Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Qp8vzlb0wCk3KWATUXd5PlHF6_I.roa
File: Qp8vzlb0wCk3KWATUXd5PlHF6_I.roa (raw, json)
Hash identifier: sBbl1gFyxw8YoidQN9rijBxtPW4ndIjQoMPNYwqs1Tw=
Subject key identifier: 42:9F:2F:CE:56:F4:C0:29:37:29:60:13:51:77:79:3E:51:C5:EB:F2
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01904D67ED3AEB8789057F3EBF6A2469CE2F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Qp8vzlb0wCk3KWATUXd5PlHF6_I.roa
Signing time: Tue 25 Jun 2024 03:19:34 +0000
ROA not before: Tue 25 Jun 2024 03:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215343
IP address blocks: 2.59.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 05:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4d:67:ed:3a:eb:87:89:05:7f:3e:bf:6a:24:69:ce:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 25 03:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=429f2fce56f4c029372960135177793e51c5ebf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6b:c1:51:a3:b4:40:5a:fd:9d:e4:1f:2c:3c:
cc:34:ca:77:96:25:e7:1d:c1:eb:da:bf:ca:38:13:
8a:e0:65:6f:22:51:fc:e5:fa:c2:99:f0:e3:1c:06:
55:88:06:da:df:9f:86:05:37:0c:e7:21:6d:b5:c3:
43:81:a2:62:ea:cf:b3:a6:90:5d:58:3d:01:c3:e0:
19:52:e7:ab:65:a7:67:7e:44:ea:d0:02:72:a2:82:
b6:79:53:f6:ad:8f:27:ec:60:27:3c:e5:12:cd:61:
24:d4:5c:9f:b6:0e:a9:44:af:05:66:32:86:73:bf:
aa:f3:ec:09:4b:40:27:f0:ec:16:e1:3a:ca:19:63:
5c:86:cf:0c:2e:68:e1:86:78:fe:31:f5:58:ab:58:
00:46:bc:27:9f:66:4c:c3:35:78:0a:b0:5f:55:4e:
3c:60:3d:d1:bc:c3:67:2f:07:7a:98:66:b6:aa:7e:
ae:a7:f6:a6:b4:81:bc:1b:47:55:7c:55:a9:9e:ac:
42:9a:6b:74:c0:be:bf:62:a2:48:ff:ed:52:19:ba:
45:b7:6a:21:a8:f9:8d:58:40:81:2f:1d:a7:fc:67:
94:8e:e2:d4:2f:75:b1:9d:02:08:12:70:1d:78:99:
06:3f:0b:2b:d4:ca:3e:01:b6:bd:b9:c0:3a:f1:99:
76:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9F:2F:CE:56:F4:C0:29:37:29:60:13:51:77:79:3E:51:C5:EB:F2
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Qp8vzlb0wCk3KWATUXd5PlHF6_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.252.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2d:40:17:aa:1d:3f:30:1f:9c:98:f6:0b:e5:1a:6a:06:99:
7b:f2:27:9d:60:96:99:d8:f0:6b:2c:c1:44:cc:62:ef:fc:48:
1e:ef:ac:35:3d:d3:fd:1c:bd:87:30:2e:90:31:06:56:8f:0a:
a3:76:b9:33:41:38:b8:64:f0:d4:05:73:83:3f:dd:1c:08:2e:
e1:04:06:fc:68:b3:22:b9:f3:2f:ed:cd:02:e7:58:c4:c0:68:
57:51:14:f4:6b:18:60:ff:f2:dd:ac:91:37:d0:c2:e8:dc:94:
e9:89:6e:7f:9d:38:2e:15:3a:83:f3:d0:a2:18:1c:27:74:92:
83:6c:4a:06:47:6a:dc:b7:d2:1d:df:85:95:8c:2c:c0:3a:50:
d6:e4:01:65:ce:62:bf:ea:7b:bb:02:e7:38:ae:b9:de:62:18:
1f:c4:96:65:f1:4b:3a:1a:e8:ba:68:24:d7:bf:57:f8:76:d6:
36:5b:61:55:b0:3e:0d:38:d3:67:a8:d5:4d:59:47:9d:3b:8c:
93:76:f2:81:e9:02:5c:0a:13:fd:a0:37:cc:aa:85:65:32:c8:
f0:5a:a4:b1:93:aa:97:98:54:84:b4:2e:1a:91:c3:d5:ad:c0:
51:26:f4:ad:3b:29:0c:a8:9c:d0:42:c0:e9:7b:20:14:bf:0e:
5d:95:54:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 07:42:31 2024 by rpki-client on console-ams.rpki-client.org