Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/XhYQqSjLpeBEqHluyMC5V_FCqbI.roa
File: XhYQqSjLpeBEqHluyMC5V_FCqbI.roa (raw, json)
Hash identifier: VoA8jIrdT995WW/doNzfsLe7W7GDnhX2jxjIyQFgvCk=
Subject key identifier: 5E:16:10:A9:28:CB:A5:E0:44:A8:79:6E:C8:C0:B9:57:F1:42:A9:B2
Certificate issuer: /CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Certificate serial: 018CC4939BEA22BC597D1843A22A70AB73F8
Authority key identifier: 8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/XhYQqSjLpeBEqHluyMC5V_FCqbI.roa
Signing time: Mon 01 Jan 2024 10:30:57 +0000
ROA not before: Mon 01 Jan 2024 10:30:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1725
IP address blocks: 134.206.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:9b:ea:22:bc:59:7d:18:43:a2:2a:70:ab:73:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Validity
Not Before: Jan 1 10:30:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e1610a928cba5e044a8796ec8c0b957f142a9b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:b6:40:0c:61:b1:47:ba:21:b1:e2:2c:84:
30:de:85:f2:07:68:2c:44:66:25:05:fd:01:81:c7:
07:e6:96:da:e2:69:00:c2:d6:5b:56:db:96:f4:1a:
b8:aa:e4:6b:43:36:df:97:47:b0:7e:0e:9d:19:0f:
57:02:b9:52:58:c4:d2:07:dc:65:46:1e:e2:ac:d4:
1e:be:63:96:f7:e4:5f:8d:55:20:b0:60:14:71:48:
4d:27:dc:56:b4:fe:e5:42:26:0a:09:06:7d:05:80:
c9:92:45:37:3b:14:b2:ef:f5:3d:5a:e6:c8:28:fd:
64:87:4e:5f:8f:d5:76:e2:68:87:e1:3a:f3:90:7d:
18:75:0b:c4:54:91:05:34:d5:e2:38:e4:aa:fb:bb:
a9:be:de:3a:5f:22:d0:a2:91:27:fc:d7:d7:37:31:
22:89:2a:e1:63:b3:88:61:e4:c6:00:88:30:59:7c:
26:43:ea:8c:40:4c:c6:2f:fc:be:a2:c4:d7:9d:30:
da:1c:ce:2b:5b:ab:c4:64:03:72:49:95:bd:89:5d:
e7:93:f4:a0:cb:e5:fe:47:89:11:78:91:b5:8d:1d:
d6:ac:78:f7:5a:d5:a0:93:5e:c1:10:3e:5d:31:54:
cd:ec:57:e0:a6:65:24:6f:84:b1:fa:4f:3a:a5:53:
3b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:16:10:A9:28:CB:A5:E0:44:A8:79:6E:C8:C0:B9:57:F1:42:A9:B2
X509v3 Authority Key Identifier:
keyid:8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/XhYQqSjLpeBEqHluyMC5V_FCqbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/jz-ef_6IWDh-0bOn7KdiBe8OIfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.206.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:aa:de:eb:c9:5e:cb:4a:38:49:64:ae:05:2d:ad:a8:9d:59:
01:5c:a6:69:11:90:d5:32:23:e8:22:d3:aa:e4:cf:8f:e9:4d:
6b:c9:f4:8b:f6:ac:22:4d:2e:97:b9:44:bb:46:ca:0b:fc:2c:
47:ec:db:c5:bc:aa:ac:c3:7c:ae:d1:f7:b3:e0:23:99:15:c5:
fe:6d:cb:8e:d4:01:28:af:a3:91:6b:1e:a4:75:a3:ed:75:84:
97:2a:a0:06:c8:e3:d7:9c:fd:ba:4f:17:af:3a:3d:a8:a2:20:
89:62:c2:bc:0b:b0:23:8c:ff:82:10:93:73:a4:14:3d:f1:66:
03:20:27:37:cf:0b:7f:55:d8:7a:30:1e:97:56:57:e4:4a:83:
f7:68:a6:d8:fc:c4:92:67:80:17:95:77:4d:8d:9d:a3:a2:45:
e5:49:4f:ab:8f:6e:11:2e:01:22:68:fa:24:47:86:ae:41:16:
eb:62:5a:26:57:ca:e4:e6:a9:12:bd:03:43:8c:40:3b:01:3e:
92:ed:47:83:3a:3d:e5:eb:8e:fc:41:85:36:94:e7:f6:83:3f:
d8:5b:ed:58:cb:18:ef:e9:27:78:82:10:7b:49:93:c9:8e:58:
12:ed:94:05:7b:7d:11:90:01:4a:00:97:31:d6:ff:4e:0c:6c:
0a:22:b6:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:32:05 2025 by rpki-client