Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/XTXMlyplp-3eGN4JYuKJ50FJ-t8.roa
File: XTXMlyplp-3eGN4JYuKJ50FJ-t8.roa (raw, json)
Hash identifier: 6Vq7A3TG7UU7g0HDKmbXJvdK03L5fTGkZbMulVQgGiI=
Subject key identifier: 5D:35:CC:97:2A:65:A7:ED:DE:18:DE:09:62:E2:89:E7:41:49:FA:DF
Certificate issuer: /CN=7be907dd202152cf1902bedbecb19a2d72ac0859
Certificate serial: 01856B810726AA062360308B44847AFA2C70
Authority key identifier: 7B:E9:07:DD:20:21:52:CF:19:02:BE:DB:EC:B1:9A:2D:72:AC:08:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/XTXMlyplp-3eGN4JYuKJ50FJ-t8.roa
Signing time: Sun 01 Jan 2023 04:04:55 +0000
ROA not before: Sun 01 Jan 2023 04:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43028
IP address blocks: 94.140.104.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:07:26:aa:06:23:60:30:8b:44:84:7a:fa:2c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7be907dd202152cf1902bedbecb19a2d72ac0859
Validity
Not Before: Jan 1 04:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d35cc972a65a7edde18de0962e289e74149fadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:20:20:79:4d:10:cc:cd:0e:82:0e:d0:9d:39:
97:a3:84:37:1b:89:3f:72:83:77:f0:13:f9:95:30:
e9:0f:e0:b0:0c:e4:b3:bc:6d:f5:9a:0c:f2:ae:c3:
db:21:9e:46:6d:6d:50:7f:0e:dc:75:21:4a:f8:2e:
94:3a:d5:f7:7a:aa:62:e5:f9:d8:7b:bf:1c:5b:66:
bc:f1:a4:84:75:ab:62:77:3a:47:7d:2f:fb:55:6d:
d9:3c:ab:c5:2c:ad:32:19:3c:c4:d5:b4:30:67:d5:
64:30:0f:ce:09:d7:f0:18:f9:ab:f7:49:88:54:34:
29:cb:3f:4b:3b:0d:1f:b3:6d:62:4f:4b:64:ce:b6:
15:68:b5:36:ea:13:55:bb:38:cf:12:35:9e:cf:0b:
6c:18:78:74:ef:53:35:aa:19:93:a5:d9:b5:6f:7c:
71:00:9b:e5:d7:c6:99:89:ad:a1:a0:d4:61:ee:e2:
1f:ce:a5:59:cf:ae:76:eb:10:04:b4:e7:6e:73:3e:
5a:6b:8c:ff:62:18:3b:ac:09:05:2c:09:98:77:59:
54:54:ab:db:ac:fb:60:d4:56:9d:0d:d9:95:bf:87:
a4:bb:d4:3b:f8:d3:9f:0c:81:6b:e9:87:3b:d4:e8:
8f:10:8a:a4:1f:a4:6f:dd:4e:0e:18:46:fe:47:17:
df:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:35:CC:97:2A:65:A7:ED:DE:18:DE:09:62:E2:89:E7:41:49:FA:DF
X509v3 Authority Key Identifier:
keyid:7B:E9:07:DD:20:21:52:CF:19:02:BE:DB:EC:B1:9A:2D:72:AC:08:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/XTXMlyplp-3eGN4JYuKJ50FJ-t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.104.0/23
Signature Algorithm: sha256WithRSAEncryption
73:fb:4e:fe:f4:8a:ec:c9:49:f5:58:cd:04:2e:e4:e2:9d:c5:
f4:7f:b9:7b:da:ec:e3:a7:a9:20:78:7c:9c:4d:bb:e6:09:a1:
8e:51:75:fc:b5:68:39:62:c8:95:56:15:79:de:21:c7:68:fc:
00:8a:0d:93:5b:f1:2f:21:d7:ad:4e:03:05:ac:16:a0:16:66:
67:17:12:96:a1:bf:e8:f0:00:c8:7d:a9:f5:7d:12:1b:2f:cc:
27:69:25:b1:3e:d4:42:7c:e9:83:47:f6:21:e9:2b:c4:36:69:
4e:e8:8e:b1:4d:30:da:80:c1:96:12:72:44:e8:ed:36:f4:33:
ff:50:37:1a:d9:33:94:70:04:d1:d8:16:eb:76:a1:47:02:4e:
24:11:28:7d:cf:3c:95:dd:f6:87:54:84:9c:2d:68:9e:92:5d:
cd:5f:d4:2a:4a:7b:38:ad:fa:4f:58:91:de:d2:f8:3a:d9:dc:
7d:fc:60:bf:62:62:fe:03:33:f6:4e:6a:93:69:ab:73:4f:9e:
e2:2d:4e:16:d5:7a:07:b1:bd:de:bf:ca:a9:06:4c:c9:1a:a5:
e6:f0:62:ac:6a:ba:6c:df:67:c9:88:e2:1c:60:8d:5c:38:a6:
75:bd:ce:35:4a:22:a5:9e:1e:51:d1:a2:71:3d:a4:63:4b:ca:
9d:e9:4f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:17 2024 by rpki-client on console-ams.rpki-client.org