Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/xzABWn9cXeumOYDMcM0VTrVcsMQ.roa
File: xzABWn9cXeumOYDMcM0VTrVcsMQ.roa (raw, json)
Hash identifier: /BKK4ErV1+JzxAMOKcpsx8Go2K6fT3/mWzbWRvXi45w=
Subject key identifier: C7:30:01:5A:7F:5C:5D:EB:A6:39:80:CC:70:CD:15:4E:B5:5C:B0:C4
Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e
Certificate serial: 018B869B71AF23CB4EE6B93EBE0F20C15028
Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/xzABWn9cXeumOYDMcM0VTrVcsMQ.roa
Signing time: Tue 31 Oct 2023 16:40:16 +0000
ROA not before: Tue 31 Oct 2023 16:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60981
IP address blocks: 213.146.186.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:86:9b:71:af:23:cb:4e:e6:b9:3e:be:0f:20:c1:50:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e
Validity
Not Before: Oct 31 16:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c730015a7f5c5deba63980cc70cd154eb55cb0c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:47:42:a1:4a:b9:f0:46:dd:51:92:75:8f:
90:a1:f7:8f:89:81:4e:75:ae:8a:9d:03:83:68:b2:
08:4b:ca:bc:95:dd:b3:cd:bf:ea:01:77:40:27:11:
d8:d3:17:aa:cd:58:e7:f9:f0:c3:c0:78:42:8d:f6:
ee:9a:1e:ab:0d:f7:03:80:20:27:13:ce:cd:4e:b6:
e5:c8:f0:d8:88:63:ac:23:ad:76:2f:da:34:62:d7:
af:d9:85:ae:d5:81:1a:0e:c4:c2:86:9b:1a:75:1c:
dc:7a:3e:85:f7:e5:88:e4:64:12:8c:f7:76:ae:f6:
a4:6f:e2:f2:d6:3c:f9:48:e1:b6:58:ba:38:fc:40:
e1:a2:ba:13:2b:f9:0e:98:27:f4:09:95:c5:c4:64:
5d:56:8f:3b:91:67:f2:22:b8:c6:c5:c8:11:2e:04:
c2:67:5e:b8:5e:e1:e6:a3:4d:aa:6a:55:2a:95:9a:
43:41:3a:0e:79:78:2a:cb:56:8b:86:3d:e4:d7:ed:
1d:c5:fc:08:40:e9:39:09:96:ae:20:76:f6:20:a1:
ca:ca:8c:cc:14:5e:2a:1a:a7:5b:ec:b6:9a:fe:54:
63:95:e0:36:72:b6:37:70:be:e5:1a:18:12:12:f1:
cb:c9:c7:b7:c4:37:b4:12:06:ea:e0:68:11:5b:74:
23:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:30:01:5A:7F:5C:5D:EB:A6:39:80:CC:70:CD:15:4E:B5:5C:B0:C4
X509v3 Authority Key Identifier:
keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/xzABWn9cXeumOYDMcM0VTrVcsMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.146.186.0/23
Signature Algorithm: sha256WithRSAEncryption
94:5b:f0:df:b9:5f:d5:05:23:72:54:4c:76:4e:0b:d4:f6:3a:
ec:9e:8f:2e:78:b8:f1:f9:88:ea:49:d8:e3:cf:0a:6f:4d:71:
c1:85:8e:ae:b8:2a:ed:74:10:7d:d0:96:a0:07:e9:a8:c9:86:
6a:07:b9:27:2b:66:60:bd:bb:01:1e:38:1f:c5:7c:72:ea:f7:
d3:5c:1a:c3:16:0f:bb:d6:3f:db:d1:e5:ed:8f:87:40:9b:c3:
47:44:53:57:2d:40:7e:26:ed:4c:fc:44:d1:ba:2a:9c:84:2f:
30:ce:cb:61:6f:a7:ed:8a:8f:f0:8c:9a:d4:36:7a:ff:c8:d5:
3c:1c:07:47:03:41:19:f9:1c:61:77:f3:cc:05:f7:64:47:de:
66:37:b0:73:3f:1e:b1:37:72:4d:90:c4:60:86:5d:19:c1:63:
09:b8:80:a1:c3:94:33:35:56:69:da:bf:d0:49:3e:f6:36:d2:
dc:9a:99:81:b1:0a:79:72:0b:77:78:60:ac:98:79:b9:53:2c:
61:83:4f:31:5f:6d:c9:f8:2b:98:71:01:05:ab:c1:69:f5:68:
6c:b4:6e:5d:29:db:1e:06:13:7b:bd:81:ed:f0:00:c2:be:8e:
d7:b5:11:e8:dd:69:43:31:f2:6f:c6:88:ae:7e:e5:22:3c:a9:
aa:ec:57:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:50 2024 by rpki-client on console-fra.rpki-client.org