Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/19c76f-2f67-421c-84ae-dd549f3b83bf/1/XqmmHQJOpJHt8U-CNLTJ6PAfTdA.roa
File: XqmmHQJOpJHt8U-CNLTJ6PAfTdA.roa (raw, json)
Hash identifier: 39AOg3JE0+5bnTwvRIGU+VgVaKTssTK+t+Ee90o7mMw=
Subject key identifier: 5E:A9:A6:1D:02:4E:A4:91:ED:F1:4F:82:34:B4:C9:E8:F0:1F:4D:D0
Certificate issuer: /CN=2450bfbf798faeaa7d6a36058d013e24d4bb1d9d
Certificate serial: 01856D2F57C266AD3FF433C56DCCB9CEA3A1
Authority key identifier: 24:50:BF:BF:79:8F:AE:AA:7D:6A:36:05:8D:01:3E:24:D4:BB:1D:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFC_v3mPrqp9ajYFjQE-JNS7HZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/19c76f-2f67-421c-84ae-dd549f3b83bf/1/XqmmHQJOpJHt8U-CNLTJ6PAfTdA.roa
Signing time: Sun 01 Jan 2023 11:54:57 +0000
ROA not before: Sun 01 Jan 2023 11:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.75.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:57:c2:66:ad:3f:f4:33:c5:6d:cc:b9:ce:a3:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2450bfbf798faeaa7d6a36058d013e24d4bb1d9d
Validity
Not Before: Jan 1 11:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ea9a61d024ea491edf14f8234b4c9e8f01f4dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:97:da:5e:3b:d3:1f:75:19:14:c9:5f:d6:96:
3f:40:af:33:a4:b6:79:fe:bf:23:54:5c:5d:04:1a:
eb:26:89:79:af:7d:4b:4d:3c:33:41:58:f8:15:5f:
11:9e:e1:50:c8:6c:db:aa:90:ff:8d:45:f0:85:f9:
bc:67:de:c7:01:71:ee:77:5a:6b:d1:7b:70:90:dc:
8c:b2:8b:11:c3:1f:dd:4d:5c:ae:57:c4:24:93:f8:
cb:b9:b4:f8:71:7f:b8:e4:28:53:56:9c:97:c3:f4:
87:de:80:c9:5b:da:43:e5:bd:57:a9:18:64:b3:88:
92:ab:9e:bb:c7:69:10:77:2d:d5:cb:29:99:67:b0:
62:c1:24:76:31:f9:45:f8:53:7c:9f:ff:bb:5d:0e:
f4:32:05:44:84:bf:d4:15:e6:80:22:59:0f:35:0d:
83:d9:85:c3:12:a3:c6:59:50:25:36:01:ef:5a:71:
fe:08:3a:bf:f3:20:32:08:79:9a:e3:49:c8:db:13:
e2:53:2f:8a:92:43:de:4e:85:e1:89:08:7c:89:f6:
07:6d:04:a5:9f:97:ea:08:a9:29:5a:c9:e1:b8:d7:
a8:36:9f:29:6a:d7:f6:b7:7e:1b:6c:41:63:28:7f:
fe:bd:ee:f9:41:56:c9:9f:44:50:c0:33:7d:9c:9b:
f5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A9:A6:1D:02:4E:A4:91:ED:F1:4F:82:34:B4:C9:E8:F0:1F:4D:D0
X509v3 Authority Key Identifier:
keyid:24:50:BF:BF:79:8F:AE:AA:7D:6A:36:05:8D:01:3E:24:D4:BB:1D:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFC_v3mPrqp9ajYFjQE-JNS7HZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/19c76f-2f67-421c-84ae-dd549f3b83bf/1/XqmmHQJOpJHt8U-CNLTJ6PAfTdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/19c76f-2f67-421c-84ae-dd549f3b83bf/1/JFC_v3mPrqp9ajYFjQE-JNS7HZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.60.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:50:43:86:fa:5a:9b:b8:54:8b:23:14:32:9f:56:46:ae:6c:
8f:15:46:ce:85:a3:32:ec:f1:c2:f2:e2:62:42:8f:c5:4a:b9:
35:07:32:3e:6c:0b:2e:e7:b5:f4:03:16:28:83:91:8b:79:60:
09:bc:fb:f7:7b:7f:8d:9e:b1:e0:62:84:3c:8a:2f:2c:f0:38:
63:c9:d7:8e:d6:9c:f6:a0:80:65:9d:24:7d:12:61:89:38:a4:
77:ae:44:35:74:ac:86:58:02:95:42:8a:75:ba:3f:86:09:a1:
fe:e1:87:1b:11:ec:ef:02:29:30:78:34:7a:0b:0d:81:57:70:
57:2e:d0:82:31:fe:2b:a3:c7:05:a3:2e:2e:0b:45:3b:68:5b:
ec:49:14:51:7b:f2:02:2a:31:88:97:0e:5f:52:bf:bf:35:0b:
3c:d2:9b:00:63:64:2b:02:53:97:c5:b6:10:e7:be:89:4f:e4:
86:46:58:7a:2a:c0:ac:79:9d:d4:c1:4d:75:9c:25:c7:7d:55:
39:75:26:2e:ee:47:bb:ac:cc:05:24:2c:de:0e:86:32:74:9b:
69:e8:cc:17:e8:bc:b4:fc:b9:08:ca:f4:d4:6d:ce:1b:b3:4f:
8d:de:55:c7:26:55:ad:c5:55:86:65:d2:18:31:8d:dc:75:5b:
a9:52:46:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:17 2024 by rpki-client on console-fra.rpki-client.org