Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/H27quDetDRRWpT2dvYC45Pjljmw.roa
File: H27quDetDRRWpT2dvYC45Pjljmw.roa (raw, json)
Hash identifier: Jx3SaqoHypSDC8opbPco1WFDZ4OSrTuOi5i8EnFa9lo=
Subject key identifier: 1F:6E:EA:B8:37:AD:0D:14:56:A5:3D:9D:BD:80:B8:E4:F8:E5:8E:6C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018573900534160FCBFC812A58BF238549FB
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/H27quDetDRRWpT2dvYC45Pjljmw.roa
Signing time: Mon 02 Jan 2023 17:38:16 +0000
ROA not before: Mon 02 Jan 2023 17:38:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209183
IP address blocks: 2.56.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 16:49:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:05:34:16:0f:cb:fc:81:2a:58:bf:23:85:49:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f6eeab837ad0d1456a53d9dbd80b8e4f8e58e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:d2:b1:ea:49:f4:20:f3:f4:32:4c:da:55:
dc:b4:65:45:96:43:ba:9e:6d:c1:70:23:e1:ed:76:
a7:f8:c8:a4:5a:9e:62:a1:4b:26:09:ce:e0:f2:e1:
18:f2:81:21:60:21:02:30:d0:bb:a6:e1:da:10:86:
d6:4c:c3:cb:41:ec:25:67:14:1a:03:3b:c5:59:81:
b8:e3:7a:84:b1:af:a0:15:8e:cb:7c:db:ab:be:0a:
75:4c:43:bb:1b:70:99:b0:a5:09:78:36:c5:a5:2e:
18:9f:b7:58:d8:bc:33:a0:72:72:f5:1b:04:ed:8f:
a5:43:bc:a5:b0:87:d7:11:b7:f2:ff:78:ae:33:3b:
b7:e1:30:c8:f1:fb:af:33:1c:45:af:23:d6:d4:96:
68:e8:0a:f7:38:b0:c9:0d:d2:a2:4a:9c:09:e0:28:
14:31:2d:95:04:f8:8c:75:0d:96:12:82:0f:7e:b1:
fe:7d:ce:96:ae:bb:97:a4:6d:65:e5:87:c5:38:ce:
17:81:d8:1e:4e:7a:86:0a:0f:b0:46:2d:bb:c8:a0:
78:43:d3:9c:d8:a0:da:c1:e6:1f:13:81:f3:19:7e:
7c:e5:e2:47:7e:4d:ed:3f:f9:a8:a8:07:0b:be:7e:
90:96:2e:85:df:fa:ef:2c:38:3a:19:a2:1d:bc:c2:
52:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6E:EA:B8:37:AD:0D:14:56:A5:3D:9D:BD:80:B8:E4:F8:E5:8E:6C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/H27quDetDRRWpT2dvYC45Pjljmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.164.0/24
Signature Algorithm: sha256WithRSAEncryption
12:1d:50:43:95:9f:0e:b1:17:e5:cf:b4:08:fd:a7:44:df:60:
eb:f2:dd:ee:b4:a5:dd:eb:8a:c3:1e:7a:86:92:39:c0:0e:cb:
53:1e:fa:4f:23:93:6a:94:8d:bd:18:2b:92:b8:8a:0c:62:c1:
47:47:e1:58:a3:f6:42:52:9f:ae:93:c5:70:7a:cc:b0:fb:3b:
fe:7e:7c:3a:e7:7b:7f:6a:21:ef:bb:15:3a:87:c0:21:87:26:
c5:5d:06:77:ac:9f:32:0c:4b:18:84:bb:bb:35:85:84:87:d2:
5e:e9:20:e6:c4:1f:99:80:26:96:ca:d6:b7:3f:e2:82:ab:00:
b8:e1:54:09:72:58:6d:7e:51:d6:6c:d9:fb:a9:72:ab:61:f4:
57:f9:ef:ff:1e:61:28:ba:17:fc:12:23:93:83:93:11:1a:6c:
75:26:ac:9d:f7:cc:d6:92:ec:7d:79:1f:62:4e:67:8e:22:3c:
76:4b:1f:99:26:fe:e8:eb:7b:22:4e:e8:46:f2:2c:ca:54:85:
58:62:98:4c:d6:92:be:02:c6:93:96:19:42:bc:6c:f2:3c:be:
06:5c:cb:92:2c:15:ff:c5:e2:23:db:23:b7:ce:ae:4d:da:da:
d9:a7:03:13:c5:0a:1c:0f:ad:84:4e:8b:b9:ac:3d:cf:d0:a7:
c3:4d:7e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org