Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7hpOh4MQSDha2DdohfJI05d88IY.roa
File: 7hpOh4MQSDha2DdohfJI05d88IY.roa (raw, json)
Hash identifier: Zz1VDfaweF8DjY6Gx7JcXa1asl98v7skXkoaJNb91aU=
Subject key identifier: EE:1A:4E:87:83:10:48:38:5A:D8:37:68:85:F2:48:D3:97:7C:F0:86
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FC08EEBC9B2A2439A7D4A7700F2EC65E5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7hpOh4MQSDha2DdohfJI05d88IY.roa
Signing time: Tue 28 May 2024 18:55:42 +0000
ROA not before: Tue 28 May 2024 18:55:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50580
IP address blocks: 2.58.95.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 05:45:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c0:8e:eb:c9:b2:a2:43:9a:7d:4a:77:00:f2:ec:65:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 28 18:55:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee1a4e87831048385ad8376885f248d3977cf086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:d7:40:9a:6c:df:b3:b8:72:d1:da:dd:0c:
85:43:7b:d2:6f:70:80:9f:92:09:fb:4f:fe:1f:8c:
67:dd:59:03:69:51:25:cc:08:e3:87:fe:fe:e5:cf:
bb:dc:3c:e2:bd:d8:b4:57:81:8e:21:43:cf:5f:65:
73:4b:b3:f0:82:ac:ca:14:20:0f:c6:42:3d:f3:d9:
4e:74:94:e7:e2:19:19:d4:8b:ec:5e:b5:88:79:0a:
87:ac:7d:8a:8b:dc:17:4f:7e:8e:5c:70:67:47:bf:
05:24:35:4e:c2:f8:2c:c8:7c:60:9b:22:51:b1:9b:
5a:8b:d3:23:97:5d:0a:49:ec:80:a3:af:9c:b3:fa:
43:cc:93:52:c9:c8:6f:7e:f7:9a:fa:25:48:d4:a8:
f2:bf:47:45:54:7a:38:b8:72:db:c0:2e:35:1e:47:
3f:98:13:fc:c8:d9:8f:ff:b6:df:57:5b:50:c2:5f:
77:ad:ec:0d:d9:0b:e1:8d:a9:27:a9:b1:05:eb:74:
d8:d3:1b:70:49:a7:9d:b6:a1:6e:66:a1:2a:25:c3:
db:85:cb:f5:bb:e6:a8:99:58:9f:b4:e8:0b:8e:9e:
5d:e4:79:d2:72:c0:9d:c0:b9:37:82:43:2f:80:df:
a0:56:73:09:03:8f:5a:5a:16:78:04:d1:1b:d1:39:
95:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1A:4E:87:83:10:48:38:5A:D8:37:68:85:F2:48:D3:97:7C:F0:86
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7hpOh4MQSDha2DdohfJI05d88IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.95.0/24
194.55.186.0/24
Signature Algorithm: sha256WithRSAEncryption
21:ff:8b:b6:a6:f2:df:34:28:be:25:24:df:08:97:9e:de:f5:
29:1f:bb:7b:66:e4:87:e0:fc:05:ca:4a:61:6a:16:52:42:51:
d9:50:e5:2d:a0:5d:05:ff:7e:53:da:ec:be:a5:0c:2a:5a:d4:
78:56:89:43:ca:e3:5f:e9:49:5e:35:96:42:dd:7b:ef:dd:3f:
a7:82:ab:2e:46:e0:87:7d:00:92:93:ce:60:26:f9:f8:5a:db:
09:fa:d0:62:93:db:28:1b:a5:d1:e4:7b:f3:04:5d:b8:8b:01:
07:69:7d:9a:ed:e8:85:fb:c8:bb:31:87:9a:58:4f:8b:b7:52:
12:0c:ae:eb:0b:a9:13:fd:b7:8e:2a:83:e7:28:62:10:d3:08:
49:14:10:e0:5e:44:e3:4e:b6:02:03:a1:73:91:ca:31:65:46:
f9:96:29:85:20:57:fa:c1:76:db:a1:2a:7f:26:f7:9b:58:a7:
55:08:7a:cc:29:98:83:7f:c1:78:f8:ed:b4:dd:39:0b:83:cd:
ac:5a:49:d8:e4:94:c2:98:c7:f8:2f:01:50:51:9e:22:ed:97:
c2:88:7f:66:17:3f:e4:e9:c1:e5:11:ed:7c:ec:9b:bc:58:ea:
66:93:20:7a:bf:83:9a:d1:b5:9e:cb:46:5b:73:ab:20:85:b4:
e8:87:34:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 06:45:48 2024 by rpki-client on console-fra.rpki-client.org