Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/2CHYhAZi664UFboqOCLDDp1vFeI.roa
File: 2CHYhAZi664UFboqOCLDDp1vFeI.roa (raw, json)
Hash identifier: G+20RSXIZkXNH05huIzD2mQEH2UTL8+WX9Whidp9Gx4=
Subject key identifier: D8:21:D8:84:06:62:EB:AE:14:15:BA:2A:38:22:C3:0E:9D:6F:15:E2
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 0185736849D962851F2623014B5BF7BE3675
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/2CHYhAZi664UFboqOCLDDp1vFeI.roa
Signing time: Mon 02 Jan 2023 16:54:52 +0000
ROA not before: Mon 02 Jan 2023 16:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16086
IP address blocks: 192.102.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:49:d9:62:85:1f:26:23:01:4b:5b:f7:be:36:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 2 16:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d821d8840662ebae1415ba2a3822c30e9d6f15e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2c:0b:61:dc:07:ee:2a:87:6f:11:ab:a9:3c:
39:51:af:a6:86:18:1f:82:a6:b3:cd:23:07:a4:29:
e7:f2:e5:ce:67:69:9b:50:91:18:1b:97:cd:f1:a8:
46:99:61:90:74:5d:f0:50:0c:70:5a:3d:b7:36:e6:
ff:33:3d:9a:93:02:98:fa:e1:d2:84:c7:ad:52:86:
4e:87:28:4d:e6:e6:c5:3d:b2:f5:42:a1:92:24:39:
aa:c5:90:85:cd:99:a6:24:91:8a:1b:30:d6:bf:20:
71:29:bd:de:94:89:21:6a:7a:2c:14:b4:d0:c1:6c:
2c:76:ca:3c:ef:9a:b6:0c:85:73:fa:5d:8b:77:a9:
fc:8a:37:03:7f:e0:57:b6:c1:cf:0a:61:2b:94:7b:
05:a2:92:40:49:5e:fc:d3:20:12:c8:8b:42:4a:67:
9f:0d:6e:e6:53:15:07:a2:b5:6c:c4:f2:7b:5d:b4:
89:98:42:86:50:00:85:f5:ce:3b:53:03:74:c4:84:
74:ea:a8:2c:cb:1e:c4:2b:1a:82:42:de:23:db:42:
88:3a:36:34:af:dc:08:8f:55:bf:ab:16:4b:27:29:
a6:08:d1:42:8d:f4:c8:dd:01:b2:0a:a9:73:dd:f9:
d8:9a:3e:7c:68:02:07:f2:d3:b3:3f:a6:57:8d:5f:
96:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:21:D8:84:06:62:EB:AE:14:15:BA:2A:38:22:C3:0E:9D:6F:15:E2
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/2CHYhAZi664UFboqOCLDDp1vFeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.102.52.0/24
Signature Algorithm: sha256WithRSAEncryption
25:39:e0:e6:b3:fe:17:a5:4a:b2:b5:5f:98:40:20:80:1e:f9:
b2:ee:83:c6:b9:c7:b1:a4:28:3f:da:24:32:54:60:a3:c8:61:
fe:25:ec:1c:8b:a6:b5:4a:19:c2:20:ae:05:db:6b:30:0f:ad:
89:75:2a:f5:db:c4:09:99:07:49:96:10:49:8f:6f:8e:8e:1e:
71:93:53:b0:12:a6:5e:a2:a9:0b:6d:b8:e1:ee:5b:b8:a8:d6:
9a:de:18:40:a1:a1:e2:91:66:21:88:2a:65:8b:cc:b8:e4:1b:
cc:41:bd:4e:e9:47:15:b6:cb:0b:c2:df:d0:0f:f2:7e:be:ea:
65:2e:2c:a0:05:d8:b9:53:dc:de:6c:72:9d:f7:f0:c8:fd:7e:
e7:b1:bf:41:c8:23:c5:9d:ae:ef:81:a3:86:0e:2b:be:d9:c4:
ba:d1:3e:cc:71:12:3e:38:a7:e8:37:7e:f5:44:de:52:56:0b:
c5:64:7e:56:44:23:0d:03:41:fa:44:3f:ec:9a:59:00:5d:cc:
13:4c:2b:9f:ce:2e:0f:af:6d:37:78:79:fc:ac:f5:d1:94:f9:
d5:e2:39:ae:40:9b:46:61:d1:cb:ec:34:f0:90:a8:bb:b2:23:
1e:42:1e:84:22:41:cb:9f:be:05:57:21:58:ec:d0:60:d8:36:
0b:fe:eb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:39 2024 by rpki-client on console-ams.rpki-client.org