Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/9WviicdEgfIjQ1IZ7dr2M-ZlNzs.roa
File: 9WviicdEgfIjQ1IZ7dr2M-ZlNzs.roa (raw, json)
Hash identifier: +NRunC/Zb4X67kv9vATOmLcBgPCCOPbEh8WAiyS7noQ=
Subject key identifier: F5:6B:E2:89:C7:44:81:F2:23:43:52:19:ED:DA:F6:33:E6:65:37:3B
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018570F0B28A81534D77F0663CBEEAA0807F
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/9WviicdEgfIjQ1IZ7dr2M-ZlNzs.roa
Signing time: Mon 02 Jan 2023 05:25:00 +0000
ROA not before: Mon 02 Jan 2023 05:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 2.58.232.0/22 maxlen: 22
178.239.30.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 10 Nov 2023 16:45:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b2:8a:81:53:4d:77:f0:66:3c:be:ea:a0:80:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 2 05:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f56be289c74481f223435219eddaf633e665373b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:49:54:46:6b:d4:58:cd:63:db:89:3d:9e:04:
2e:a3:b9:47:87:35:81:ff:86:43:49:94:bd:d2:b8:
95:da:50:28:b5:5c:6e:56:6d:55:46:f4:9e:b1:03:
57:f9:49:bb:c7:b0:07:2d:56:7f:83:80:ae:98:c9:
35:fe:6b:1b:b8:52:3f:eb:33:e0:75:93:64:29:ad:
e8:c0:99:40:c2:3d:fd:c3:1f:40:e3:a6:1f:c5:27:
0a:e6:06:53:c3:c2:83:3b:dc:b6:1c:e3:78:5f:3d:
41:87:2b:ef:8a:b9:b8:94:2a:3a:91:93:a9:cd:75:
2e:d4:68:7c:8f:2e:38:72:85:0d:fc:0a:93:eb:49:
ca:9e:7f:b2:b1:c2:fa:35:72:73:55:c2:8b:ff:8c:
c8:7e:e8:ca:5f:a8:60:ec:c5:52:e5:e8:60:f9:41:
04:b6:08:5a:7a:03:d2:da:2f:12:4d:81:eb:7a:4d:
94:85:7e:65:ca:fe:d6:40:15:88:1a:7e:09:f3:8b:
52:2a:1e:7c:be:35:fb:e4:49:02:68:0a:d2:fe:41:
ef:fa:75:bd:75:02:7f:fe:2b:94:3d:2a:8c:3d:9f:
68:cc:f7:ef:b8:67:09:ef:7d:b1:ea:4a:af:19:1e:
34:01:b9:ff:2b:6f:2e:07:51:ac:95:8d:f9:8a:30:
33:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:6B:E2:89:C7:44:81:F2:23:43:52:19:ED:DA:F6:33:E6:65:37:3B
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/9WviicdEgfIjQ1IZ7dr2M-ZlNzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.232.0/22
178.239.30.0/23
Signature Algorithm: sha256WithRSAEncryption
58:38:d5:76:37:bb:9c:bb:78:39:96:40:39:0d:79:b3:6d:10:
ee:34:17:c8:06:aa:0e:b5:b1:43:ae:29:e3:a2:a2:03:50:c3:
4d:e3:e5:49:09:c1:a3:24:ed:85:a3:40:df:d4:91:99:32:6f:
8d:71:b2:e6:af:41:8b:11:7f:4b:b7:8a:35:de:b7:93:2a:76:
fc:17:e0:65:86:a1:e6:87:57:c9:12:6f:88:76:52:66:91:9b:
c1:f2:45:a1:57:fb:1a:29:c4:ff:57:58:34:82:f4:1f:36:b8:
5a:7a:f4:b5:d0:50:6a:fc:fe:c4:73:db:66:fb:52:79:d8:bc:
45:4e:8e:53:e2:06:1b:35:1e:11:29:a6:d5:45:22:06:43:27:
7f:c1:c7:b1:7f:9d:4a:03:f2:51:8f:ae:ba:c4:dd:9d:ea:d5:
c1:e2:f9:e1:8e:bf:97:2b:91:70:14:96:f4:b0:7b:f6:c0:ac:
11:57:f7:30:e1:62:85:55:db:3f:f8:46:be:9a:4c:f6:cc:46:
09:f3:77:42:fb:46:3b:ff:07:8d:34:ff:7a:f8:d0:05:1c:ed:
1c:9c:d1:90:13:53:99:20:67:1c:bf:50:62:c3:47:e5:34:dc:
9a:81:2d:47:43:0d:f2:68:d0:6a:f6:b8:c7:a8:df:87:8e:b7:
8a:38:9f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org