Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/XuvMAAS3PDqgWnWH-whU9KiYjzE.roa
File: XuvMAAS3PDqgWnWH-whU9KiYjzE.roa (raw, json)
Hash identifier: fhsK2q7bSLs1IrFCBF4fR1en8M2em8S4zUhO+YKijJE=
Subject key identifier: 5E:EB:CC:00:04:B7:3C:3A:A0:5A:75:87:FB:08:54:F4:A8:98:8F:31
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0185707056D0D3C4AB37D0F9A3130EB32A5E
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/XuvMAAS3PDqgWnWH-whU9KiYjzE.roa
Signing time: Mon 02 Jan 2023 03:04:48 +0000
ROA not before: Mon 02 Jan 2023 03:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5543
IP address blocks: 193.22.6.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:56:d0:d3:c4:ab:37:d0:f9:a3:13:0e:b3:2a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 03:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5eebcc0004b73c3aa05a7587fb0854f4a8988f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bd:c0:65:1f:a4:60:39:62:26:74:9f:0e:00:
28:29:5b:36:b9:9e:db:39:ae:cd:42:ae:63:f5:c1:
de:ad:3b:77:e3:eb:d6:ec:f5:1a:6c:46:d3:a3:93:
94:d5:d5:35:51:a4:6e:b2:e0:be:b9:43:30:3c:b9:
83:c9:b1:30:7f:5d:0d:87:48:c4:a3:fe:93:b1:3b:
e5:ee:d7:c6:19:85:5d:6b:00:98:8b:e2:36:dc:e8:
2b:e8:b6:2e:73:be:3b:10:b7:fe:b0:af:55:2d:a1:
fb:7f:dc:3d:72:9e:79:f1:fb:3b:b9:81:43:87:55:
1b:80:0f:3b:0f:e2:75:d6:33:d6:dc:23:0e:32:56:
8f:c2:3c:16:dc:dd:4e:d9:be:01:0f:85:28:27:53:
2c:70:53:f0:5a:44:4f:5e:ae:fe:a8:bc:0b:65:f6:
1e:c9:6a:9f:4e:9a:92:7f:65:53:82:ce:9f:4c:1d:
72:49:78:ae:76:1a:58:56:4e:8b:6a:bd:a2:77:43:
6a:ad:b3:ec:93:f4:32:76:cc:d9:45:72:f4:ce:94:
e8:16:ac:09:d0:98:e1:5b:65:5b:33:b7:6e:26:02:
35:48:c5:4c:c2:2a:1b:d6:3c:d7:8a:ce:a5:58:cc:
85:8a:a6:1b:91:3a:22:5c:cf:b1:5d:cf:89:0f:ab:
95:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EB:CC:00:04:B7:3C:3A:A0:5A:75:87:FB:08:54:F4:A8:98:8F:31
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/XuvMAAS3PDqgWnWH-whU9KiYjzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.6.0/24
Signature Algorithm: sha256WithRSAEncryption
99:6f:5f:b2:c5:02:65:44:3b:9e:c5:e3:96:72:1e:7f:df:e1:
fb:41:cc:99:b2:7b:0e:b4:58:25:a0:52:54:6b:5e:59:3e:e0:
30:85:03:60:cc:d2:42:a4:ca:6d:09:cd:46:40:d9:9e:97:a2:
e1:5e:9a:36:ba:ba:14:3a:5c:7a:7c:45:d9:4f:8e:58:ef:57:
57:53:dc:50:35:9a:21:f7:94:ec:b7:28:33:d8:6b:fb:d0:c1:
e6:14:29:09:32:81:3e:82:1f:06:d4:a1:df:1c:4a:06:fc:cb:
50:56:04:77:c6:cb:3b:4c:14:27:f1:ea:1a:0a:04:4e:ee:c5:
d7:3d:9e:84:3c:6c:72:92:f4:0e:42:cc:b1:7b:1b:2f:ed:96:
cd:2c:e1:a9:a0:78:f9:3b:54:d3:84:6d:4d:6f:d7:7b:d0:71:
ab:da:f1:65:da:dc:2c:96:8e:60:95:0c:60:15:87:6a:02:87:
50:7e:c8:d2:d9:1f:b9:15:bf:3f:74:7a:75:92:ee:e8:a0:49:
f4:59:38:e7:fd:ad:35:d8:fd:1b:3e:20:d4:d1:48:88:c3:d9:
eb:4b:d8:b2:f8:f2:ed:01:bc:a2:5b:68:24:c9:31:7d:3d:29:
72:32:dd:02:31:3c:eb:26:03:58:5c:f8:ca:e6:cf:ca:14:ec:
51:9b:b5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net