Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/mFb8fUyERWilVwCdUye1yzI6cJ0.roa
File: mFb8fUyERWilVwCdUye1yzI6cJ0.roa (raw, json)
Hash identifier: +FZ1WIa5jWnogx033k0yzEilMrkUkUVu3C+gkrZY/lg=
Subject key identifier: 98:56:FC:7D:4C:84:45:68:A5:57:00:9D:53:27:B5:CB:32:3A:70:9D
Certificate issuer: /CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Certificate serial: 018B04884FCD4056D84EF75D8EF897AA97AF
Authority key identifier: 29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/mFb8fUyERWilVwCdUye1yzI6cJ0.roa
Signing time: Fri 06 Oct 2023 10:28:44 +0000
ROA not before: Fri 06 Oct 2023 10:28:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25151
IP address blocks: 2.57.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:88:4f:cd:40:56:d8:4e:f7:5d:8e:f8:97:aa:97:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2909fffcd81a66bc98b629d4c0579247645f0fe4
Validity
Not Before: Oct 6 10:28:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9856fc7d4c844568a557009d5327b5cb323a709d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:62:9d:80:5b:0c:80:dc:d8:4a:8d:6c:be:db:
ff:9b:52:08:0c:92:50:bf:a4:e6:c3:d0:14:a7:e2:
bf:e1:8a:39:27:95:2c:37:26:9e:c8:a3:37:a5:f2:
30:71:a3:6f:18:a3:7e:8c:d1:19:2c:25:67:54:13:
cf:bc:f1:21:d6:90:7c:e4:09:a5:5f:ad:13:9a:9d:
31:f5:3d:39:72:0e:69:29:71:05:74:d5:b3:32:13:
5a:15:56:48:89:90:10:85:19:18:2f:5e:20:36:a3:
7f:ca:c3:d6:77:c4:22:83:31:a8:53:16:5e:5c:1d:
7c:77:52:e0:af:32:c9:cd:8d:1c:d6:24:46:09:d9:
06:1c:60:4a:2b:0c:14:4a:28:3a:05:88:dc:34:30:
6d:5b:0c:cf:46:5a:7b:84:c0:19:85:4c:7c:f4:1a:
e3:47:e6:34:7a:a6:91:e1:3e:10:32:b9:91:27:38:
18:e2:1e:7d:20:0a:78:74:46:c8:f1:a0:e4:6d:4b:
8a:38:9c:48:be:3a:37:a6:6e:20:e9:ab:38:be:43:
bb:6a:e2:59:80:34:9c:94:1e:08:35:d3:81:22:22:
08:1c:4e:51:cf:0d:e6:e6:d7:6b:89:d9:e9:b6:d8:
d0:4d:97:41:7a:2c:80:6c:1e:69:4b:f1:e5:d0:27:
6b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:56:FC:7D:4C:84:45:68:A5:57:00:9D:53:27:B5:CB:32:3A:70:9D
X509v3 Authority Key Identifier:
keyid:29:09:FF:FC:D8:1A:66:BC:98:B6:29:D4:C0:57:92:47:64:5F:0F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQn__NgaZryYtinUwFeSR2RfD-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/mFb8fUyERWilVwCdUye1yzI6cJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/de3041-9536-492e-a9cd-f2ae7bc7ecc5/1/KQn__NgaZryYtinUwFeSR2RfD-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.56.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:c7:ab:e5:c1:0f:97:b1:55:d9:70:b5:13:13:fc:2f:16:33:
