Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FUq5QvAKhjSPLlDd464-54eeSB4.roa
File: FUq5QvAKhjSPLlDd464-54eeSB4.roa (raw, json)
Hash identifier: bNSSYBOEysUxjF9bY2EIcJKJLQbj7tOLhi09u1yX/GE=
Subject key identifier: 15:4A:B9:42:F0:0A:86:34:8F:2E:50:DD:E3:AE:3E:E7:87:9E:48:1E
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01857729B8579DCA944DDC6E9A83AF72AAA5
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FUq5QvAKhjSPLlDd464-54eeSB4.roa
Signing time: Tue 03 Jan 2023 10:25:00 +0000
ROA not before: Tue 03 Jan 2023 10:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 2.56.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 08:20:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:77:29:b8:57:9d:ca:94:4d:dc:6e:9a:83:af:72:aa:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 3 10:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=154ab942f00a86348f2e50dde3ae3ee7879e481e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:15:78:d4:11:e7:14:d0:1d:1f:b1:0f:c9:c5:
39:03:fd:7e:88:83:6c:06:d9:a7:2d:55:7a:13:b4:
13:45:33:44:3e:a0:ae:c5:0c:31:75:24:59:3e:f0:
ae:6d:51:7b:88:6d:e5:ce:aa:ec:8b:6b:af:75:fd:
39:77:2c:2d:45:b1:43:dd:ad:79:ce:03:73:78:07:
ab:60:f8:d1:a8:46:a0:f6:a5:c9:c4:f1:3e:fd:83:
bf:01:4c:ae:72:2a:12:f7:b5:da:ae:e7:28:d0:87:
9e:95:e1:da:de:0f:1c:be:df:4e:15:19:e4:17:36:
8b:14:90:7b:ca:31:00:0c:2a:d9:64:d4:24:bf:71:
7f:db:ff:0c:e3:a0:52:23:b5:b1:73:08:5e:9f:da:
e3:a7:2f:c7:28:e7:68:29:91:da:57:ef:48:3e:75:
e1:b6:56:3a:27:14:00:c0:4d:53:7e:93:dd:92:66:
fc:09:1d:52:45:89:2c:81:b6:bf:71:0c:dc:92:e5:
09:57:1f:75:15:d2:e5:87:6e:ec:a6:ab:92:1e:95:
0d:ff:27:3e:a6:8d:03:8e:38:91:2d:a0:f5:96:da:
5f:11:2e:94:64:47:90:1a:93:39:77:24:e0:f7:be:
81:e9:f8:8f:7f:ff:80:a8:a4:d2:a5:57:52:8f:01:
ed:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4A:B9:42:F0:0A:86:34:8F:2E:50:DD:E3:AE:3E:E7:87:9E:48:1E
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FUq5QvAKhjSPLlDd464-54eeSB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:3b:b8:a6:7c:71:c9:a9:a1:fa:fe:72:82:6c:78:63:2a:e4:
19:4c:2b:f6:b9:c1:85:92:5a:06:d6:9e:8e:cf:62:a0:6e:85:
2c:55:bd:f0:28:78:b7:ca:1b:72:4f:ca:44:ff:d9:59:df:a5:
0c:5b:2c:21:f2:69:17:9b:64:83:e3:14:a6:65:30:02:06:43:
08:3f:59:fa:a4:81:25:b1:a1:72:a2:c5:c1:b4:96:7b:7a:80:
1e:85:f7:16:79:d7:71:01:86:f5:28:04:c9:e8:f7:f2:3f:38:
c4:14:32:d1:f9:d8:68:ad:bd:d0:74:79:64:4e:6f:25:92:7a:
52:24:17:4f:89:33:c1:cd:cb:21:34:e1:2a:20:7b:30:40:59:
2b:45:51:4e:6d:d4:55:ab:b4:36:19:dd:dd:82:16:67:77:cf:
f9:92:9e:49:61:9e:c4:d2:de:a1:54:23:a7:b7:52:35:75:6c:
8c:25:04:fc:82:54:57:a5:6c:ad:52:6d:a4:cd:1a:c4:78:b9:
7d:e7:81:00:d7:05:17:e8:0a:1f:71:5b:e2:62:9d:1f:0f:69:
8b:ba:f0:ec:54:c3:70:71:ef:fb:8f:86:a6:fa:3f:fc:c3:f7:
58:6c:06:01:b1:c9:03:5e:24:8a:22:cc:f7:5c:f9:c7:8a:dc:
1e:45:ba:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org