Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/X5oxDmk04NGnwVYw61gkYaI8gVQ.roa
File: X5oxDmk04NGnwVYw61gkYaI8gVQ.roa (raw, json)
Hash identifier: XXmXWnisqZiRFAGbnLd02D+HxUNq8S5eH/jTDAsreig=
Subject key identifier: 5F:9A:31:0E:69:34:E0:D1:A7:C1:56:30:EB:58:24:61:A2:3C:81:54
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C231B1069D1F0146401849498B452
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/X5oxDmk04NGnwVYw61gkYaI8gVQ.roa
Signing time: Mon 02 Jan 2023 05:54:58 +0000
ROA not before: Mon 02 Jan 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50340
IP address blocks: 45.8.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:23:1b:10:69:d1:f0:14:64:01:84:94:98:b4:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f9a310e6934e0d1a7c15630eb582461a23c8154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f4:f1:ec:4f:28:ca:a5:fe:f0:b5:37:c4:e8:
27:7a:40:93:26:b8:41:76:d7:b7:f4:b5:60:a7:ab:
7f:7b:ff:34:84:e0:17:0c:46:28:3d:b6:5a:4d:cf:
02:8a:c9:b8:af:37:4d:e8:36:24:60:a2:51:11:88:
09:57:4c:79:59:f0:ed:da:fa:27:c6:16:7f:f2:b7:
5b:74:af:52:c9:d7:bf:83:e4:ab:a2:4d:db:d2:db:
73:8d:08:08:30:dc:54:93:e1:3e:95:4f:23:aa:7e:
af:2d:aa:e1:dd:7a:26:c4:d4:83:61:9a:e4:13:6b:
03:30:d4:3f:e6:5f:eb:4d:c3:c9:7d:b4:12:8b:dc:
ed:fb:e1:6e:d7:f7:0f:61:64:c3:c5:46:f7:69:e6:
57:1d:70:e6:8e:d2:26:f1:c6:f2:b1:5a:ad:15:aa:
e7:ad:15:83:15:3e:04:a8:77:89:91:b8:d7:1c:d6:
ab:ba:9c:87:e0:d8:bb:00:ba:a3:89:ed:8f:c7:71:
23:a9:3d:88:44:35:79:40:69:c6:cd:0b:dc:01:b2:
c0:e5:8f:f4:33:ce:64:6d:35:e0:c7:8d:05:66:60:
6f:2d:ca:bf:a2:7a:f6:7a:37:c9:b6:57:94:08:49:
03:72:36:94:5c:f2:05:e1:96:01:1b:64:f1:47:48:
6c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9A:31:0E:69:34:E0:D1:A7:C1:56:30:EB:58:24:61:A2:3C:81:54
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/X5oxDmk04NGnwVYw61gkYaI8gVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.208.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:b9:34:08:d3:34:45:1e:9d:75:cf:53:65:49:5b:10:6b:ec:
01:73:5f:67:d7:5b:f4:d7:83:3b:e6:c3:88:5f:41:a0:05:2a:
af:08:b9:e8:30:39:21:88:f9:dc:10:85:06:e4:c2:b4:b7:b4:
cd:a4:4d:9a:f8:92:b8:51:9d:ec:36:b5:02:4f:e7:5a:e4:28:
a8:a8:65:b6:a9:13:22:4a:66:eb:af:c8:08:03:ab:6b:34:c5:
2c:f9:db:1c:a9:cf:9c:be:0e:28:59:b4:15:51:c7:65:4f:3f:
b3:61:a9:e5:ef:22:2b:6c:62:fa:3e:8b:f7:e3:d4:66:4b:df:
07:fd:8e:b1:87:8b:15:08:6c:1b:fd:6a:90:c2:f1:84:95:12:
1a:fb:36:9a:c1:74:57:aa:e6:01:bc:62:33:24:28:c9:f7:6b:
0b:81:aa:0d:f3:ea:33:b0:76:e4:ce:a4:ae:46:c9:13:1b:0e:
06:10:18:45:ae:cc:6f:42:99:62:72:ac:0f:4d:32:c8:d2:52:
19:1a:0f:46:e8:ac:ef:7b:78:45:43:49:a3:44:43:93:d5:fe:
5d:55:8a:1b:9c:cb:ba:a3:fd:8e:d8:d9:0c:ff:71:0e:96:13:
a3:9a:91:8f:97:67:bc:07:15:88:9c:80:0e:c9:37:9c:3f:3a:
d3:46:f0:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org