Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/AGJqJZ9R7U_oKl9A0E6A9U0YfVk.roa
File: AGJqJZ9R7U_oKl9A0E6A9U0YfVk.roa (raw, json)
Hash identifier: enRt8dK3ihrG9rguSf1Bu1xYI6yNJ8N6zhQIzVWUFpY=
Subject key identifier: 00:62:6A:25:9F:51:ED:4F:E8:2A:5F:40:D0:4E:80:F5:4D:18:7D:59
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E32BB06F683080892CDF959006520
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/AGJqJZ9R7U_oKl9A0E6A9U0YfVk.roa
Signing time: Tue 02 Jan 2024 08:33:14 +0000
ROA not before: Tue 02 Jan 2024 08:33:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39421
IP address blocks: 2.56.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 14:46:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:32:bb:06:f6:83:08:08:92:cd:f9:59:00:65:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00626a259f51ed4fe82a5f40d04e80f54d187d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:12:91:91:3d:4d:41:b7:be:0f:13:4d:20:4d:
17:ee:80:35:e4:5d:50:eb:78:56:a6:f8:49:32:7b:
62:27:a6:c2:64:de:be:f2:a9:c4:87:7a:d0:48:e7:
e7:22:ff:fd:26:16:b2:1b:ec:c7:10:e7:cb:1f:0d:
1a:3f:10:01:39:c3:d4:f1:d2:99:a0:2d:41:0c:16:
60:62:cd:26:f7:6e:11:6a:51:59:93:d2:76:a5:f2:
8e:cc:57:26:67:88:48:62:8c:4a:e5:33:e0:d4:bf:
72:a4:47:15:b3:dc:ac:d9:32:02:4f:c5:31:c2:d1:
03:32:70:11:6c:db:80:15:90:4d:a3:d1:aa:a3:1c:
51:3c:fd:42:98:89:66:0f:23:b7:e7:b8:32:a3:60:
e8:30:e2:0d:74:e2:42:dc:9a:32:5b:1f:40:6b:43:
ef:31:4c:15:39:6d:ba:b5:cd:55:f4:95:27:7d:94:
4c:fe:f7:f5:58:68:de:c8:50:b1:fa:5f:7f:eb:d6:
64:99:07:c3:49:9e:02:ee:e4:fd:76:ed:99:bf:a4:
8c:ae:2b:2c:0f:48:20:fc:59:89:dc:82:6e:d8:f6:
3a:40:12:a4:25:47:a5:80:36:ec:a5:cc:ed:af:58:
71:bf:31:52:04:81:64:13:1d:34:1c:39:f5:9f:69:
24:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:62:6A:25:9F:51:ED:4F:E8:2A:5F:40:D0:4E:80:F5:4D:18:7D:59
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/AGJqJZ9R7U_oKl9A0E6A9U0YfVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.247.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d2:a0:e2:1c:e3:14:9a:29:57:82:4f:66:72:50:07:53:22:
04:48:51:3f:9e:81:d7:5a:fe:e0:f5:0c:a3:d1:b3:55:a5:ea:
7b:13:4e:1a:24:81:34:be:15:92:fe:19:0b:4b:7b:c5:8c:11:
6e:cc:7f:fa:e3:04:ff:ef:df:22:f3:89:f2:cc:44:a4:0d:da:
94:f3:f6:69:7e:69:66:68:ea:1f:ad:be:21:d1:75:ee:70:1f:
c5:95:58:be:d9:16:84:08:9f:77:c5:94:ef:5a:1c:04:42:17:
e8:46:8b:e7:7d:4f:60:ca:a9:86:9d:31:7b:5b:b5:fb:5c:0e:
56:b1:d2:44:a8:56:dc:79:c6:fc:97:ec:bb:1c:18:06:87:b8:
2e:75:1e:6f:a4:d8:b9:e3:4b:c1:c8:12:bb:9a:63:9e:54:46:
bd:dd:51:99:9f:fd:89:50:10:ec:27:38:be:9d:c7:49:45:4e:
81:8d:c0:31:1d:86:72:d0:44:dd:81:92:1b:31:bb:2f:67:b2:
c3:28:92:6e:c7:b0:bc:a2:2b:81:fc:e7:2c:6b:13:eb:9a:d6:
52:1f:c1:c2:cb:61:3d:cb:1b:05:10:7f:72:dd:e1:0b:cc:7d:
97:11:1d:a6:aa:f6:45:2f:43:5f:df:c7:18:66:1d:71:02:44:
3d:90:7c:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTjK7BvaDCAiSzflZAGUgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjQwMTAyMDgzMzE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDYyNmEyNTlmNTFlZDRmZTgyYTVmNDBkMDRlODBmNTRkMTg3ZDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRKRkT1NQbe+DxNNIE0X7oA15F1Q
63hWpvhJMntiJ6bCZN6+8qnEh3rQSOfnIv/9JhayG+zHEOfLHw0aPxABOcPU8dKZ
oC1BDBZgYs0m924RalFZk9J2pfKOzFcmZ4hIYoxK5TPg1L9ypEcVs9ys2TICT8Ux
wtEDMnARbNuAFZBNo9GqoxxRPP1CmIlmDyO357gyo2DoMOINdOJC3JoyWx9Aa0Pv
MUwVOW26tc1V9JUnfZRM/vf1WGjeyFCx+l9/69ZkmQfDSZ4C7uT9du2Zv6SMriss
D0gg/FmJ3IJu2PY6QBKkJUelgDbspcztr1hxvzFSBIFkEx00HDn1n2kkZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFABiaiWfUe1P6CpfQNBOgPVNGH1ZMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvQUdKcUpaOVI3VV9vS2w5QTBFNkE5VTBZZlZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjj3MA0G
CSqGSIb3DQEBCwUAA4IBAQB80qDiHOMUmilXgk9mclAHUyIESFE/noHXWv7g9Qyj
0bNVpep7E04aJIE0vhWS/hkLS3vFjBFuzH/64wT/798i84nyzESkDdqU8/Zpfmlm
aOofrb4h0XXucB/FlVi+2RaECJ93xZTvWhwEQhfoRovnfU9gyqmGnTF7W7X7XA5W
sdJEqFbcecb8l+y7HBgGh7gudR5vpNi540vByBK7mmOeVEa93VGZn/2JUBDsJzi+
ncdJRU6BjcAxHYZy0ETdgZIbMbsvZ7LDKJJux7C8oiuB/OcsaxPrmtZSH8HCy2E9
yxsFEH9y3eELzH2XER2mqvZFL0Nf38cYZh1xAkQ9kHzD
-----END CERTIFICATE-----
Generated at Wed Mar 6 19:35:16 2024 by rpki-client on console-fra.rpki-client.org