Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/XDSNsnPqVoXQy2lxdyVOz1wcE8c.roa
File: XDSNsnPqVoXQy2lxdyVOz1wcE8c.roa (raw, json)
Hash identifier: lzhQaeHlufRt6GFwuiFmxPC7r0UAZJiHonCHAJ6fIsM=
Subject key identifier: 5C:34:8D:B2:73:EA:56:85:D0:CB:69:71:77:25:4E:CF:5C:1C:13:C7
Certificate issuer: /CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Certificate serial: 0185728CB051579D053EF68AD03125AAB4E4
Authority key identifier: FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/XDSNsnPqVoXQy2lxdyVOz1wcE8c.roa
Signing time: Mon 02 Jan 2023 12:55:00 +0000
ROA not before: Mon 02 Jan 2023 12:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204568
IP address blocks: 185.209.70.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:b0:51:57:9d:05:3e:f6:8a:d0:31:25:aa:b4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad0fb39d6b11fd15fcbb4163403155d1d455c05
Validity
Not Before: Jan 2 12:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c348db273ea5685d0cb697177254ecf5c1c13c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:97:a6:73:44:b8:9f:c6:4f:1e:71:48:3f:
57:d7:bf:37:72:d4:c8:5e:02:09:04:b3:6c:16:72:
78:f9:cd:7f:2d:8e:1e:aa:33:c7:95:61:aa:14:45:
32:7f:45:36:25:8d:47:4c:24:6a:ce:19:e8:55:39:
90:08:d0:d0:30:d5:22:ea:14:d4:6a:96:9a:51:28:
11:0a:1d:70:a5:3f:a6:cf:87:e2:b9:ee:13:65:fe:
d0:f0:66:15:5c:21:29:70:a1:1a:8b:4d:aa:8e:62:
71:2d:ca:d7:da:3b:bc:15:ff:b1:db:d2:18:e2:4e:
ab:f5:33:06:59:06:c7:ee:99:65:8d:75:b2:a4:a5:
c8:99:fd:1b:93:2e:06:f9:86:32:96:05:b4:83:a3:
75:93:4f:40:b1:df:7b:10:59:c4:a1:39:5e:39:a4:
26:2c:36:78:34:59:a0:86:33:a0:88:cb:73:13:0f:
96:ea:22:00:3b:e7:d1:e3:98:67:fe:e8:10:dc:ab:
70:76:3f:18:bd:04:73:bf:59:ce:11:a8:10:b1:4d:
15:29:21:b4:a5:7f:c6:20:68:35:6f:a6:cd:22:9e:
17:4a:e7:bb:a2:8b:6a:3e:1e:21:8c:30:fb:8d:11:
51:d7:3e:fa:e1:43:27:4e:45:c7:4a:b8:64:a6:20:
2e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:34:8D:B2:73:EA:56:85:D0:CB:69:71:77:25:4E:CF:5C:1C:13:C7
X509v3 Authority Key Identifier:
keyid:FA:D0:FB:39:D6:B1:1F:D1:5F:CB:B4:16:34:03:15:5D:1D:45:5C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/XDSNsnPqVoXQy2lxdyVOz1wcE8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/304e3d-1f0e-44eb-b2c1-e792f89cbce2/1/1-tD7OdaxH9Ffy7QWNAMVXR1FXAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.70.0/23
Signature Algorithm: sha256WithRSAEncryption
14:bc:37:bc:1e:97:21:38:0c:da:52:ec:1a:af:2a:12:15:74:
db:70:69:ad:43:d9:d4:c9:1e:c3:7a:5e:8b:0d:65:4a:c9:2c:
ee:c0:46:fa:2c:3a:3b:4d:8e:0f:a8:ea:16:fc:15:12:e1:a8:
2c:24:62:50:1e:31:a1:b0:30:43:54:5f:d9:9b:58:30:ba:1d:
3e:42:21:e9:62:b6:bc:ef:75:a6:ab:a3:2c:45:9c:08:9a:17:
29:69:19:d0:ef:c9:f5:10:9b:9d:7c:90:bd:12:62:38:6b:88:
82:f2:7b:94:bb:80:ab:77:6d:3f:8f:e3:2c:08:38:4b:b9:80:
85:5a:ca:7c:96:5d:f9:cc:b1:b0:69:67:e6:eb:ea:7f:30:70:
82:01:b9:01:b4:4d:79:c7:17:cc:62:34:9a:44:e4:61:f5:c2:
7f:e2:4a:f6:e8:35:d9:74:0b:b7:c9:ec:27:78:3b:3d:1c:b0:
fe:cd:c2:d5:a9:1c:ae:98:a8:1d:e3:45:a1:ab:c7:32:07:2d:
8f:e3:fc:6e:66:0e:1d:16:47:5a:1a:bf:12:cd:7d:75:a3:9d:
21:45:7e:d0:d9:3d:30:cd:a2:0f:9a:9a:46:2e:de:aa:4c:0e:
dd:6b:ce:fe:59:f4:4e:5d:76:10:42:69:5d:d9:dc:59:ea:07:
f3:12:31:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:14 2024 by rpki-client on console-ams.rpki-client.org