Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/QIAsLcxD8dpMvtGXbjZqrCEVHBA.roa
File: QIAsLcxD8dpMvtGXbjZqrCEVHBA.roa (raw, json)
Hash identifier: GY0yrbqUemC4KJiPqNt4W71a9ZmQ0miwQZ8XjuDzRr4=
Subject key identifier: 40:80:2C:2D:CC:43:F1:DA:4C:BE:D1:97:6E:36:6A:AC:21:15:1C:10
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E34796AF6485C1AAE0ADAFBC77F21
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/QIAsLcxD8dpMvtGXbjZqrCEVHBA.roa
Signing time: Tue 02 Jan 2024 08:33:14 +0000
ROA not before: Tue 02 Jan 2024 08:33:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47504
IP address blocks: 2.58.196.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 08:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:34:79:6a:f6:48:5c:1a:ae:0a:da:fb:c7:7f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40802c2dcc43f1da4cbed1976e366aac21151c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ed:c2:45:7a:d2:ea:ef:48:ff:e9:d4:31:1a:
32:d3:e3:a4:28:1b:28:a2:a7:07:f1:8b:93:bd:a0:
65:87:c6:98:70:7e:45:9e:b6:f4:c6:df:1c:9e:99:
9e:25:03:dd:51:6d:d3:e4:c2:3f:eb:fb:31:77:dc:
4b:13:d9:8f:4b:cc:b8:ca:8e:27:ca:56:3d:ac:f4:
95:76:6d:75:cb:bf:4d:fe:96:95:e1:33:b0:f1:30:
7d:05:97:0e:c2:46:91:34:02:b9:3f:1a:36:40:06:
cb:86:e7:6f:ff:4e:49:3b:37:9a:21:03:bc:72:0d:
98:15:fb:4e:79:00:dd:06:6f:af:23:98:10:02:9a:
83:0c:bb:b4:63:9b:89:3f:61:65:88:a7:e7:74:56:
22:2b:94:a8:ae:c8:69:5d:3e:45:06:3d:91:ce:54:
28:6e:36:75:f3:b5:1c:74:cd:21:16:5b:1c:55:45:
5e:80:13:b2:66:3a:8e:f7:6c:e7:fb:a7:ec:91:66:
22:e1:56:3d:79:31:44:df:a5:f1:c2:08:e0:53:5f:
3d:6f:f0:6a:14:dd:5f:c2:22:2a:5f:a1:e8:2e:6d:
c7:fc:52:0b:0a:1b:cd:8d:7b:f5:66:e0:92:f5:c3:
dc:12:e1:a3:61:8e:3e:2a:44:0a:84:03:b9:7f:68:
74:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:80:2C:2D:CC:43:F1:DA:4C:BE:D1:97:6E:36:6A:AC:21:15:1C:10
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/QIAsLcxD8dpMvtGXbjZqrCEVHBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.196.0/23
Signature Algorithm: sha256WithRSAEncryption
12:20:6c:d2:61:4c:88:77:d5:b1:7c:ab:d3:ab:69:70:2d:c7:
5e:fa:68:ec:0f:a2:73:01:37:52:0d:74:88:06:37:cd:b9:71:
d5:c1:2f:b3:bc:27:8c:6a:a9:f0:cc:5f:59:8a:eb:d4:76:01:
80:cf:d0:19:ca:5f:da:08:61:79:47:3f:56:4e:f1:4f:15:d0:
2f:af:9d:fe:64:51:72:ac:5f:b1:a5:fa:aa:78:e7:97:27:0d:
8d:72:65:20:64:07:de:7a:1e:3b:a1:31:a9:86:1a:06:cd:03:
27:8d:37:ee:31:e5:97:46:59:d8:71:c6:a0:c0:89:c5:40:e8:
7c:e3:7f:4c:4a:19:9c:41:ef:8a:34:5f:e0:c5:da:15:d2:e7:
8a:a6:e6:83:83:47:a8:45:1d:de:a4:da:14:cb:7d:b8:3e:3f:
d4:f1:c7:63:7d:3a:c7:5a:4d:f5:b4:7c:f8:89:c7:fb:5d:63:
53:1b:dd:0d:31:b6:fa:7b:1d:ad:a4:f4:a1:c4:da:8a:36:cd:
c3:b8:15:65:dd:cc:f2:74:5e:1f:d3:b5:42:b6:bc:69:bc:f8:
cf:3d:bc:34:c8:21:0a:42:68:e3:08:7d:d2:0b:43:52:ba:31:
24:aa:ad:05:88:26:bd:5e:f1:97:e9:f1:ad:39:15:42:5a:17:
d0:3e:e6:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 12:21:33 2024 by rpki-client on console-fra.rpki-client.org