Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/XkD6hI_KZMoJQKkS_8-swtqzxU4.roa
File: XkD6hI_KZMoJQKkS_8-swtqzxU4.roa (raw, json)
Hash identifier: TWLXNjkv/DV6RRLz2j3SFfYsZdQZB14DpOh4hX4IUck=
Subject key identifier: 5E:40:FA:84:8F:CA:64:CA:09:40:A9:12:FF:CF:AC:C2:DA:B3:C5:4E
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 018A648898F7CD8E0033E20D5062E553ADD1
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/XkD6hI_KZMoJQKkS_8-swtqzxU4.roa
Signing time: Tue 05 Sep 2023 08:49:48 +0000
ROA not before: Tue 05 Sep 2023 08:49:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 185.110.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:88:98:f7:cd:8e:00:33:e2:0d:50:62:e5:53:ad:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Sep 5 08:49:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e40fa848fca64ca0940a912ffcfacc2dab3c54e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:30:72:4d:38:ec:62:60:79:97:e3:80:b4:e0:
65:79:7f:4e:e9:f7:65:c7:9e:88:dc:7e:82:dd:9c:
f4:f2:41:83:e2:11:25:90:1b:bc:d5:67:d8:1b:e2:
62:8a:d8:d5:df:18:84:12:96:e9:1a:00:7e:66:e1:
0f:22:de:73:1b:62:0c:51:9a:f9:00:6e:9c:e7:b2:
cd:76:c9:c6:94:7e:7d:7b:10:4f:d4:59:2f:a9:96:
85:83:73:ad:40:33:2c:d7:6b:f8:69:d4:2d:99:94:
13:eb:43:04:c9:b2:7d:e0:59:58:4b:2d:ee:5f:2c:
8a:e9:04:81:a7:e6:b1:68:f3:7d:36:fb:71:57:c7:
df:45:2f:09:16:39:ab:fd:06:1e:6b:3a:73:1e:7a:
9c:a9:a0:94:73:81:6a:94:2a:eb:04:56:36:50:14:
bb:c0:68:54:f6:c5:b9:52:b2:31:71:bb:51:f6:0a:
8e:13:9d:3c:9c:e0:80:62:f6:9d:f7:ab:25:d2:5b:
b8:2e:42:d9:da:e3:6a:5c:b3:f6:9a:b3:7c:2f:dd:
11:36:36:06:b0:42:6f:44:ae:e1:0b:20:5f:9e:4f:
fe:57:08:90:05:0d:4d:48:d6:a1:51:6a:05:2f:2a:
a1:35:f2:2b:3c:e1:06:36:8a:48:03:be:11:d4:47:
10:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:40:FA:84:8F:CA:64:CA:09:40:A9:12:FF:CF:AC:C2:DA:B3:C5:4E
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/XkD6hI_KZMoJQKkS_8-swtqzxU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.62.0/24
Signature Algorithm: sha256WithRSAEncryption
42:94:55:48:99:a7:6c:bd:f4:9e:11:0a:36:40:5a:cf:4f:87:
f1:19:9e:21:60:92:01:1e:d5:93:a8:bb:11:1a:fb:51:a8:07:
81:32:a3:6d:f9:c4:68:92:b6:73:2a:4a:a2:e2:66:42:2b:06:
ae:ea:56:7c:9d:06:bb:dd:f3:72:d8:86:d7:cc:21:45:cc:2f:
2d:07:50:f3:e9:9b:64:f6:48:f9:60:2d:21:73:3d:bf:1e:c1:
76:60:af:5f:67:6f:b7:76:33:7d:d9:aa:22:ad:a2:7e:fc:8e:
7c:75:d8:c1:d8:63:7b:b6:08:4e:7b:c8:b4:84:5a:7e:c0:08:
2c:ca:9f:1e:2b:a5:b5:79:50:44:99:cc:b2:51:d3:56:e1:63:
12:a7:3b:28:f7:de:27:90:a9:7d:d1:8a:e0:90:b9:a1:f6:fb:
70:c7:01:de:12:92:ef:6b:c2:9f:cd:91:ce:e4:9b:f0:3d:da:
d8:62:c4:8c:63:80:4e:f4:2c:38:dd:81:20:7a:87:e7:0a:0f:
6b:06:72:1f:a3:63:33:b5:c7:f5:33:1c:df:26:2a:7f:e4:56:
a9:94:4d:5f:2e:65:c5:55:37:f0:c5:69:6c:52:b3:6a:29:6c:
4c:12:75:e4:e0:13:22:45:bc:95:3d:87:7c:83:86:5e:e6:cc:
c7:4c:b9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 10 17:09:48 2023 by rpki-client on console-fra.rpki-client.org