Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/XbSfDJ_5cybsvZTRPRPcuKoJHUA.roa
File: XbSfDJ_5cybsvZTRPRPcuKoJHUA.roa (raw, json)
Hash identifier: TMVy1eSQtUWrkh2XlHns61C6X8jH8cKDUgZao/Sv1Ic=
Subject key identifier: 5D:B4:9F:0C:9F:F9:73:26:EC:BD:94:D1:3D:13:DC:B8:AA:09:1D:40
Certificate issuer: /CN=08fe040242651353d556b8c4240082190f271d13
Certificate serial: 018B1BB8C4FBBCB85786C52CEDE65FEE84A4
Authority key identifier: 08:FE:04:02:42:65:13:53:D5:56:B8:C4:24:00:82:19:0F:27:1D:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CP4EAkJlE1PVVrjEJACCGQ8nHRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/XbSfDJ_5cybsvZTRPRPcuKoJHUA.roa
Signing time: Tue 10 Oct 2023 22:32:55 +0000
ROA not before: Tue 10 Oct 2023 22:32:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.22.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1b:b8:c4:fb:bc:b8:57:86:c5:2c:ed:e6:5f:ee:84:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fe040242651353d556b8c4240082190f271d13
Validity
Not Before: Oct 10 22:32:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5db49f0c9ff97326ecbd94d13d13dcb8aa091d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:89:33:6e:cb:3b:38:4e:0a:81:1d:10:c7:77:
c5:64:89:70:dd:ad:3b:b0:5a:c9:d7:26:7d:fd:20:
55:eb:ac:30:9a:ed:f2:d5:63:b2:83:15:06:08:57:
11:be:54:81:ab:d1:9c:2b:f8:5b:52:88:4b:bb:11:
e1:a9:01:42:a8:2d:6c:78:8b:9d:78:92:94:90:fc:
f8:75:29:ac:1f:1c:6f:4b:63:d8:53:7e:a1:55:c2:
20:0b:64:6e:7d:98:c3:d9:06:7b:e0:be:be:83:2d:
3d:72:68:d2:b9:82:20:e2:fb:cf:f9:01:35:48:8b:
72:6f:26:cf:8a:63:f0:b8:14:b6:a1:61:e9:56:27:
f5:ed:9f:21:d0:0a:ab:0f:a4:9c:fc:11:e4:29:3c:
e1:00:b5:c8:3a:7a:fe:8f:c0:a1:15:be:71:cb:64:
9d:dc:f1:31:02:d4:54:81:db:f4:e1:f6:a2:1c:e4:
1c:ec:e8:86:e3:81:ae:0b:ae:c9:82:ec:cb:37:cd:
73:e6:29:7a:ed:df:47:00:ad:ea:5b:7a:37:ad:df:
af:30:aa:d7:59:43:01:1b:88:99:f1:4f:ae:44:b3:
15:57:59:aa:2e:d1:b3:22:3e:24:5b:cc:bc:15:4d:
da:25:03:a0:aa:66:5a:d5:eb:0b:e6:a1:5f:6e:da:
2f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B4:9F:0C:9F:F9:73:26:EC:BD:94:D1:3D:13:DC:B8:AA:09:1D:40
X509v3 Authority Key Identifier:
keyid:08:FE:04:02:42:65:13:53:D5:56:B8:C4:24:00:82:19:0F:27:1D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CP4EAkJlE1PVVrjEJACCGQ8nHRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/XbSfDJ_5cybsvZTRPRPcuKoJHUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/CP4EAkJlE1PVVrjEJACCGQ8nHRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.171.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:20:03:20:6d:9c:2f:f3:c9:42:f0:b3:61:ce:38:8f:e0:98:
a6:8f:6f:1b:b3:6c:8f:d9:a4:52:88:d5:ed:a6:ef:2a:c4:b7:
ae:2c:b2:90:1d:72:ce:07:2d:82:69:22:7f:b3:21:90:f6:e7:
ad:88:03:82:c3:fe:11:63:ef:83:1d:c5:e9:f5:d1:40:f6:9b:
47:0b:5b:f7:af:6f:24:b5:37:f2:91:15:65:47:1a:c1:5c:8f:
3c:b2:74:8d:eb:46:0a:e1:d4:ee:fb:e2:a6:29:9a:b6:42:e5:
d8:8a:2f:d0:cb:03:16:8c:e3:33:17:54:be:0c:3d:15:74:35:
f6:e9:00:4d:ac:58:19:72:1f:6d:99:bf:ca:8e:d9:2c:f5:82:
d2:a7:f6:69:87:3b:59:ec:a7:96:46:65:5e:6a:bb:d0:01:b6:
64:9e:2e:ed:40:cb:ae:35:19:3b:fe:57:dc:2f:c0:31:fc:89:
d4:8a:0c:4e:d7:81:66:32:e6:a6:f7:46:52:8b:f1:0d:f6:bb:
fc:76:40:46:11:f1:49:86:d0:46:a2:5f:fd:88:8b:38:58:ab:
10:1b:06:6c:d7:ae:bf:2d:e4:68:71:9b:ef:71:c0:17:af:a6:
da:f0:e2:05:1a:23:bd:6c:81:7f:6c:fd:4c:20:fc:9e:e8:cc:
ce:da:d9:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:16 2024 by rpki-client on console-ams.rpki-client.org