Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3PcNEhhZwNq0JZSm4Q9k2-N4h-w.roa
File: 3PcNEhhZwNq0JZSm4Q9k2-N4h-w.roa (raw, json)
Hash identifier: e5TBtT9O6zXBVc9GioIlOUY+re5nMSIyqktqHrCCV7E=
Subject key identifier: DC:F7:0D:12:18:59:C0:DA:B4:25:94:A6:E1:0F:64:DB:E3:78:87:EC
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018A03FAD48E5ED79A693A2902C2A73BC4FC
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3PcNEhhZwNq0JZSm4Q9k2-N4h-w.roa
Signing time: Thu 17 Aug 2023 14:51:24 +0000
ROA not before: Thu 17 Aug 2023 14:51:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199180
IP address blocks: 2.58.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 06:34:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:03:fa:d4:8e:5e:d7:9a:69:3a:29:02:c2:a7:3b:c4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 17 14:51:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcf70d121859c0dab42594a6e10f64dbe37887ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:cd:02:e9:28:7f:c4:c9:00:4e:1a:d7:55:
e3:77:34:32:36:ee:e8:d4:10:af:ee:11:4a:89:5e:
b4:ff:00:d1:41:8c:8d:c3:73:91:7b:b8:5d:24:32:
69:f8:a6:04:06:14:2d:b1:99:d4:a3:69:e1:64:83:
6c:1a:03:f6:d6:71:c6:89:b0:04:2b:5a:1a:1e:bb:
3c:cf:ed:43:08:f3:23:60:bd:71:07:c0:b3:c4:d7:
10:24:74:d8:a1:d7:5e:2a:b4:2a:f5:bf:d3:d9:08:
ef:85:7c:b5:9c:0e:99:74:03:bc:47:20:41:28:c0:
1d:db:53:00:28:13:11:90:e4:a1:88:b9:8b:fc:02:
56:b5:68:a7:1a:22:7e:89:f8:ae:9a:c0:13:ca:5f:
11:01:97:58:dd:b4:ad:09:f6:2d:ba:46:ce:c7:84:
c8:68:7e:e7:8e:e6:b2:ab:54:60:8e:ef:43:29:88:
e9:d7:ab:24:23:ff:85:da:89:b7:46:e9:9c:0e:0a:
b7:7f:b2:3b:6a:6f:ea:9a:91:19:de:a6:be:06:fd:
00:84:f3:b1:4d:87:68:38:92:00:6e:6d:1b:63:4f:
c8:2c:5a:7a:17:fb:d8:e1:1c:41:27:78:3c:5b:61:
58:41:70:e7:f8:a8:96:3a:03:e1:a3:05:f6:91:85:
99:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F7:0D:12:18:59:C0:DA:B4:25:94:A6:E1:0F:64:DB:E3:78:87:EC
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3PcNEhhZwNq0JZSm4Q9k2-N4h-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.203.0/24
Signature Algorithm: sha256WithRSAEncryption
56:96:62:5f:68:e5:a4:cb:8b:05:cc:5d:1c:ea:e0:ec:1b:82:
25:4c:f1:5c:62:d3:f5:18:9d:3d:2c:fe:87:25:bd:de:7a:02:
3e:ea:b6:c5:51:c7:7c:9d:98:15:af:c7:b5:36:6e:7a:5d:1f:
7f:88:dc:d2:1c:7a:39:9a:91:13:12:45:8a:ed:1f:2e:e9:66:
87:e9:35:98:4f:7f:7d:24:55:6d:ff:95:35:f8:3b:7a:a7:57:
d6:c7:bb:c2:34:f0:4c:96:1d:f0:d8:38:b7:53:ed:64:0a:67:
25:45:8a:c9:30:fa:29:0e:db:d9:d4:fe:f7:87:3c:63:e0:56:
a6:13:f9:26:4b:77:6b:7d:28:98:a5:af:6a:59:c9:c8:09:05:
a0:24:3d:f6:5e:66:a3:31:bf:02:bf:d8:29:5e:49:90:9b:9b:
bb:44:7f:92:f7:ab:c4:8d:6a:48:6e:77:c3:90:eb:50:6d:46:
6a:8c:32:1a:2e:8c:90:9d:4d:e1:60:5b:94:b9:bf:70:9e:fa:
1d:ce:01:c8:3f:0c:5e:56:0d:3b:fa:d8:6b:f9:62:c2:ea:d6:
a3:1c:3a:e3:d4:63:a8:9d:7f:4e:a0:3e:d6:61:f3:83:ae:2f:
85:5f:af:39:d4:79:53:2d:0b:4e:9c:d5:69:d6:6c:00:2f:5d:
2c:65:5b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org