Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/vdsSGMOqni4xd07Qnu9KQMj25hU.roa
File: vdsSGMOqni4xd07Qnu9KQMj25hU.roa (raw, json)
Hash identifier: +MKQxSDPKYeVmxzXkbSqJC4CEBjLQlddqq2nhnFItlc=
Subject key identifier: BD:DB:12:18:C3:AA:9E:2E:31:77:4E:D0:9E:EF:4A:40:C8:F6:E6:15
Certificate issuer: /CN=2453da50e879bba7d7cff4f07d2caa5e9c01087d
Certificate serial: 018CCA2B4438AD9D509EB33256482C5FAF9F
Authority key identifier: 24:53:DA:50:E8:79:BB:A7:D7:CF:F4:F0:7D:2C:AA:5E:9C:01:08:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/vdsSGMOqni4xd07Qnu9KQMj25hU.roa
Signing time: Tue 02 Jan 2024 12:34:42 +0000
ROA not before: Tue 02 Jan 2024 12:34:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207291
IP address blocks: 2.57.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 16:15:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:44:38:ad:9d:50:9e:b3:32:56:48:2c:5f:af:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2453da50e879bba7d7cff4f07d2caa5e9c01087d
Validity
Not Before: Jan 2 12:34:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bddb1218c3aa9e2e31774ed09eef4a40c8f6e615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d8:17:11:fe:3d:ec:dc:52:90:04:4a:9a:90:
07:10:11:12:2f:21:4c:e1:8b:45:79:d9:a1:8e:6b:
d5:e7:4b:76:76:6b:a8:74:dc:2d:22:dd:60:6c:e7:
81:21:f9:4c:70:99:e7:ba:e7:85:71:98:19:32:5b:
57:14:ff:0b:25:0e:db:0b:0d:1d:9c:d4:09:72:b0:
54:dd:05:d0:ef:85:b3:67:ec:44:80:e7:e5:f2:10:
7c:92:20:b2:d5:cc:a8:72:6f:d2:62:40:87:74:8a:
ed:bb:cd:ef:7d:39:51:78:a6:f0:80:09:76:27:63:
19:17:1a:9e:a6:48:f2:f5:c3:94:e4:3d:00:e4:c1:
ce:6b:60:5a:77:8b:fe:6a:64:b3:69:76:f1:d3:e0:
45:bc:4e:2c:02:02:0e:7f:cb:fb:a0:d9:4a:67:c1:
39:0f:4c:49:08:90:5d:af:97:b8:d4:19:80:30:0c:
00:26:d7:18:85:24:70:da:95:86:76:3b:39:24:41:
bf:87:ec:14:a2:c2:db:ab:dc:72:36:67:49:18:da:
c5:f9:33:d5:28:df:93:1d:22:8a:ac:69:89:91:42:
1e:d7:96:2c:80:ec:50:33:05:39:0c:2d:43:0e:b8:
7d:1c:01:b3:77:9c:91:bf:b3:77:6b:dd:a6:2a:6c:
a6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:DB:12:18:C3:AA:9E:2E:31:77:4E:D0:9E:EF:4A:40:C8:F6:E6:15
X509v3 Authority Key Identifier:
keyid:24:53:DA:50:E8:79:BB:A7:D7:CF:F4:F0:7D:2C:AA:5E:9C:01:08:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFPaUOh5u6fXz_TwfSyqXpwBCH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/vdsSGMOqni4xd07Qnu9KQMj25hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2f78cf-3260-433b-9e91-e43a52b604ca/1/JFPaUOh5u6fXz_TwfSyqXpwBCH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.236.0/24
Signature Algorithm: sha256WithRSAEncryption
df:5c:61:9c:fd:d6:32:6d:2f:d9:07:c2:54:a9:40:ce:3c:39:
03:90:62:fe:08:92:76:62:22:29:da:a5:b1:d3:df:41:45:98:
c9:6a:01:ce:a8:45:ab:b0:d3:9a:9e:f3:50:47:17:f8:6d:fa:
af:e0:00:36:86:16:db:a0:4e:9b:84:c3:2a:da:53:33:e5:68:
37:1b:4a:50:ff:82:fc:1d:ba:68:7b:27:3e:22:03:f2:b4:6f:
d2:cc:39:f0:9b:e8:36:a7:ba:59:a9:fb:ea:f7:09:78:63:55:
ef:ae:92:a8:15:f2:38:d3:ad:87:0c:8b:0b:ad:e4:04:1f:d7:
02:69:66:6d:6d:47:6d:2d:be:c3:85:b6:49:8d:5f:cd:2c:e0:
b5:bc:98:7a:f3:3d:00:60:13:55:be:bf:ab:b0:b1:b1:2b:04:
99:58:17:6c:65:a8:96:87:51:3e:0a:0b:92:d6:5e:51:60:3c:
1f:d4:10:c6:da:5f:6b:90:27:7b:8f:af:fe:0f:c2:1e:cc:43:
47:ac:29:f1:ec:a7:d1:28:9a:67:73:91:25:e6:46:5d:88:cd:
ca:49:50:d3:dc:24:2f:76:43:02:3c:94:73:6d:7b:19:1e:38:
44:28:fc:09:2e:d2:8c:11:0c:00:cb:4c:92:25:07:26:8a:c0:
5f:56:35:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 22 18:51:29 2024 by rpki-client on console-ams.rpki-client.org