Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RXGPyiWzNQX74JXMB3XZN_iWelc.roa
File: RXGPyiWzNQX74JXMB3XZN_iWelc.roa (raw, json)
Hash identifier: q4ooCgx8DGtlYVdDDGoocnNufpGpTNGuqMKxyRHwpiw=
Subject key identifier: 45:71:8F:CA:25:B3:35:05:FB:E0:95:CC:07:75:D9:37:F8:96:7A:57
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01882F7B5F487B3F82794B733699562BC5DA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RXGPyiWzNQX74JXMB3XZN_iWelc.roa
Signing time: Thu 18 May 2023 15:29:54 +0000
ROA not before: Thu 18 May 2023 15:29:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 271537
IP address blocks: 185.230.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:7b:5f:48:7b:3f:82:79:4b:73:36:99:56:2b:c5:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 18 15:29:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45718fca25b33505fbe095cc0775d937f8967a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:34:aa:c3:c3:c9:dc:c5:5e:7e:57:36:71:fb:
2f:8f:33:ec:8e:f3:ce:1e:1a:77:2e:da:57:58:2c:
9a:d7:7b:58:a9:1a:dd:89:7d:c5:24:e4:96:81:9e:
7f:73:7b:d8:f1:09:8a:2b:59:9f:97:0d:23:64:f7:
b6:f5:bd:5d:bc:e2:be:96:8a:8a:c0:9e:28:6d:55:
46:aa:9d:2a:34:08:4c:5c:f3:be:19:c0:3e:7d:bf:
31:4a:0c:1e:af:93:3a:e7:2f:5f:67:eb:88:3b:25:
7a:75:37:cf:77:75:f5:32:0a:ab:ac:12:1c:1f:ed:
6f:73:52:0f:bc:1d:77:e1:e5:83:d8:d8:b6:b8:e1:
77:45:16:2c:f8:56:f8:1f:5d:11:c6:43:96:af:f9:
0d:03:09:2e:7d:6a:78:40:e4:15:32:67:71:08:b1:
b2:8b:de:2a:d7:e2:01:de:37:29:66:66:49:93:ab:
02:e4:09:4f:65:2b:af:b7:87:b8:1d:3f:d8:31:18:
17:af:cc:5e:36:71:3a:30:15:a1:14:11:b6:3c:c9:
01:4e:8e:14:78:20:0d:ac:8b:1e:ed:32:2c:16:66:
2d:a7:7c:8b:f3:ac:3d:f9:93:03:34:0d:ae:f7:3a:
2b:8b:64:a8:22:32:3d:ff:48:87:f0:b7:6a:ed:1d:
04:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:71:8F:CA:25:B3:35:05:FB:E0:95:CC:07:75:D9:37:F8:96:7A:57
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RXGPyiWzNQX74JXMB3XZN_iWelc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.53.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b7:ac:d5:ea:49:eb:f5:ee:43:8f:78:ec:aa:d1:95:54:23:
b4:7d:2f:a8:37:84:97:2a:ae:6d:16:f4:31:50:56:df:e0:d2:
64:80:88:f0:bc:82:fc:03:43:5b:4f:4e:e1:7f:27:2d:fc:28:
5a:b1:dc:50:b1:71:85:e0:1e:6a:47:85:9a:3f:df:84:f0:75:
db:85:6f:30:87:02:21:79:61:55:1e:b7:35:ae:aa:e0:92:53:
f4:32:c1:c8:31:f7:ca:10:83:9b:86:07:a0:92:e0:4c:b4:10:
7c:b5:66:22:88:98:55:f1:c1:0b:8e:49:6f:fe:2e:c7:00:bf:
d3:c4:5d:62:95:f0:c3:99:19:fe:95:e9:db:0b:17:bd:fd:24:
2f:f3:69:66:db:cc:01:bf:73:b0:0a:28:69:19:dd:62:4a:0f:
8a:8d:4d:49:3c:3a:a4:9e:b6:fc:f4:8b:4c:07:15:e6:f2:b1:
fd:bf:76:e4:b8:20:42:8c:7a:f8:fb:07:44:41:77:3c:bd:12:
c8:5e:c8:43:08:49:6e:da:5b:34:82:e8:6b:24:c6:4d:51:32:
e2:a6:96:0f:b9:e8:88:86:88:4c:80:b3:09:29:73:d0:31:20:
46:27:69:c4:af:75:e9:a5:ee:87:a4:75:e6:5c:75:f4:76:4e:
ec:87:b4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org