Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/XyiO8tWZxV1a3NE5L2xCIc6CLPw.roa
File: XyiO8tWZxV1a3NE5L2xCIc6CLPw.roa (raw, json)
Hash identifier: /c6BRN363B51igjioIo6Fgg08icaRlXycTZDqOjYTJY=
Subject key identifier: 5F:28:8E:F2:D5:99:C5:5D:5A:DC:D1:39:2F:6C:42:21:CE:82:2C:FC
Certificate issuer: /CN=b69d28b7d028cabb9684a80e14baaf15ca6fd2f6
Certificate serial: 0185723100B2C97814FFB81FDC2FA151BE57
Authority key identifier: B6:9D:28:B7:D0:28:CA:BB:96:84:A8:0E:14:BA:AF:15:CA:6F:D2:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tp0ot9AoyruWhKgOFLqvFcpv0vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/XyiO8tWZxV1a3NE5L2xCIc6CLPw.roa
Signing time: Mon 02 Jan 2023 11:14:52 +0000
ROA not before: Mon 02 Jan 2023 11:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203201
IP address blocks: 45.144.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:00:b2:c9:78:14:ff:b8:1f:dc:2f:a1:51:be:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69d28b7d028cabb9684a80e14baaf15ca6fd2f6
Validity
Not Before: Jan 2 11:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f288ef2d599c55d5adcd1392f6c4221ce822cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:03:1b:1d:f7:64:15:b0:7d:91:ed:38:95:7d:
85:fe:48:eb:9c:c4:7c:34:74:38:e3:50:ce:81:41:
d0:b4:ac:6e:46:58:e0:10:45:34:5a:ac:d4:4b:d0:
8b:7e:1e:c2:f2:71:f3:b8:fe:28:0b:b2:68:cd:d9:
f8:51:35:36:2b:d6:6b:bb:5e:46:95:25:5d:38:94:
6d:e7:46:59:f1:03:0d:1e:6e:9f:9d:15:ad:b8:0a:
e0:59:1e:f7:2c:98:f1:7b:37:61:50:13:09:eb:f9:
55:d2:63:e6:f2:59:63:1b:85:48:f0:0a:5e:d3:2f:
04:fd:5b:68:f0:4c:58:48:57:b9:eb:51:32:e5:31:
38:99:d0:76:3e:07:c2:4e:91:72:bf:b4:0e:1c:d4:
d1:95:d5:40:58:18:ba:9f:e5:91:fe:86:7d:59:9d:
81:57:43:85:d8:72:4f:46:e0:cf:d6:21:c6:85:2e:
56:66:75:78:27:08:ca:59:b6:bb:0c:6f:1f:c9:b3:
ae:56:d0:80:94:b4:51:9a:e6:38:fa:b2:fb:75:86:
af:25:3d:0d:8b:0c:f2:e4:bc:83:a6:bb:23:db:56:
d5:96:aa:42:3a:d7:89:51:36:96:2e:2a:b0:d9:11:
6a:d5:05:9e:06:f4:c3:1d:f6:69:30:8e:bd:8c:d5:
1c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:28:8E:F2:D5:99:C5:5D:5A:DC:D1:39:2F:6C:42:21:CE:82:2C:FC
X509v3 Authority Key Identifier:
keyid:B6:9D:28:B7:D0:28:CA:BB:96:84:A8:0E:14:BA:AF:15:CA:6F:D2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tp0ot9AoyruWhKgOFLqvFcpv0vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/XyiO8tWZxV1a3NE5L2xCIc6CLPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/tp0ot9AoyruWhKgOFLqvFcpv0vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.60.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:29:2b:4d:12:e8:ef:61:00:a4:2f:e0:39:f7:c1:74:a7:9c:
fa:5d:a5:8f:06:d2:18:60:d4:a9:3f:d1:69:bb:6a:c0:c8:b2:
bb:8d:b1:db:2a:23:8a:1b:13:2b:5b:e6:52:fa:70:b9:b4:d7:
63:18:32:13:23:f4:63:d1:0e:55:93:78:df:40:85:43:73:c1:
35:09:d9:43:17:cd:70:e3:a1:33:3e:70:06:5b:10:16:5e:b1:
2d:f6:f4:6f:7f:be:4f:94:e2:71:33:64:64:f2:80:8d:6b:b3:
ac:ed:b8:8c:9c:6a:bb:a5:4d:df:55:05:c1:39:6a:06:f1:60:
d2:50:61:39:74:72:db:1f:f8:09:69:b2:6b:0b:df:85:a4:26:
4c:fe:97:4c:fa:25:a8:ba:b1:86:75:6d:8c:79:e6:e4:01:c2:
b8:e6:70:99:97:bc:ee:57:ed:e8:54:ab:eb:c8:94:38:66:e7:
39:7c:34:00:89:4e:04:82:79:bf:73:20:91:16:bb:33:76:9e:
4d:08:4b:97:d7:35:fc:46:e3:0e:54:87:e0:0f:e0:74:9f:74:
f6:9a:da:f2:84:43:f9:df:dd:8e:00:cd:68:79:3c:50:8d:73:
10:5a:05:44:2b:d7:a8:25:ff:ea:4d:c6:c7:04:09:c2:40:55:
50:b9:df:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:48 2024 by rpki-client on console-fra.rpki-client.org