Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/30UdKRRQz1fmDYjO143CWPBrmdU.roa
File: 30UdKRRQz1fmDYjO143CWPBrmdU.roa (raw, json)
Hash identifier: suTViqo54e6TdCp6tl/4HPtSiKjdF2UH8tBO840qP2g=
Subject key identifier: DF:45:1D:29:14:50:CF:57:E6:0D:88:CE:D7:8D:C2:58:F0:6B:99:D5
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018B6B5EC9FB6C545114F0DDF3B7C8785FE8
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/30UdKRRQz1fmDYjO143CWPBrmdU.roa
Signing time: Thu 26 Oct 2023 09:44:16 +0000
ROA not before: Thu 26 Oct 2023 09:44:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52073
IP address blocks: 2.58.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 30 Oct 2023 09:46:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6b:5e:c9:fb:6c:54:51:14:f0:dd:f3:b7:c8:78:5f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 26 09:44:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df451d291450cf57e60d88ced78dc258f06b99d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d0:bf:79:45:15:ff:a8:6e:84:ff:c8:8b:6d:
57:15:c0:df:e7:05:79:30:e4:c8:d4:de:af:3a:cd:
a3:9a:a6:18:9e:2c:b7:a9:72:a3:19:99:c2:28:38:
b1:c6:f6:f1:cd:06:63:36:ab:eb:ea:71:1f:a5:87:
95:13:43:7d:cd:4a:4e:f0:2e:13:b5:09:a5:54:52:
d4:ef:8a:02:c5:f1:38:af:cb:4d:27:28:e4:1a:1c:
04:e5:ee:0b:14:f0:05:29:e3:be:8e:75:1e:97:fa:
b3:2e:db:c9:99:17:57:44:cf:30:b6:1d:f4:a5:d4:
dc:ae:25:ed:1f:35:59:93:91:a0:1c:c8:20:c7:f1:
fd:e6:11:c6:e0:13:97:e3:a7:9e:1b:fa:27:2a:96:
9b:8f:6e:b0:ba:c0:19:9d:da:c8:20:6e:dd:88:88:
72:a7:bf:fe:39:32:22:a6:e6:f4:e7:c5:14:bf:56:
02:bf:e0:0c:9e:ef:74:42:24:d0:b6:16:c2:6c:7b:
80:98:2f:1f:ab:dd:79:fb:60:6f:72:af:07:92:7b:
4d:c3:75:dd:8a:56:f5:28:8a:5c:b9:75:04:a8:00:
60:86:0c:58:d3:de:81:f5:69:1d:aa:6b:a2:49:fb:
ff:74:92:91:5b:05:07:9e:1c:d1:d0:df:c0:7e:1d:
43:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:45:1D:29:14:50:CF:57:E6:0D:88:CE:D7:8D:C2:58:F0:6B:99:D5
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/30UdKRRQz1fmDYjO143CWPBrmdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.198.0/23
Signature Algorithm: sha256WithRSAEncryption
93:7b:e5:77:1d:7e:83:27:9c:03:12:b1:6f:e5:48:04:3d:d8:
1f:e2:42:42:78:3b:0a:b3:8a:68:13:0e:80:b9:44:dd:7c:ee:
e6:b0:68:93:3b:b6:7d:40:3a:b0:84:8b:a3:f7:a2:33:1f:cf:
59:5c:ed:09:d9:cc:4b:82:ff:a0:31:18:cf:87:9f:fd:f6:06:
91:17:4b:a1:7a:ff:29:09:3c:cf:91:04:ce:ce:c6:38:df:99:
28:37:b8:64:c4:43:b0:a3:d3:75:34:b0:47:98:cd:b3:1c:1a:
75:d5:74:1c:48:c8:30:e0:6c:98:ac:09:c0:5d:fb:48:ea:b0:
82:dc:ba:ee:24:a5:55:34:cc:b9:cd:40:e0:e8:b3:4d:3a:5c:
e5:0f:b8:cc:af:7a:ed:6b:a9:1b:47:5f:a8:c5:65:3e:ef:33:
c1:ab:8d:09:b3:ab:c0:0a:4b:d6:40:7c:cd:5a:6f:81:2e:72:
3f:1e:ed:8d:98:f9:7a:1c:e0:ac:c2:b9:ab:f9:8b:e6:0e:d8:
06:c7:09:53:cc:86:db:17:66:76:1d:17:89:42:1b:f4:51:a3:
32:f8:14:72:a6:3c:b4:b4:48:5f:2c:49:b6:59:47:43:62:62:
39:f9:79:01:8d:0a:a5:d7:7f:01:66:e6:dd:76:fd:fc:b5:80:
7c:33:b3:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org