Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ssyIjLtnjEFtljAA876_yGt0e6E.roa
File: ssyIjLtnjEFtljAA876_yGt0e6E.roa (raw, json)
Hash identifier: LNwxRpMJAxAfF7zV6Ovq2o3W0mDoJHjAIa6Bpakyaqs=
Subject key identifier: B2:CC:88:8C:BB:67:8C:41:6D:96:30:00:F3:BE:BF:C8:6B:74:7B:A1
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018A6433941D76E39EDB75012A538A92E282
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ssyIjLtnjEFtljAA876_yGt0e6E.roa
Signing time: Tue 05 Sep 2023 07:16:56 +0000
ROA not before: Tue 05 Sep 2023 07:16:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198361
IP address blocks: 2.56.111.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:33:94:1d:76:e3:9e:db:75:01:2a:53:8a:92:e2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Sep 5 07:16:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2cc888cbb678c416d963000f3bebfc86b747ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:51:ce:d3:e4:1b:15:26:2e:3a:f6:c5:49:50:
71:e0:5f:5c:33:fd:7a:84:1e:fb:a9:3e:00:e5:20:
44:a6:b1:c2:8b:6b:ad:56:52:ac:df:11:c6:93:58:
97:9d:ba:05:9e:74:53:20:e3:dc:68:9e:b7:ab:5e:
e2:33:ff:3f:ba:c8:cc:63:8f:28:20:4c:94:c3:f7:
28:5b:62:27:4b:8e:22:e7:07:eb:c7:eb:ab:31:8e:
b1:1d:c0:4f:2d:19:2f:a4:e2:00:f8:39:af:dd:5c:
d2:ae:0b:88:28:7a:a6:84:21:18:7d:34:0a:cc:8d:
87:79:1f:a9:a4:d5:88:e1:71:77:af:f9:d8:5c:b9:
80:a3:53:28:cb:79:25:ef:93:d0:38:ed:8e:e3:76:
e8:78:5d:02:cd:08:bc:ab:af:73:18:ae:08:0a:43:
0e:25:a3:88:64:c5:ae:52:88:97:08:ab:b9:a1:1f:
7d:25:bc:61:33:e8:f3:0b:9c:12:17:e6:59:8d:25:
7b:7b:67:bd:15:bc:ec:b6:9d:4b:c4:44:bb:f8:a6:
66:c1:ad:04:ce:8e:28:81:95:3a:23:c4:40:4b:bc:
83:f7:8d:f8:47:61:06:ac:d0:79:95:ec:62:72:23:
19:b8:ce:f5:50:4f:e1:be:52:34:76:fa:35:01:d2:
a2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CC:88:8C:BB:67:8C:41:6D:96:30:00:F3:BE:BF:C8:6B:74:7B:A1
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/ssyIjLtnjEFtljAA876_yGt0e6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.111.0/24
45.88.138.0/24
77.83.38.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:36:82:d0:de:bc:1e:69:f0:97:50:c8:59:27:7e:97:7a:60:
f0:31:44:8e:15:22:f7:01:e1:2b:94:90:e8:96:f6:61:0f:82:
9f:e5:c5:85:76:da:83:3e:17:65:cf:de:6e:94:2b:07:b9:c3:
c5:77:fc:29:e3:71:65:1f:bc:f7:e7:ff:90:31:c7:ea:16:67:
1e:e6:59:36:1c:21:67:26:94:ff:a0:e2:5c:ad:26:b9:0c:f2:
26:9e:3b:27:b6:c8:ff:d9:33:ae:27:16:ec:2b:0a:8d:09:cd:
47:c7:ee:62:7a:8e:4c:dd:0f:f4:f1:69:f4:e4:f6:18:1c:72:
66:69:18:6a:42:42:4b:f6:d8:20:e1:7e:20:ea:d9:2b:21:d6:
7a:50:e4:4d:77:1d:90:eb:8e:c9:1b:a2:54:8c:fb:d7:93:7e:
84:ae:60:be:53:b3:d5:cd:7a:6a:df:e4:ab:ea:56:61:ed:70:
01:c9:72:85:6d:21:30:08:7a:70:c2:d3:4f:12:d3:bc:a1:76:
19:db:66:a8:d4:8a:ab:50:d7:a5:8f:1a:49:27:0a:d9:6c:8d:
6f:a2:bd:82:ae:68:97:82:98:d2:ab:d9:01:aa:50:ac:68:1a:
64:68:29:58:cc:d3:02:9e:6f:31:ef:f2:89:f7:68:d0:c4:fa:
c6:4f:47:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 10 14:42:26 2023 by rpki-client on console-ams.rpki-client.org