Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/XYtzd28CERDU9uFSsL_AA5CyoYQ.roa
File: XYtzd28CERDU9uFSsL_AA5CyoYQ.roa (raw, json)
Hash identifier: wLYzbAgW7G1M+ZNX4CysJParXYbU20ywZAqTeZsuzW0=
Subject key identifier: 5D:8B:73:77:6F:02:11:10:D4:F6:E1:52:B0:BF:C0:03:90:B2:A1:84
Certificate issuer: /CN=5b90551e3c17e0a02d28d6dca279db3e4147f991
Certificate serial: 01857246B2CB8A21628D687D8CADC137E742
Authority key identifier: 5B:90:55:1E:3C:17:E0:A0:2D:28:D6:DC:A2:79:DB:3E:41:47:F9:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5BVHjwX4KAtKNbconnbPkFH-ZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/XYtzd28CERDU9uFSsL_AA5CyoYQ.roa
Signing time: Mon 02 Jan 2023 11:38:33 +0000
ROA not before: Mon 02 Jan 2023 11:38:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 193.186.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:b2:cb:8a:21:62:8d:68:7d:8c:ad:c1:37:e7:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b90551e3c17e0a02d28d6dca279db3e4147f991
Validity
Not Before: Jan 2 11:38:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d8b73776f021110d4f6e152b0bfc00390b2a184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3d:ff:f7:d0:7d:3b:b5:95:af:8b:eb:c3:96:
17:ac:bb:97:7c:9c:65:ec:f5:4d:02:02:e9:50:a4:
ac:4a:20:ee:2c:c4:69:c6:32:28:26:04:bd:c1:ec:
fe:ef:8e:fd:cc:f8:c8:fb:65:50:56:95:6d:f2:f5:
81:ae:fc:02:9f:62:5b:90:ec:8b:d3:f4:a9:af:89:
d5:d5:eb:3e:ad:25:2f:b8:05:ec:67:8f:ac:9e:ef:
12:73:0b:cf:20:9e:fb:ee:93:ca:a4:33:b0:b3:88:
1f:0b:c2:bc:3c:af:8a:38:5b:1f:2e:95:62:a5:75:
56:66:5c:9b:fc:99:eb:46:51:df:27:14:1b:f8:0c:
c3:0e:ed:bb:a8:7a:a4:23:ce:a1:45:bb:50:76:e7:
bc:ac:28:cf:bc:27:95:59:e0:a6:f2:cc:22:ee:c4:
54:b5:b2:3c:38:fa:02:44:57:74:fe:fd:36:24:de:
2f:8e:55:92:72:1f:8b:0d:22:89:b0:e8:13:9e:19:
71:b6:c4:9e:b0:7d:ad:fc:d3:9c:2a:a2:80:56:a5:
e6:36:67:3b:f6:c8:73:a6:57:64:0d:fa:a2:33:55:
e3:42:1c:61:8b:44:a9:63:34:38:be:8a:b8:43:58:
17:d5:fe:13:f0:b7:c3:09:9a:c7:1c:bd:59:0e:b6:
33:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:8B:73:77:6F:02:11:10:D4:F6:E1:52:B0:BF:C0:03:90:B2:A1:84
X509v3 Authority Key Identifier:
keyid:5B:90:55:1E:3C:17:E0:A0:2D:28:D6:DC:A2:79:DB:3E:41:47:F9:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5BVHjwX4KAtKNbconnbPkFH-ZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/XYtzd28CERDU9uFSsL_AA5CyoYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c192a4-76b2-465d-8818-a30e33a70b1e/1/W5BVHjwX4KAtKNbconnbPkFH-ZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.208.0/24
Signature Algorithm: sha256WithRSAEncryption
25:34:ee:e3:f5:17:df:04:42:37:58:69:0d:e8:f6:3f:68:51:
2a:30:26:bd:a0:e1:ad:a4:ab:cc:c3:cf:31:76:9d:38:29:97:
7f:04:c5:f5:11:fc:d6:e0:ce:87:e5:f9:86:7a:09:e1:88:ce:
27:5f:67:ec:36:ee:3c:9a:52:21:83:7f:83:59:1d:9f:b9:10:
c2:da:65:0e:ce:94:5e:82:43:05:cc:88:b7:d1:75:b4:4c:b7:
7b:75:f0:f3:e1:7d:ad:04:fe:89:42:42:c8:42:a3:e5:97:30:
22:ce:66:d2:ea:c7:97:24:8d:52:a7:05:74:60:00:31:d2:4a:
9b:3d:b6:8f:d8:87:d1:66:d1:f0:05:26:3f:91:84:1c:cd:be:
4d:19:42:bb:24:a4:fb:22:61:c4:c7:69:cd:51:2c:7e:6d:68:
18:df:49:dc:da:44:0b:1b:81:f4:6a:60:72:0e:7f:83:6b:60:
af:bf:13:a8:54:af:79:74:a9:b6:d9:41:56:c5:f6:13:5e:22:
af:05:04:fa:24:fa:8d:b7:c4:aa:06:70:80:5d:f0:45:95:04:
80:eb:23:5e:cb:9e:08:b7:94:55:cc:a5:c6:28:ab:03:6e:47:
e3:b8:79:a5:d7:f1:5d:2a:0d:cf:4a:b8:0e:bb:a8:42:40:28:
5b:04:c2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org