Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/XGfDhKX3ssIgGK1L19tD-kEmymM.roa
File: XGfDhKX3ssIgGK1L19tD-kEmymM.roa (raw, json)
Hash identifier: WzYswQa22MEX84Vi1V1LGks3p6p5gnqmA9qbajtABds=
Subject key identifier: 5C:67:C3:84:A5:F7:B2:C2:20:18:AD:4B:D7:DB:43:FA:41:26:CA:63
Certificate issuer: /CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Certificate serial: 018685B67FBAC10CB0BB0B87A3EB505EE8A0
Authority key identifier: E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/XGfDhKX3ssIgGK1L19tD-kEmymM.roa
Signing time: Fri 24 Feb 2023 23:16:15 +0000
ROA not before: Fri 24 Feb 2023 23:16:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398962
IP address blocks: 176.125.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:85:b6:7f:ba:c1:0c:b0:bb:0b:87:a3:eb:50:5e:e8:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Validity
Not Before: Feb 24 23:16:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c67c384a5f7b2c22018ad4bd7db43fa4126ca63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b6:8b:c2:ca:a6:54:60:32:1a:3f:ca:7d:d1:
dc:ec:13:e0:90:e9:fc:ea:4e:8e:11:f0:e0:46:82:
1b:13:b8:a3:1e:61:06:cf:cf:b5:d5:67:2a:5c:20:
29:16:18:e7:b6:a3:88:fc:7c:a3:29:6e:1a:82:e4:
b5:c6:1e:bc:a6:ae:51:2f:62:23:19:e1:f1:99:0a:
54:d3:18:9c:bb:8c:e5:c5:5a:59:be:ca:c4:6a:09:
e9:42:18:e3:2d:fe:67:1e:97:05:d5:c4:1b:38:d0:
72:a6:03:04:c8:87:c5:30:22:9a:9e:71:f2:7e:4a:
15:6d:15:d5:28:8d:40:14:c1:15:ee:69:c4:58:56:
44:05:7f:ff:87:c3:33:cd:ce:ef:a4:dd:0b:6c:98:
8b:8b:99:8e:06:2d:45:53:0d:a4:9e:d9:29:19:07:
73:28:a9:53:35:36:b4:ff:d8:d7:10:14:f0:b9:69:
4c:31:87:c6:25:fa:51:58:c2:38:7a:03:fb:b2:8f:
17:97:5d:af:d9:b4:8c:8a:85:7f:cf:b0:82:bb:58:
2d:f1:de:9a:cd:9c:82:26:16:65:b8:f7:13:af:81:
43:9b:30:37:50:d4:1d:8b:29:55:fa:03:af:cb:17:
78:4c:9d:d1:c7:df:69:67:d2:ac:fb:fb:a0:39:1e:
42:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:67:C3:84:A5:F7:B2:C2:20:18:AD:4B:D7:DB:43:FA:41:26:CA:63
X509v3 Authority Key Identifier:
keyid:E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/XGfDhKX3ssIgGK1L19tD-kEmymM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.236.0/22
Signature Algorithm: sha256WithRSAEncryption
34:90:6f:69:a6:32:19:29:61:fa:52:42:4a:dc:f6:e4:6b:c3:
f8:2c:21:dc:f6:e8:c1:dc:39:21:8d:0f:98:cd:05:66:47:6a:
54:ad:e7:56:39:56:06:9b:71:f0:07:16:fc:10:f8:35:14:fa:
d3:62:58:f8:56:96:da:1e:37:89:59:81:10:b9:23:a1:85:19:
fe:58:0c:61:4a:67:79:66:2b:0f:f9:6b:fd:24:ef:aa:60:87:
06:8d:7b:34:d7:4a:7f:f4:ee:3c:c5:4a:a5:5a:a5:2d:f4:58:
19:f1:35:c9:80:64:26:60:f2:97:b6:09:55:2b:18:00:a7:e2:
e0:d6:91:b3:7d:4e:3e:88:0a:b5:01:ef:ef:08:bf:c5:f8:04:
4e:7c:ad:61:d9:ef:9c:1d:50:d2:21:82:c6:20:7b:a6:81:40:
33:b3:e0:df:75:c0:d7:97:9e:01:d6:93:c1:b7:57:70:24:a3:
0a:38:2a:95:fa:e0:5f:5a:f5:ef:02:41:77:e0:e8:94:18:4d:
10:53:98:87:95:ca:18:e1:b3:26:e6:e9:b6:60:57:89:0e:ed:
3f:00:81:29:3e:7b:7c:7a:a8:72:b5:b0:16:1e:db:4a:94:12:
bf:88:cc:50:48:7a:26:64:ac:11:93:eb:a1:60:63:61:e7:7e:
1d:1f:0f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:57 2024 by rpki-client on console-ams.rpki-client.org