Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/xibRnXsibUxKXxcJENd9Gew1lBw.roa
File: xibRnXsibUxKXxcJENd9Gew1lBw.roa (raw, json)
Hash identifier: k/vZRbnfg4gpNIfsVeueJRn1jz3WtsWO/PbLqzQZzVg=
Subject key identifier: C6:26:D1:9D:7B:22:6D:4C:4A:5F:17:09:10:D7:7D:19:EC:35:94:1C
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018571BA33DDF7FB167F54383931C3C9D025
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/xibRnXsibUxKXxcJENd9Gew1lBw.roa
Signing time: Mon 02 Jan 2023 09:05:06 +0000
ROA not before: Mon 02 Jan 2023 09:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 147.185.162.0/24 maxlen: 24
147.185.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:33:dd:f7:fb:16:7f:54:38:39:31:c3:c9:d0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 2 09:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c626d19d7b226d4c4a5f170910d77d19ec35941c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f5:2a:8f:00:1b:04:af:1a:4b:9d:19:b4:43:
35:b0:2b:41:47:b9:00:07:b6:2c:16:56:a1:4d:2a:
69:e7:c9:8a:71:fb:43:b9:3c:ea:90:df:b5:ee:78:
8c:e8:8b:17:d0:6a:23:71:f2:47:ab:38:57:11:1d:
81:b2:9b:92:e2:c3:3c:52:64:be:13:bf:d9:93:ba:
3b:7a:15:b2:e4:6e:cc:65:3a:2a:13:3b:eb:63:0d:
05:75:3e:5c:4c:70:82:43:92:6b:b2:0d:f1:6e:cc:
df:1d:bb:7a:f8:06:ee:92:6f:f7:b1:67:e2:55:fb:
6e:7e:a1:86:97:cf:73:62:60:f0:61:c1:96:c3:4c:
ed:cf:68:3d:7b:ac:18:7a:4a:21:57:53:1f:78:b6:
39:02:db:f1:1a:24:6d:e3:e2:21:ed:5c:b0:38:93:
ae:39:e3:04:28:40:40:1c:39:04:02:23:37:63:8f:
3d:fb:70:aa:f3:3b:98:a5:bc:68:19:ca:5d:98:4f:
75:59:40:58:71:1e:f9:45:ab:16:7f:06:52:94:84:
3e:24:c4:7e:cb:17:bb:33:10:31:cd:e2:2d:5b:ec:
6f:9e:19:34:5b:2e:84:be:df:19:d4:ce:23:a3:1b:
2d:cb:d3:7b:83:89:8d:59:f4:6d:6d:80:7c:10:14:
74:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:26:D1:9D:7B:22:6D:4C:4A:5F:17:09:10:D7:7D:19:EC:35:94:1C
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/xibRnXsibUxKXxcJENd9Gew1lBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.107.0/24
147.185.162.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:05:42:5c:84:04:b9:b9:e0:5d:3d:49:a7:ff:c6:84:64:11:
3f:47:4d:0d:d3:0e:ee:c8:bc:41:cb:5a:07:07:7c:97:d4:86:
d1:b3:e4:42:d3:f9:ae:14:d3:66:e8:6d:a9:ea:03:21:8d:7e:
49:ec:60:6c:52:3a:e9:91:e4:91:dd:06:8c:58:a2:e2:1c:c6:
47:03:c6:26:73:cf:11:7d:f1:fd:0d:9f:87:a7:b2:c5:01:88:
5e:7a:11:95:b8:46:a7:f5:82:54:84:9d:74:6d:b8:a2:0e:a1:
fc:e9:c7:2e:02:7c:d6:66:aa:f9:b7:1e:64:1e:e0:6e:fd:43:
28:78:7e:b8:7e:02:d7:93:ee:4b:08:5c:81:01:d7:ba:8f:2f:
f9:1b:69:05:c6:b2:cd:37:dd:09:67:ec:31:ab:77:b2:bc:39:
30:b8:47:1c:05:84:34:64:d0:2e:40:1a:91:ed:8d:e0:92:27:
84:a5:d6:c9:fb:78:35:27:2e:03:75:17:cf:cd:dd:1a:eb:2a:
66:d8:09:64:50:c5:59:63:1f:a8:70:75:52:95:5b:88:c9:e8:
a2:8a:df:15:14:ff:5e:01:06:11:e9:52:32:f9:af:7a:ff:b5:
93:cb:05:18:7d:87:ae:51:4c:a3:3a:c6:d1:0c:da:be:03:76:
c1:36:7e:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org