Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/1b4f68-3f28-4ff2-8f92-2f89fca6728b/1/xmPJgGSGLeSGyFrJGVLygWNKbUY.roa
File: xmPJgGSGLeSGyFrJGVLygWNKbUY.roa (raw, json)
Hash identifier: b6nmIh19xvmyVXUGepc9SrqpnWIrvgn5f/nQHjPha0c=
Subject key identifier: C6:63:C9:80:64:86:2D:E4:86:C8:5A:C9:19:52:F2:81:63:4A:6D:46
Certificate issuer: /CN=597fdc5df7c1d0478b4dfa32908d9ff95818ac78
Certificate serial: 0186DAA3811524BAD0491333DD8CD59CE917
Authority key identifier: 59:7F:DC:5D:F7:C1:D0:47:8B:4D:FA:32:90:8D:9F:F9:58:18:AC:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WX_cXffB0EeLTfoykI2f-VgYrHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/1b4f68-3f28-4ff2-8f92-2f89fca6728b/1/xmPJgGSGLeSGyFrJGVLygWNKbUY.roa
Signing time: Mon 13 Mar 2023 11:03:13 +0000
ROA not before: Mon 13 Mar 2023 11:03:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200525
IP address blocks: 193.111.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:a3:81:15:24:ba:d0:49:13:33:dd:8c:d5:9c:e9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597fdc5df7c1d0478b4dfa32908d9ff95818ac78
Validity
Not Before: Mar 13 11:03:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c663c98064862de486c85ac91952f281634a6d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:98:d5:19:05:39:8e:96:f3:e8:b2:0c:92:31:
41:62:e9:65:22:14:89:f1:64:29:1a:b5:f4:5a:0d:
2b:dd:74:06:1e:0e:8e:72:bc:23:7e:53:02:ea:eb:
35:11:48:ef:20:fd:03:94:35:8a:30:ff:80:7e:82:
48:bb:f2:35:b0:d1:46:ec:1d:67:ea:d0:b9:f6:56:
1c:c3:dd:84:88:7d:c8:4d:68:66:8a:f4:5a:9f:44:
f1:4f:11:5e:86:df:be:a5:88:35:95:cf:10:81:1b:
50:c7:1f:bf:f2:2f:93:03:06:c7:83:37:f1:6e:0d:
5f:97:f0:61:8f:c8:a0:91:0a:61:a9:f2:92:bc:2f:
b2:b3:17:d1:74:eb:0d:47:00:89:e2:67:56:db:19:
cd:83:5b:f0:8f:6f:c7:60:90:f7:00:eb:c4:ed:91:
f7:e8:11:d1:ca:2a:97:6c:ce:bd:06:b4:33:dc:b9:
c2:65:ee:cc:c8:ff:32:eb:ca:09:b1:82:4c:6b:f3:
f0:cc:ec:d0:fe:15:1b:34:50:64:76:49:25:56:62:
a5:f8:6d:fc:88:2f:22:58:29:ef:c5:8f:30:13:c4:
01:9c:14:21:95:96:a0:0d:55:56:4f:22:d1:fc:21:
ce:46:c7:94:99:2a:7e:52:be:d5:9d:6b:11:fd:2d:
28:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:63:C9:80:64:86:2D:E4:86:C8:5A:C9:19:52:F2:81:63:4A:6D:46
X509v3 Authority Key Identifier:
keyid:59:7F:DC:5D:F7:C1:D0:47:8B:4D:FA:32:90:8D:9F:F9:58:18:AC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WX_cXffB0EeLTfoykI2f-VgYrHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/1b4f68-3f28-4ff2-8f92-2f89fca6728b/1/xmPJgGSGLeSGyFrJGVLygWNKbUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/1b4f68-3f28-4ff2-8f92-2f89fca6728b/1/WX_cXffB0EeLTfoykI2f-VgYrHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.208.0/24
Signature Algorithm: sha256WithRSAEncryption
28:61:a9:1a:9d:ca:1b:e4:cf:d8:12:e0:e4:c7:a3:b6:04:89:
a8:91:50:6d:7e:fb:d3:68:2f:46:33:f9:ab:d8:95:14:d3:5e:
82:33:c7:ed:d9:ed:5e:72:2d:9d:d1:da:59:1b:29:99:92:7d:
47:06:90:12:61:9d:1b:dc:49:b6:6c:f1:3e:b8:f4:9b:b5:59:
a8:ba:1e:50:c8:8d:03:c2:ba:55:8d:2a:99:44:d4:2e:97:57:
72:b7:33:30:d6:3b:7b:ad:55:75:3a:bf:2b:d3:0e:a3:91:31:
5e:24:be:ca:c1:85:c9:8d:b3:7a:a8:4e:98:99:64:1f:53:7a:
0d:00:9b:ea:53:33:3a:32:31:34:19:6e:03:04:72:17:84:94:
4d:31:fe:d8:59:df:ab:a2:0f:81:a6:76:22:20:e8:39:9f:85:
55:7a:cf:8a:d3:72:a5:d2:fd:55:c0:85:dd:8f:24:18:5c:5e:
42:fd:52:10:18:e8:9e:45:94:4e:7d:76:57:17:01:fb:9a:ea:
bf:73:f4:48:74:90:54:99:7b:4d:50:da:f0:e3:9a:04:3b:11:
3a:60:70:ec:39:65:70:4d:5f:03:76:4a:88:d2:73:99:4e:41:
83:f0:d6:81:e6:38:df:ea:74:a2:bc:be:08:2b:a0:f6:22:84:
fd:e2:f7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:34 2024 by rpki-client on console-ams.rpki-client.org