Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/73_RUBCr_DJuTWCgcn47qTdkl7M.roa
File: 73_RUBCr_DJuTWCgcn47qTdkl7M.roa (raw, json)
Hash identifier: MmUP0vjCQfQTmEdYO5pK1c9t9wehvytZqjaz/Ukm/Lc=
Subject key identifier: EF:7F:D1:50:10:AB:FC:32:6E:4D:60:A0:72:7E:3B:A9:37:64:97:B3
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 01857139CC4D3AAD7D74EA0D0FA71A553453
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/73_RUBCr_DJuTWCgcn47qTdkl7M.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209117
IP address blocks: 2.57.36.0/24 maxlen: 24
2.57.39.0/24 maxlen: 24
2a09:d2c1:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cc:4d:3a:ad:7d:74:ea:0d:0f:a7:1a:55:34:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef7fd15010abfc326e4d60a0727e3ba9376497b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d1:a0:ae:8b:1a:95:4b:a7:d6:6e:4c:b3:93:
56:77:3e:95:b9:93:7b:89:a9:ca:77:4d:f7:87:f2:
1d:b4:82:95:f0:a2:a4:a3:22:9c:b7:0f:3a:6a:11:
65:9f:f0:87:9b:af:e2:06:b1:60:b3:05:ab:7c:9e:
ed:60:ff:77:ae:a7:7b:c6:af:8e:b1:b8:c5:89:8e:
b2:f0:25:c6:fb:37:e8:b4:4f:71:ff:f1:e1:f3:cd:
c5:f2:36:74:a8:62:41:9e:57:6e:45:f1:f1:d0:30:
6e:80:1e:ae:7c:b0:8e:a4:60:b7:3a:04:8b:9c:fe:
41:e3:7b:c3:40:10:06:b2:e4:9f:41:9f:12:0f:2a:
01:7c:96:fb:dc:87:ab:7d:41:0b:41:8d:0d:34:e3:
fe:cd:44:b7:b0:a3:dd:5d:a5:af:46:32:dd:3b:3e:
2c:25:30:91:c5:2c:e5:48:f5:15:ea:91:c8:d7:ab:
8c:c6:63:4a:1e:40:4e:3e:8f:8a:31:94:32:ff:69:
61:5f:b5:88:22:89:8c:d6:ad:f9:9d:1e:fe:0f:9e:
c4:df:bc:e0:ba:da:aa:a0:30:23:4a:39:b3:5b:ac:
42:f7:f6:99:cf:71:7e:3a:fd:85:56:dc:e0:71:b5:
8e:c3:c8:de:cd:cf:ce:d6:43:d4:d9:5e:23:54:c9:
c4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7F:D1:50:10:AB:FC:32:6E:4D:60:A0:72:7E:3B:A9:37:64:97:B3
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/73_RUBCr_DJuTWCgcn47qTdkl7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.36.0/24
2.57.39.0/24
IPv6:
2a09:d2c1:6::/48
Signature Algorithm: sha256WithRSAEncryption
5e:33:6b:5b:d7:f7:a6:a2:b3:93:68:7e:b3:ec:90:5f:5b:3c:
e9:72:16:03:cd:46:16:f8:70:f2:b8:a3:4e:41:e7:3d:33:0c:
f8:c0:79:05:eb:5a:c5:ce:2f:5f:3e:f7:23:14:00:85:da:f5:
d8:99:d0:1c:ac:1f:af:dc:f9:1b:ba:f8:65:4f:7c:47:6e:27:
7b:68:88:6a:9f:91:7f:2f:8e:d9:3a:b0:bb:90:79:22:84:df:
13:80:c6:00:45:d5:02:9f:d9:d8:b5:dd:03:4c:4d:bf:6a:9a:
e0:8e:3c:cb:4d:13:d0:24:63:f8:86:fa:71:bc:be:24:41:49:
87:c1:36:b0:b8:7a:d9:b5:c7:2f:9e:90:e1:5f:c5:e6:a1:ac:
48:d1:59:fb:9b:a5:35:d8:bf:a2:78:74:29:e5:38:83:d5:f2:
85:60:b3:b5:ad:13:9b:da:cd:2e:25:e4:f7:85:5f:92:ac:4b:
30:a7:71:8b:19:ed:30:f7:81:db:cf:9d:fc:5c:2a:2c:32:1a:
33:e2:42:f5:23:42:49:c1:37:c3:c3:67:ff:38:72:65:54:40:
84:bf:2d:1f:45:88:87:66:bc:0b:a9:25:03:07:7d:af:a1:24:
31:a8:f0:db:e5:3b:d7:0b:1b:f8:56:73:05:f6:23:5a:7f:29:
c4:14:a0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:34 2024 by rpki-client on console-ams.rpki-client.org