Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/xoLoh8_YV0EUiWZSrC7xCqywMVo.roa
File: xoLoh8_YV0EUiWZSrC7xCqywMVo.roa (raw, json)
Hash identifier: KfbrkRZzNjeZWqmIY9eSbNISfDM8BzNo4YQDq/JBlR8=
Subject key identifier: C6:82:E8:87:CF:D8:57:41:14:89:66:52:AC:2E:F1:0A:AC:B0:31:5A
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018A0F11E59714FEF20593E7A5CF64A0BFA5
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/xoLoh8_YV0EUiWZSrC7xCqywMVo.roa
Signing time: Sat 19 Aug 2023 18:32:25 +0000
ROA not before: Sat 19 Aug 2023 18:32:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 176.105.228.0/24 maxlen: 24
81.28.253.0/24 maxlen: 24
91.238.92.0/24 maxlen: 24
45.132.80.0/22 maxlen: 24
91.244.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Sep 2023 04:38:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:0f:11:e5:97:14:fe:f2:05:93:e7:a5:cf:64:a0:bf:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Aug 19 18:32:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c682e887cfd8574114896652ac2ef10aacb0315a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1c:62:9e:39:55:fb:03:11:41:3a:fe:62:e1:
da:dc:47:a1:fb:48:b7:09:2a:62:8b:9d:fc:db:26:
8b:53:dd:59:f2:f9:7a:bf:17:8c:c6:67:9d:80:b7:
f2:2f:53:be:7d:25:36:e8:9c:9a:b4:89:27:f2:08:
8b:b2:82:8b:d9:05:06:63:a6:b2:ef:d4:b8:5b:dc:
81:30:15:6e:a1:3b:fd:bc:ae:e6:81:c4:b8:f0:e7:
39:9c:45:32:03:33:4f:aa:58:fd:14:79:c7:e6:c5:
25:f4:3b:f4:93:ff:ba:08:03:73:0b:ef:01:da:3a:
39:bc:7f:21:96:d1:75:0e:0f:24:2b:e7:8c:a4:5b:
7a:43:51:b2:d2:c7:ac:8d:c3:df:64:22:e5:cc:1e:
f3:7b:be:19:2f:28:20:b0:65:98:aa:65:d0:22:e4:
53:54:1a:ca:85:62:b8:f2:f5:d3:30:e6:22:5a:88:
6f:e9:61:ed:bb:b7:0c:20:4e:71:ec:5a:8c:27:6d:
2b:2e:f5:3e:aa:20:1a:42:ef:db:e3:eb:b0:5b:72:
04:68:94:8b:b9:df:73:ef:65:ef:9f:00:e8:a6:f1:
c1:7a:b9:50:7d:3a:0c:10:6f:65:dc:f5:43:0c:ba:
0e:96:29:87:09:28:60:99:e4:f6:43:76:9b:92:1e:
86:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:82:E8:87:CF:D8:57:41:14:89:66:52:AC:2E:F1:0A:AC:B0:31:5A
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/xoLoh8_YV0EUiWZSrC7xCqywMVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.80.0/22
81.28.253.0/24
91.238.92.0/24
91.244.198.0/24
176.105.228.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:d4:7a:fc:aa:60:fa:94:3f:06:f3:b3:05:cd:6f:8c:c2:dc:
14:89:86:5e:b2:b3:3d:9b:74:7f:b7:b4:e7:b7:20:2d:1b:8c:
77:0c:d4:74:03:2a:0e:c9:3d:76:5b:c3:5b:0d:29:65:3e:6f:
01:5e:27:00:99:de:cc:06:a1:6f:5b:69:42:f6:81:81:ef:5a:
25:ac:f9:c4:f4:4b:d1:07:11:e2:61:ff:1b:a4:3b:92:1a:c7:
40:59:f1:f5:4f:14:31:ea:ee:4e:e6:99:19:5c:b2:28:e5:1b:
48:ca:0f:f4:93:a1:ae:67:b9:e9:d4:7a:7e:0b:9b:73:7b:73:
c4:b3:cd:9c:fc:c2:63:d6:5e:5d:b0:c4:d6:5f:ed:6a:53:f7:
25:f3:ae:cb:3b:5d:39:d0:b3:63:2a:ea:f3:1f:e3:1f:8c:22:
7d:ea:28:44:bd:73:cf:e1:5a:6b:3f:38:0f:3e:02:03:c2:ad:
52:b3:0c:77:8a:d2:c9:70:16:a0:85:ea:7a:25:08:bc:4a:59:
be:b5:ca:a7:1f:c4:65:50:12:1b:d6:2e:53:cf:85:6c:3f:26:
bd:bd:08:41:c9:91:12:e7:e7:27:06:99:ea:d0:9d:ca:c9:1f:
82:6d:9a:88:d5:ae:39:23:16:fe:db:00:29:bb:a4:16:d8:37:
35:24:3b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org