e4:d2:3c:57:62:d0:1a:5a:e5:8c:83:df:7e:5f:a8:aa:88:a8:
14:d3:4c:d3:c4:86:d6:16:a9:d4:f1:ed:0e:2d:df:57:e7:8b:
a4:5f:35:6a:ec:87:2e:39:86:cd:f6:5a:a1:c8:1b:18:fc:72:
0d:96:13:11:84:8e:63:7b:8b:82:68:b4:93:38:19:91:32:07:
5a:fb:10:0b:35:1d:db:09:7b:82:56:5c:ba:5d:6b:52:65:c5:
c5:fd:f0:d7:69:39:49:6e:e9:8e:69:04:75:4f:fd:d9:78:ed:
96:42:42:32:7f:09:7e:c6:52:22:71:af:bb:99:74:61:90:99:
0b:ef:b8:c1:df:44:46:84:d8:06:2d:7a:c8:07:27:fb:b0:53:
71:b1:af:c0:98:c3:80:d8:21:e4:50:5d:21:89:76:ed:29:bb:
64:0a:cf:9c:65:6b:da:f7:6b:a9:9b:1b:2d:5b:db:3c:e0:06:
7d:cd:85:32:86:65:6a:83:2c:6d:07:b2:a5:8b:c1:48:b5:31:
df:90:57:ef:a2:87:31:ea:e7:3c:e3:f7:a0:8a:61:35:a5:8a:
73:86:d5:1b:be:d8:6c:fb:06:32:f2:60:db:bf:a5:04:f8:44:
f4:23:4e:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsEiE/NQFbYTvddjviXqpevMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDlmZmZjZDgxYTY2YmM5OGI2MjlkNGMwNTc5MjQ3NjQ1
ZjBmZTQwHhcNMjMxMDA2MTAyODQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODU2ZmM3ZDRjODQ0NTY4YTU1NzAwOWQ1MzI3YjVjYjMyM2E3MDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GKdgFsMgNzYSo1svtv/m1IIDJJQ
v6Tmw9AUp+K/4Yo5J5UsNyaeyKM3pfIwcaNvGKN+jNEZLCVnVBPPvPEh1pB85Aml
X60Tmp0x9T05cg5pKXEFdNWzMhNaFVZIiZAQhRkYL14gNqN/ysPWd8QigzGoUxZe
XB18d1LgrzLJzY0c1iRGCdkGHGBKKwwUSig6BYjcNDBtWwzPRlp7hMAZhUx89Brj
R+Y0eqaR4T4QMrmRJzgY4h59IAp4dEbI8aDkbUuKOJxIvjo3pm4g6as4vkO7auJZ
gDSclB4INdOBIiIIHE5Rzw3m5tdridnpttjQTZdBeiyAbB5pS/Hl0CdrLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJhW/H1MhEVopVcAnVMntcsyOnCdMB8GA1UdIwQY
MBaAFCkJ//zYGma8mLYp1MBXkkdkXw/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FuX19OZ2FacnlZdGluVXdGZVNSMlJmRC1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kZTMwNDEtOTUzNi00OTJlLWE5Y2Qt
ZjJhZTdiYzdlY2M1LzEvbUZiOGZVeUVSV2lsVndDZFV5ZTF5ekk2Y0owLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9kZTMwNDEtOTUzNi00OTJlLWE5Y2QtZjJhZTdiYzdlY2M1
LzEvS1FuX19OZ2FacnlZdGluVXdGZVNSMlJmRC1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjk4MA0G
CSqGSIb3DQEBCwUAA4IBAQAKx6vlwQ+XsVXZcLUTE/wvFjPk0jxXYtAaWuWMg99+
X6iqiKgU00zTxIbWFqnU8e0OLd9X54ukXzVq7IcuOYbN9lqhyBsY/HINlhMRhI5j
e4uCaLSTOBmRMgda+xALNR3bCXuCVly6XWtSZcXF/fDXaTlJbumOaQR1T/3ZeO2W
QkIyfwl+xlIica+7mXRhkJkL77jB30RGhNgGLXrIByf7sFNxsa/AmMOA2CHkUF0h
iXbtKbtkCs+cZWva92upmxstW9s84AZ9zYUyhmVqgyxtB7Kli8FItTHfkFfvoocx
6uc84/egimE1pYpzhtUbvths+wYy8mDbv6UE+ET0I05V
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:15 2024 by rpki-client on console-fra.rpki-client.org