Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/N-kEDdPZz0Qb4xCICexdFYT-b8Y.roa
File: N-kEDdPZz0Qb4xCICexdFYT-b8Y.roa (raw, json)
Hash identifier: UEnsqwsibZLhBAJJBw04c+wxrE7LeAiHiitLi/Oxf9g=
Subject key identifier: 37:E9:04:0D:D3:D9:CF:44:1B:E3:10:88:09:EC:5D:15:84:FE:6F:C6
Certificate issuer: /CN=cf5567122a88ca9889a1798b6c942dcc0cbc753b
Certificate serial: 018BF6B1FCB493F4E7F24053A4D9DA5AB7E0
Authority key identifier: CF:55:67:12:2A:88:CA:98:89:A1:79:8B:6C:94:2D:CC:0C:BC:75:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1VnEiqIypiJoXmLbJQtzAy8dTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/N-kEDdPZz0Qb4xCICexdFYT-b8Y.roa
Signing time: Wed 22 Nov 2023 11:02:21 +0000
ROA not before: Wed 22 Nov 2023 11:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 442444
IP address blocks: 2.144.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:b1:fc:b4:93:f4:e7:f2:40:53:a4:d9:da:5a:b7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5567122a88ca9889a1798b6c942dcc0cbc753b
Validity
Not Before: Nov 22 11:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37e9040dd3d9cf441be3108809ec5d1584fe6fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e9:49:9d:10:f9:00:d7:cb:82:96:19:a0:37:
09:97:96:9f:66:c4:7b:eb:e0:81:8a:3d:f0:cf:25:
ee:f2:55:c4:07:a5:7e:80:a5:6b:80:1d:05:b7:2e:
e6:cc:9f:68:c5:b7:99:69:fc:51:17:1b:22:0a:af:
c8:7b:85:b7:d1:a3:24:4a:2b:c6:f1:c4:a6:2d:da:
14:07:07:06:cf:38:21:b2:40:e7:9a:38:a4:c1:67:
7f:18:e6:c8:dd:a0:0f:38:c2:e5:d7:1c:4e:ed:91:
a7:cd:c5:18:bd:56:67:11:39:f2:da:e6:4c:d9:e6:
a1:44:95:a9:8d:1e:5d:fe:ca:3b:ba:48:f8:ba:28:
83:d3:30:ef:4f:fc:8e:d6:1f:fc:0c:2d:06:85:d4:
cc:62:5d:26:d9:b9:26:7c:80:26:98:e9:6f:69:32:
0a:99:2f:12:72:33:3c:38:23:f2:e0:e4:6c:00:f0:
f5:df:02:2e:4e:93:3d:74:38:b6:78:64:d2:02:85:
52:02:8d:66:09:f8:c7:5f:33:30:df:07:88:d9:5a:
32:4f:f1:55:d7:5d:18:c7:a4:b3:cd:b7:c8:fe:2f:
9b:e3:ee:7f:fd:51:db:cf:56:02:7c:14:8a:5b:54:
13:4e:e4:66:3d:e8:55:2e:ea:70:42:5a:8d:80:fe:
6e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E9:04:0D:D3:D9:CF:44:1B:E3:10:88:09:EC:5D:15:84:FE:6F:C6
X509v3 Authority Key Identifier:
keyid:CF:55:67:12:2A:88:CA:98:89:A1:79:8B:6C:94:2D:CC:0C:BC:75:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1VnEiqIypiJoXmLbJQtzAy8dTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/N-kEDdPZz0Qb4xCICexdFYT-b8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0a97f1-7bf5-4368-8260-8d715ac217e2/1/z1VnEiqIypiJoXmLbJQtzAy8dTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.144.13.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1d:7d:60:32:70:e1:ba:52:f3:9f:c7:91:a7:c2:d1:91:60:
67:bc:c7:d7:90:51:c8:4e:d1:3a:8d:61:b6:34:56:b1:5e:ad:
e7:c6:30:7c:c5:4c:72:06:1c:ae:d6:0a:df:fb:56:34:70:c7:
6e:4e:0d:cf:39:b9:5a:1c:5b:4d:d1:40:be:18:36:27:1d:63:
b1:89:e1:3e:f3:03:c3:00:52:7e:be:29:4a:f3:69:94:3c:65:
f5:40:77:a2:0f:45:2d:7e:09:5a:92:54:f4:40:2d:80:20:2a:
bb:87:90:aa:7a:19:fd:06:e6:15:5b:03:ea:e9:63:e3:63:2a:
39:66:98:40:ba:c4:96:83:64:4e:75:0c:a9:1a:f1:95:8a:67:
08:e0:dc:e1:07:45:28:ea:a3:3d:a8:a3:52:b0:4e:d4:31:66:
3d:48:0b:8e:a5:b0:5b:ec:e1:6f:67:ea:36:25:64:74:19:1e:
42:2d:c2:bf:cf:fc:f7:88:0b:ae:79:27:48:df:7d:a8:bb:7f:
c2:bb:c0:ed:83:d4:2a:8a:98:4b:d4:45:34:b4:76:fb:d6:74:
3b:33:0f:90:f8:ca:dc:25:c9:02:b2:1f:a5:7e:37:33:c8:11:
a8:66:5d:9e:c1:07:c6:be:86:5f:41:78:a0:dd:77:1b:c7:4c:
72:9e:b6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:17 2024 by rpki-client on console-fra.rpki-client.org