Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/Xb5IkRqw1yYL7agtSS8qZIYEb5c.roa
File: Xb5IkRqw1yYL7agtSS8qZIYEb5c.roa (raw, json)
Hash identifier: 6dgGu3pdNCOlAcYb6h95XDKDHa53DltFbdGfa1o4no0=
Subject key identifier: 5D:BE:48:91:1A:B0:D7:26:0B:ED:A8:2D:49:2F:2A:64:86:04:6F:97
Certificate issuer: /CN=2453da50e879bba7d7cff4f07d2caa5e9c01087d
Certificate serial: 0186C69279176D129AE5C664D59163E8BE71
Authority key identifier: 24:53:DA:50:E8:79:BB:A7:D7:CF:F4:F0:7D:2C:AA:5E:9C:01:08:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/Xb5IkRqw1yYL7agtSS8qZIYEb5c.roa
Signing time: Thu 09 Mar 2023 13:32:13 +0000
ROA not before: Thu 09 Mar 2023 13:32:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207291
IP address blocks: 2.57.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:92:79:17:6d:12:9a:e5:c6:64:d5:91:63:e8:be:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2453da50e879bba7d7cff4f07d2caa5e9c01087d
Validity
Not Before: Mar 9 13:32:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dbe48911ab0d7260beda82d492f2a6486046f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a9:2a:f3:6b:d3:ab:9e:2e:0c:fa:8f:d5:fa:
7a:73:27:71:ab:e0:a5:97:06:f5:99:6f:77:fb:07:
b1:12:b3:d6:49:b5:c2:fe:2d:18:43:3e:ed:b6:ac:
4e:4d:09:e1:01:32:f2:4a:59:5b:fd:92:9a:c9:ba:
cd:64:fa:28:d6:41:91:a7:ba:51:24:72:f6:6b:fd:
65:c9:76:6c:7d:dc:bd:49:f8:b7:3f:bd:e8:f2:d2:
06:5b:af:76:96:58:2e:d1:4c:64:70:c2:bd:91:40:
a7:fd:11:63:ce:ca:19:1b:3b:87:38:56:99:80:0c:
a0:6d:de:c8:eb:88:ab:34:96:6d:a9:8d:15:e3:2f:
0d:40:28:27:bc:93:e2:6f:e5:88:45:79:33:ca:93:
a3:d1:d7:0b:31:4d:8f:9c:6a:90:ef:0c:da:e1:f6:
ea:44:a5:98:ec:2e:26:6f:45:9a:65:ea:9e:c8:c6:
81:d6:d4:01:ad:44:51:54:c4:88:d3:9b:c2:06:e9:
a6:52:72:93:e6:49:e8:d4:2a:80:91:98:f5:c3:a5:
74:85:1b:61:86:b8:f3:ae:82:d2:62:25:76:f2:57:
5f:7b:90:e4:47:3d:8f:e6:33:be:4e:b4:32:c7:9f:
0c:5c:28:60:e2:43:6d:86:00:c6:ff:36:57:28:b9:
54:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BE:48:91:1A:B0:D7:26:0B:ED:A8:2D:49:2F:2A:64:86:04:6F:97
X509v3 Authority Key Identifier:
keyid:24:53:DA:50:E8:79:BB:A7:D7:CF:F4:F0:7D:2C:AA:5E:9C:01:08:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/Xb5IkRqw1yYL7agtSS8qZIYEb5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/JFPaUOh5u6fXz_TwfSyqXpwBCH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.236.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:28:4b:95:82:e6:3e:d3:f4:62:d0:ab:56:f9:34:40:fb:80:
ce:1b:63:70:00:9f:29:80:8d:37:5a:01:25:25:3a:61:7e:ad:
67:c9:cf:92:6f:61:0e:db:c1:05:6e:17:ac:c1:2c:d3:bb:61:
13:87:42:0d:65:3a:79:25:63:da:58:eb:e1:62:68:1e:ae:6f:
47:b6:42:97:d2:bf:f4:8d:59:7f:d7:eb:3d:d2:77:47:3d:d3:
29:7e:67:c9:dd:9c:9c:f1:c3:81:f8:76:b0:94:61:dd:c9:0d:
5c:38:b5:1b:b8:17:3d:3c:de:a5:3b:57:00:e8:9a:be:52:43:
46:50:b6:40:69:1f:f4:26:b6:6d:4a:d7:f6:89:cf:aa:da:90:
43:fd:66:03:84:93:f2:70:23:eb:f2:a4:4e:2a:78:25:1e:da:
65:a2:de:4d:32:c8:56:71:dd:f7:98:c8:d3:18:17:a2:55:35:
42:56:c5:c8:85:b0:9a:7e:0a:0c:81:8f:34:07:79:39:dc:6f:
42:b1:b4:46:a7:8a:75:80:76:91:2c:88:0e:08:9e:a7:3f:c8:
45:d5:9e:e3:9a:44:0c:da:63:04:d0:f9:f7:5e:fd:59:0a:23:
7b:2c:57:b3:50:a8:4e:45:4f:93:a0:ca:14:b1:fb:a9:37:da:
a7:90:c0:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org