Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/vXytAMv9EmlOZnaX6HOr9G0hWwU.roa
File: vXytAMv9EmlOZnaX6HOr9G0hWwU.roa (raw, json)
Hash identifier: GD1neilNkVALiv3vo1d2bd70W2y2cegY1fmoq8kYrFQ=
Subject key identifier: BD:7C:AD:00:CB:FD:12:69:4E:66:76:97:E8:73:AB:F4:6D:21:5B:05
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018953913156D316F65E72B22B97CE9FB595
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/vXytAMv9EmlOZnaX6HOr9G0hWwU.roa
Signing time: Fri 14 Jul 2023 08:42:51 +0000
ROA not before: Fri 14 Jul 2023 08:42:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203363
IP address blocks: 2.58.203.0/24 maxlen: 24
45.67.84.0/24 maxlen: 24
45.67.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 14:51:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:91:31:56:d3:16:f6:5e:72:b2:2b:97:ce:9f:b5:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 14 08:42:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd7cad00cbfd12694e667697e873abf46d215b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:aa:53:ba:a8:46:c4:df:16:6b:f6:49:0d:0b:
e7:a6:9e:10:e7:e2:d6:cb:c0:c5:2c:9b:7f:0f:a1:
1f:0a:65:c7:6a:15:f1:69:67:47:17:34:ad:b9:03:
c6:13:82:47:93:46:5a:2e:7e:16:5c:ec:a5:a1:e6:
5b:7c:8f:61:0a:d8:f6:27:64:a1:10:fe:70:eb:33:
47:fc:1d:dc:48:eb:88:f8:d8:26:86:48:e2:a5:22:
0c:83:68:92:c7:e2:48:1b:15:3f:61:77:00:8d:05:
5b:13:6c:c4:ea:c2:fc:61:88:cc:bf:55:c8:b7:43:
0d:45:fa:0d:ab:d6:55:63:fc:20:55:50:d6:26:1d:
a3:b7:20:7d:66:c6:d2:cb:ed:7d:02:df:6e:5a:3f:
f6:96:f3:06:b9:2f:1c:97:a2:ee:b3:86:f3:be:02:
15:eb:94:b9:41:c5:2b:24:52:51:d7:52:67:1a:e2:
4c:29:6b:b4:f5:a4:c6:65:36:5a:46:1a:81:52:8a:
0f:18:15:c9:37:35:8f:9c:5d:1e:b9:c6:a4:ae:e0:
0f:21:0b:2e:0d:62:22:e7:4a:33:fb:4b:66:7e:40:
e8:34:8b:c5:c7:a4:91:f0:6c:7f:75:d7:19:ab:d6:
9d:a8:85:ee:ed:a8:ca:d8:12:53:d4:c9:3b:fe:b8:
9b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:7C:AD:00:CB:FD:12:69:4E:66:76:97:E8:73:AB:F4:6D:21:5B:05
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/vXytAMv9EmlOZnaX6HOr9G0hWwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.203.0/24
45.67.84.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:26:ed:d0:51:9d:d2:51:d1:98:12:84:90:53:6e:2f:57:f2:
6e:f5:dd:3f:22:cb:6b:e3:b4:9f:84:9f:d3:6e:1e:6b:02:e6:
43:95:8f:05:ad:e2:0d:4e:6b:de:40:d9:28:80:f9:8b:94:6b:
1e:7b:fa:6d:98:94:31:f2:63:67:99:38:6b:28:51:63:d9:59:
8e:ea:1b:97:63:ae:f1:bb:df:87:7f:fa:20:d1:38:db:cd:09:
6c:7c:00:87:53:1c:31:bb:ef:b3:65:d0:27:79:88:09:81:ec:
37:cd:38:20:1c:b7:6d:e8:20:32:91:56:e4:f7:97:dc:9c:35:
c1:c2:16:73:fe:7e:50:34:5c:4b:98:02:0c:59:9c:7e:b4:bb:
b0:1e:04:d7:14:2c:c7:d8:bc:17:06:d0:23:9a:4f:ee:cf:31:
d0:78:95:d4:6d:9a:2a:ab:bf:82:41:24:2d:1c:a3:eb:09:2d:
bc:51:40:1e:26:23:39:90:9e:cb:5e:8b:0d:cc:1e:2f:10:3c:
ee:c7:5b:70:a5:9f:97:3e:46:a8:2e:49:9f:2a:0e:f7:c4:1d:
f5:58:ab:03:dd:8e:c7:dc:15:8a:4d:b1:26:c1:3e:0a:5b:c2:
a7:3f:45:91:ce:0f:16:34:df:0a:cc:18:53:43:05:66:3b:b2:
b5:7f:a2:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:14 2024 by rpki-client on console-ams.rpki-client.org