Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/XuaLiHEVpohcfsT8j3A4XldnO4E.roa
File: XuaLiHEVpohcfsT8j3A4XldnO4E.roa (raw, json)
Hash identifier: XBdHQJvd1eD06d7l0TY1B+IZPOoSzlqFr/hM0GHX3XU=
Subject key identifier: 5E:E6:8B:88:71:15:A6:88:5C:7E:C4:FC:8F:70:38:5E:57:67:3B:81
Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial: 01856C41592FA6C8ABE2ED33A9477A80B081
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/XuaLiHEVpohcfsT8j3A4XldnO4E.roa
Signing time: Sun 01 Jan 2023 07:34:59 +0000
ROA not before: Sun 01 Jan 2023 07:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 185.240.128.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:59:2f:a6:c8:ab:e2:ed:33:a9:47:7a:80:b0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Validity
Not Before: Jan 1 07:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ee68b887115a6885c7ec4fc8f70385e57673b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fb:e1:4e:74:f9:72:68:ea:07:5d:2f:71:ae:
3f:e1:79:c1:4a:2e:1f:6d:41:34:c0:9a:e1:01:06:
8b:ab:b0:dc:77:29:e2:b2:8a:81:0e:3c:72:cb:6d:
93:d6:b1:76:44:4f:5d:e1:20:a7:c2:59:14:b7:b3:
53:c3:86:76:aa:29:49:4a:b9:54:b4:e4:46:14:0f:
48:8d:93:c4:2a:87:ea:f4:c6:b2:ba:fd:6f:1b:e0:
78:99:07:c0:86:df:70:69:27:e6:b6:dd:3d:47:f3:
a5:1b:5c:ca:f0:0f:b9:7b:85:88:4a:3e:87:be:12:
4b:23:6b:4c:05:48:f3:98:d2:31:d5:9c:95:f4:b9:
32:94:7e:3a:9e:3e:15:65:4b:e3:d0:8a:c2:29:7f:
c4:b4:f3:6e:63:81:e0:ee:91:fc:2f:c7:45:56:99:
75:a8:c5:05:ac:49:e6:20:d0:e2:34:ec:ab:3b:6d:
42:40:e8:44:e2:77:40:fb:e6:29:93:0b:b2:ab:2d:
a8:f5:12:c1:eb:9d:13:30:46:80:1a:3a:cc:52:b7:
57:ed:03:53:9c:5d:0e:b6:4a:18:3d:6c:90:80:91:
85:31:bd:83:70:e5:94:43:78:41:44:c7:bb:f0:18:
cf:09:9e:02:fc:7b:a8:9f:54:1c:a1:b9:4d:32:ba:
b7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E6:8B:88:71:15:A6:88:5C:7E:C4:FC:8F:70:38:5E:57:67:3B:81
X509v3 Authority Key Identifier:
keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/XuaLiHEVpohcfsT8j3A4XldnO4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.128.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:bc:a8:53:c3:72:5d:2c:ac:c1:c1:df:99:7c:56:53:cf:a2:
f5:df:26:2f:a2:2c:b8:7b:ab:cb:3d:b3:b0:ce:96:d0:19:18:
92:47:db:4e:23:33:a2:c0:b5:1c:85:d2:3f:ac:56:33:61:1b:
a7:ce:88:77:53:ba:5b:97:9b:54:55:4f:83:cc:d8:12:98:1b:
c6:eb:ed:fa:ed:bd:f8:26:5e:f2:60:d1:f0:bf:d6:dc:dd:0e:
35:f7:d3:0f:52:6a:a6:2a:81:b5:68:a3:36:80:a7:1a:0c:3e:
6c:71:dc:9e:31:b8:1c:67:a6:b1:3c:40:fa:7c:7a:69:0b:04:
b3:c5:8d:47:d7:df:24:e7:49:c4:8f:30:f2:77:53:38:48:e6:
83:41:c1:a9:45:cc:cd:65:1d:dc:69:1b:9f:fc:b5:d3:73:6a:
1b:44:3f:12:0b:a9:dd:9b:b6:c3:bb:9d:bc:7a:cb:c2:d8:2e:
d4:57:53:5f:44:35:20:0d:2a:ae:a7:fa:95:71:1a:36:f5:45:
db:30:85:56:ea:10:fa:8e:85:30:89:ae:24:a4:82:e9:b7:73:
44:57:54:b6:94:38:a8:fb:ef:36:e4:d3:70:06:73:2d:61:40:
a9:b4:db:c1:cc:c0:6a:ac:00:f7:24:d1:24:5a:14:be:ff:e1:
db:d0:d6:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:51 2024 by rpki-client on console-ams.rpki-client.org