Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/xznEWnJDcdlX3Nz22BrJZQZlEz0.roa
File: xznEWnJDcdlX3Nz22BrJZQZlEz0.roa (raw, json)
Hash identifier: DitsV13W9/3o2Dr17q6NTbjd9jv/xzKFXxRhpWLK7lI=
Subject key identifier: C7:39:C4:5A:72:43:71:D9:57:DC:DC:F6:D8:1A:C9:65:06:65:13:3D
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 01884DA94013923713A1F336875E419F07FF
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/xznEWnJDcdlX3Nz22BrJZQZlEz0.roa
Signing time: Wed 24 May 2023 12:08:37 +0000
ROA not before: Wed 24 May 2023 12:08:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 79.110.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Jun 2023 21:39:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:a9:40:13:92:37:13:a1:f3:36:87:5e:41:9f:07:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: May 24 12:08:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c739c45a724371d957dcdcf6d81ac9650665133d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d2:02:6d:34:60:57:b1:a7:9c:11:c1:62:29:
86:d3:18:1e:71:5a:31:5a:29:66:10:14:bb:62:47:
22:1e:1a:7c:8c:45:f1:0d:a3:69:d2:ab:e1:2e:02:
53:1f:e0:46:15:f5:f5:05:0a:12:d2:82:2d:56:ac:
c5:80:a7:32:38:bb:b5:bd:8b:7f:49:6e:91:b0:1e:
1d:31:49:0d:35:ef:cb:b7:4c:cf:54:85:18:16:01:
8e:5f:f5:d9:92:9c:ea:fc:fc:b6:62:c8:8d:c3:f5:
7c:ad:a8:c6:b3:e6:14:40:b1:24:55:88:e0:0b:d1:
5c:89:15:d2:63:b5:66:41:3b:12:43:c0:d0:d4:93:
27:08:93:9c:8a:b1:65:65:88:c6:01:89:db:87:53:
c6:c9:41:d4:6e:b6:50:1c:53:83:60:6f:f1:90:b8:
d7:b7:64:c0:f8:4c:e7:73:82:8c:7f:69:e3:56:5a:
73:df:4d:e7:2b:83:a2:ca:4c:15:20:83:35:06:6b:
01:fd:dc:5f:2f:5c:15:23:02:f9:c8:48:cc:04:88:
c0:72:80:c0:50:a0:cd:b0:62:3d:d3:bb:f0:11:3b:
1a:be:03:9d:06:a6:9b:85:14:f9:73:2a:ff:7f:99:
3c:57:d8:68:79:76:ca:c7:dd:41:e2:8b:cd:f0:18:
b6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:39:C4:5A:72:43:71:D9:57:DC:DC:F6:D8:1A:C9:65:06:65:13:3D
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/xznEWnJDcdlX3Nz22BrJZQZlEz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.167.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:e3:90:b0:a8:16:66:c0:77:eb:eb:65:a0:7f:44:d0:eb:6c:
65:d9:27:03:32:09:41:e2:d6:e6:ed:80:03:d0:be:65:d9:60:
e2:1f:a0:e0:a5:fa:71:44:14:aa:b1:6b:1e:f8:47:c2:ca:f7:
07:24:2e:b0:7a:80:5d:a2:70:e1:6f:98:53:de:e6:05:5b:60:
60:ea:04:ce:1b:3d:e5:49:09:17:55:fc:01:3a:a5:86:6c:18:
24:ae:9a:19:2a:26:54:84:d2:69:f0:e2:35:25:8f:e4:c5:09:
b5:67:1d:25:b0:97:f8:31:2e:f4:d2:a7:07:6c:95:08:a0:30:
99:cb:ed:1e:a0:18:79:67:de:ac:79:6b:c9:12:ea:d6:62:fe:
10:f7:6a:a0:ec:1a:95:49:b8:fc:7c:54:a9:c9:fe:43:a9:df:
41:c5:1d:f6:f1:b3:29:55:9f:a2:6f:61:8a:b0:0c:f2:25:b2:
a0:47:89:2c:07:96:eb:29:13:13:88:e6:cc:3b:6f:55:72:89:
9d:14:6a:21:5c:ad:e4:0f:a0:be:5a:92:f6:86:ad:19:cc:1b:
5b:b3:7d:98:14:94:78:ee:34:1d:11:9c:ef:97:a0:b4:9f:6d:
3c:e4:9e:94:0f:19:7a:89:69:46:4a:f7:fa:a5:dc:53:a8:f4:
c0:8a:13:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:00 2024 by rpki-client on console-fra.rpki-client.org