78:66:6e:f8:ae:52:f7:b3:31:f9:31:
58:0f:38:c6:d8:3f:ec:d8:b5:37:1f:a0:72:5e:09:
81:23:82:32:08:7e:2d:3f:6c:3e:c2:85:ed:56:09:
20:e1:ce:f4:1e:6d:c9:00:a2:47:83:9b:4e:42:05:
da:ee:b8:91:dd:0f:73:22:14:32:22:28:5e:3f:3a:
3e:9b:a3:83:d2:db:33:36:5d:e0:43:e3:7b:c9:72:
8a:ea:b0:2f:a7:61:3c:47:56:2d:2c:50:61:5b:2f:
72:7a:86:22:0e:a5:75:b1:32:ba:6c:6c:6b:64:88:
64:f9:ac:98:d7:a7:ea:27:fb:c7:ba:df:e0:54:e4:
0d:95:f6:c0:71:02:26:31:59:56:61:5f:ad:f7:3a:
4e:dc:2f:4d:a8:60:8d:bf:79:de:29:9f:8a:db:ef:
0d:70:95:2c:f2:ae:2c:3a:35:e8:ed:c2:5b:36:67:
95:fc:8a:50:e6:a7:bb:46:f6:e0:64:a6:0c:4a:7f:
14:62:ed:6d:1c:93:9b:ea:81:79:6b:02:c8:f7:a7:
fd:ea:d3:a5:7e:58:8e:4a:47:f2:09:88:44:5b:69:
67:b1:a5:04:6c:a8:f2:4f:a2:d9:a8:26:e0:29:a0:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:25:70:0C:90:34:BA:6B:A1:68:48:F3:FC:CC:6E:0A:6D:43:44:C5
X509v3 Authority Key Identifier:
keyid:05:4D:4F:E7:80:FE:45:33:07:80:DE:B6:EC:38:4C:B9:49:3F:2D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BU1P54D-RTMHgN627DhMuUk_LfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/XiVwDJA0umuhaEjz_MxuCm1DRMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/1f3f11-5499-4c7b-b2e4-051b8984866e/1/BU1P54D-RTMHgN627DhMuUk_LfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.108.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:5c:12:a4:38:eb:ed:4c:5c:98:6c:e1:5e:9f:8b:e3:59:32:
f1:b3:41:13:65:21:dd:a5:f0:10:0e:72:16:39:3c:51:d1:3b:
34:9b:8c:1d:3b:65:c5:d2:58:c9:d2:4c:e3:89:7d:8b:af:de:
be:0a:63:57:56:bd:14:62:f7:b6:2b:41:9e:04:d2:e5:a5:1e:
af:ea:d4:23:8b:12:8b:8f:6b:00:21:c5:94:1d:45:8d:d8:7c:
05:f3:8b:58:6c:79:09:3a:e0:b6:88:f9:72:3a:6d:6c:f3:30:
36:1b:5d:e1:1f:75:45:9f:da:f0:4e:88:54:70:68:13:7d:34:
38:21:be:60:10:ba:4b:a6:75:2e:64:45:29:1d:5e:99:3c:f8:
ec:e8:53:5d:5d:5f:29:fa:f5:79:6a:5e:aa:f0:5f:5b:82:3a:
62:e1:e1:a5:76:df:c9:e6:48:57:31:6a:2c:12:e9:3e:e8:17:
38:6c:d3:fb:a4:a2:d0:9c:54:6b:d0:57:50:43:cf:91:24:fb:
cb:13:79:e0:f6:af:5a:b9:46:56:9a:ec:e1:3e:7a:52:49:82:
b1:42:81:2b:5c:47:b0:40:7a:47:92:df:b4:8d:55:14:3d:a6:
7e:f0:0a:39:40:27:43:56:75:a4:18:77:45:fd:23:e3:9e:8d:
ff:4d:a3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:15 2024 by rpki-client on console-fra.rpki-client.org