Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/xe-9O8G0iVv9ycEz8uoppC_QZXw.roa
File: xe-9O8G0iVv9ycEz8uoppC_QZXw.roa (raw, json)
Hash identifier: nydCkdAYzd4Kad9sh960IFI6ZFunrVUKJluoeUJxSFM=
Subject key identifier: C5:EF:BD:3B:C1:B4:89:5B:FD:C9:C1:33:F2:EA:29:A4:2F:D0:65:7C
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AD86443F90248520D6228BF1662B5
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/xe-9O8G0iVv9ycEz8uoppC_QZXw.roa
Signing time: Mon 02 Jan 2023 17:15:08 +0000
ROA not before: Mon 02 Jan 2023 17:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206787
IP address blocks: 185.176.84.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:d8:64:43:f9:02:48:52:0d:62:28:bf:16:62:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5efbd3bc1b4895bfdc9c133f2ea29a42fd0657c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6e:ac:a1:bc:65:ab:65:22:b2:17:ce:3a:53:
34:1f:f6:b7:98:df:26:02:16:59:04:2f:84:7c:b8:
9e:b9:b0:3b:ff:bb:0b:6c:87:d6:09:65:1b:7c:2c:
52:4a:f6:23:42:51:ef:ef:70:f8:1c:87:0a:89:05:
80:a4:9b:55:c6:e3:ca:53:95:b1:c2:a3:f2:7a:6e:
8e:99:48:20:34:50:41:4b:24:f9:73:6b:8c:60:e9:
95:4f:b9:b8:fc:74:d7:a0:0c:3a:6e:a2:b2:e1:1e:
ff:05:b2:44:ea:82:15:37:23:4a:7f:21:10:12:41:
0f:56:37:44:e3:4c:27:92:9b:ee:7e:c6:2c:ff:8a:
d1:bc:69:42:aa:4b:00:d7:f8:c5:ea:0d:67:6e:59:
fc:23:66:7d:f4:95:e4:b1:0e:b6:8c:9a:e5:46:e4:
9b:9d:21:62:f7:ee:cf:c9:fb:12:24:74:d2:b2:2b:
69:72:f7:98:0d:ce:34:e0:0e:a2:32:b7:98:2d:8a:
d8:0b:b3:9b:c6:7f:d9:d5:36:38:d0:aa:6b:06:10:
ec:b8:41:4e:d7:55:74:60:60:d4:2b:6b:19:09:ad:
47:66:84:6a:46:8b:19:df:34:05:34:70:d4:e3:a2:
c0:fe:f9:2f:f1:b2:6c:ca:5a:45:11:f2:04:c3:2b:
00:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EF:BD:3B:C1:B4:89:5B:FD:C9:C1:33:F2:EA:29:A4:2F:D0:65:7C
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/xe-9O8G0iVv9ycEz8uoppC_QZXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.84.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:24:8d:f8:5e:fd:cc:4f:67:cb:11:ed:08:4a:50:25:c8:a8:
6a:5a:ef:f4:65:f1:de:cc:81:d8:5a:0f:40:7d:1c:2f:cf:8e:
8f:3d:d0:b9:78:6c:84:80:ea:27:eb:94:29:af:29:bb:a9:ec:
58:22:0a:05:bb:bc:55:3d:7c:1e:00:ba:5f:9e:86:9d:62:46:
d6:e5:61:8e:97:f6:58:db:8a:0b:51:c8:f7:55:b3:76:bf:c5:
f3:b0:6f:24:58:6a:48:8f:60:89:7d:12:c2:e3:ba:f2:2d:4a:
b7:c0:69:8a:22:3f:a6:1d:07:bb:89:b1:17:f8:38:05:ef:6e:
38:f0:20:b6:05:c5:d6:d0:e7:2a:ca:3b:06:86:f6:d5:f5:7e:
25:56:1d:45:2d:5a:1a:57:50:f2:53:c0:92:37:03:5f:9c:c6:
f6:fd:9d:1c:89:c0:74:e0:b4:b2:ab:4a:d6:b5:56:d6:4f:49:
79:38:96:9d:f0:78:47:87:48:7c:90:d2:16:8e:53:03:cb:41:
66:9f:8b:98:cb:f7:da:ca:b4:ef:87:44:cc:1b:11:38:27:4d:
0e:a7:21:1c:fb:9b:25:12:18:8d:5b:15:46:9f:c6:3a:b3:e4:
32:52:07:90:4e:15:dd:45:0b:7d:7a:46:a1:0f:08:f1:af:33:
7b:d2:cd:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org