Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/E79m6RLGkjJBKYfjBdr3S9vLd98.roa
File: E79m6RLGkjJBKYfjBdr3S9vLd98.roa (raw, json)
Hash identifier: 0V34k7FMYLI8DDljwLK/+gfx8Y67H8JIh/SJFAx6FpI=
Subject key identifier: 13:BF:66:E9:12:C6:92:32:41:29:87:E3:05:DA:F7:4B:DB:CB:77:DF
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CE342E9DC3E6B728630AEF94254FE
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/E79m6RLGkjJBKYfjBdr3S9vLd98.roa
Signing time: Mon 02 Jan 2023 03:35:59 +0000
ROA not before: Mon 02 Jan 2023 03:35:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48421
IP address blocks: 2.63.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e3:42:e9:dc:3e:6b:72:86:30:ae:f9:42:54:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:35:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13bf66e912c69232412987e305daf74bdbcb77df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f9:1d:e5:c8:a6:07:f1:7f:f1:e8:c3:2f:d7:
28:11:1f:e1:59:61:ff:ae:94:f7:e3:3a:3b:ef:48:
90:7a:16:33:e1:84:0c:e1:55:3f:d0:03:4e:d4:3c:
84:c4:c1:bd:39:8b:00:51:f2:53:cd:3a:47:38:12:
f9:00:7c:5c:2b:92:c6:51:4a:81:30:fb:6d:bb:5a:
79:27:33:13:56:29:4d:16:d9:47:db:a2:8a:09:e3:
25:4f:26:12:d2:d4:ca:a2:09:0b:8a:c4:ac:8c:da:
42:d4:8a:cb:38:1e:68:3c:70:41:67:2c:7e:9c:83:
be:02:b4:65:93:93:65:c9:52:3c:5a:ab:33:e0:7c:
c3:47:4f:0d:03:01:da:17:b9:72:86:80:17:26:5d:
da:05:f0:a8:30:4e:02:b4:1d:da:cf:f0:3f:8d:e1:
9f:1c:5b:c1:90:8a:18:7a:2d:83:a8:be:3c:6e:ee:
ff:91:33:83:50:ba:a9:f9:95:21:5d:e3:4b:03:b1:
ac:8b:a4:e7:c3:9a:f8:5b:69:16:81:4b:16:39:40:
ab:72:57:b7:b4:8e:61:79:03:f8:20:b2:b6:f1:78:
86:61:78:09:ae:25:d2:33:dc:4d:a9:e2:06:6b:3f:
b4:f8:bf:db:1f:70:84:70:61:69:05:01:f5:a7:e7:
86:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BF:66:E9:12:C6:92:32:41:29:87:E3:05:DA:F7:4B:DB:CB:77:DF
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/E79m6RLGkjJBKYfjBdr3S9vLd98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.63.192.0/24
Signature Algorithm: sha256WithRSAEncryption
79:0e:5e:3a:59:2c:b1:39:f7:f9:a9:9e:a1:b6:db:59:5d:97:
a3:67:0a:62:2b:30:b1:46:b3:9a:da:57:a7:5a:99:e7:91:db:
ee:99:25:b9:7a:82:10:8c:29:d9:ce:cb:95:3f:bf:aa:28:1f:
e0:76:29:bf:8d:73:17:77:49:9d:4b:c9:0a:f5:a0:1f:e0:d0:
d5:9d:10:42:78:3e:12:57:42:99:56:ee:7b:5f:97:66:20:a3:
75:4d:b5:46:b9:b1:04:ef:df:8d:f5:83:d2:67:d0:50:fb:04:
bf:a6:f0:17:01:62:1c:48:19:e2:e3:a9:0a:1e:a0:db:83:7d:
4c:4f:83:6d:ab:27:16:0a:fa:5e:c0:94:a2:ed:82:5a:f5:56:
e7:e9:c1:bb:41:17:40:bf:f9:da:72:e3:f4:b1:53:f5:04:7f:
8d:fb:e7:c5:f4:e6:37:6c:2a:08:58:cc:44:c6:a5:4e:c1:e0:
97:97:55:bb:a8:63:0e:a4:36:1c:22:e1:cb:8b:3e:d5:49:9a:
c9:cc:d9:09:fc:b4:0c:6c:07:a4:99:78:4e:05:e3:de:bf:1f:
1a:b1:4a:f8:b7:8f:00:2c:30:86:78:2b:e5:25:88:67:e5:03:
ad:0c:f0:d3:e7:9e:f4:c4:6d:23:d9:45:99:c2:81:69:25:29:
5c:88:51:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org