Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/xLCCqJhHINiiMVcXqqb-VsXUbMc.roa
File: xLCCqJhHINiiMVcXqqb-VsXUbMc.roa (raw, json)
Hash identifier: 5m6sime+bxgv/9VExEyQQrC0hpvzGrL0yEtJVPc58lM=
Subject key identifier: C4:B0:82:A8:98:47:20:D8:A2:31:57:17:AA:A6:FE:56:C5:D4:6C:C7
Certificate issuer: /CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Certificate serial: 0187EBAF612654014D750F224700D9691E52
Authority key identifier: 25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/xLCCqJhHINiiMVcXqqb-VsXUbMc.roa
Signing time: Fri 05 May 2023 11:32:32 +0000
ROA not before: Fri 05 May 2023 11:32:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16247
IP address blocks: 185.57.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:af:61:26:54:01:4d:75:0f:22:47:00:d9:69:1e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258623ecc8dcb913d10228a9460a86e660cb8fb2
Validity
Not Before: May 5 11:32:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4b082a8984720d8a2315717aaa6fe56c5d46cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:91:2c:f1:55:a5:79:2d:62:83:df:68:43:
bc:c2:22:82:62:96:b0:3f:5e:9c:56:a4:2e:c5:65:
eb:5b:35:43:9b:35:08:17:9c:8a:80:8b:7f:f9:c6:
43:11:cc:f2:8f:9d:f2:30:60:b7:cd:da:93:b1:9f:
aa:de:aa:d4:38:15:f4:b8:22:f3:a8:86:50:07:f4:
c5:82:83:6b:40:0e:b4:16:1e:7b:1f:a1:c9:bc:32:
66:75:5e:e1:0a:3d:94:c5:4f:44:aa:c6:7d:52:05:
5e:c9:3a:9b:ea:14:eb:5d:da:5d:27:6c:c8:28:49:
8a:82:bb:81:90:7b:bb:6b:43:65:aa:25:86:e3:1d:
82:74:70:21:67:31:07:d7:21:b2:73:6b:c3:e5:88:
36:b5:0e:a4:07:08:a9:45:ae:ab:ce:fb:98:fb:5f:
2c:25:8d:43:ca:5f:82:f6:94:bb:24:ca:d3:14:f1:
f3:77:07:d3:d4:ff:4f:06:64:7a:e3:70:44:7e:ae:
29:95:2c:28:fc:9c:5a:31:52:c1:bf:00:1d:d9:78:
42:00:c7:03:32:55:9b:2a:94:0e:7a:93:03:e4:89:
d3:bd:2d:9d:93:c0:81:33:c5:9f:a1:e4:73:16:39:
a0:90:77:36:b2:35:3e:37:ca:61:93:f9:f2:50:86:
fb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B0:82:A8:98:47:20:D8:A2:31:57:17:AA:A6:FE:56:C5:D4:6C:C7
X509v3 Authority Key Identifier:
keyid:25:86:23:EC:C8:DC:B9:13:D1:02:28:A9:46:0A:86:E6:60:CB:8F:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYYj7MjcuRPRAiipRgqG5mDLj7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/xLCCqJhHINiiMVcXqqb-VsXUbMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/96ab95-c2fe-4b93-9a2e-5689ee06e14c/1/JYYj7MjcuRPRAiipRgqG5mDLj7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.76.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b8:1f:71:f7:72:18:2b:b5:cf:be:25:d5:57:fa:c0:08:73:
f4:58:07:d5:ea:5d:b8:c6:68:5f:1e:0f:0f:92:69:f8:40:06:
87:0a:7a:c6:bb:fd:4d:f1:63:43:cb:b6:a4:a7:92:32:96:27:
45:56:58:fe:9c:9a:90:ab:a6:2c:ec:be:84:51:cd:03:c2:2f:
87:74:dd:0a:73:ed:2b:ce:7a:46:e0:da:db:83:9c:e7:21:12:
5a:ef:33:c3:f0:c0:b2:e4:dd:81:f6:82:26:2b:8e:28:de:aa:
fc:df:04:f1:c1:74:4f:d4:66:95:4a:d7:c8:9a:28:e1:cf:25:
c4:20:0c:b9:fa:40:45:72:de:9a:43:44:d4:da:7b:05:41:1c:
43:c8:90:fd:e0:50:fa:eb:8a:b1:63:8c:32:1c:a7:96:41:b9:
f8:88:97:1f:cd:24:0e:6c:03:48:10:cb:8a:04:a5:58:37:df:
1f:ac:f5:e4:bd:2d:c8:23:c2:bc:96:10:cf:57:56:d2:7d:a3:
41:2e:05:d3:dc:9c:c7:92:c0:25:56:bd:d1:27:a0:18:da:74:
89:5e:2f:a5:b4:89:26:03:68:4a:a4:be:55:e4:bf:11:21:ca:
67:51:25:7e:ed:1a:b5:ba:b8:d9:30:03:ef:17:7a:76:64:72:
7a:fb:4c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:59 2024 by rpki-client on console-fra.rpki-client.org