Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/yGeofcofjjVikmttVZFUHjW3gwA.roa
File: yGeofcofjjVikmttVZFUHjW3gwA.roa (raw, json)
Hash identifier: g6/A7MioYkUkMt5QFEKujFoOyQV7WxNe7llWgUkn0uM=
Subject key identifier: C8:67:A8:7D:CA:1F:8E:35:62:92:6B:6D:55:91:54:1E:35:B7:83:00
Certificate issuer: /CN=93bc8ddb8032e184c92bfe206e328f2c05d78e4b
Certificate serial: 0185718307A8A259DFD5D2381A43996CB93E
Authority key identifier: 93:BC:8D:DB:80:32:E1:84:C9:2B:FE:20:6E:32:8F:2C:05:D7:8E:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7yN24Ay4YTJK_4gbjKPLAXXjks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/yGeofcofjjVikmttVZFUHjW3gwA.roa
Signing time: Mon 02 Jan 2023 08:04:50 +0000
ROA not before: Mon 02 Jan 2023 08:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209234
IP address blocks: 2.56.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:07:a8:a2:59:df:d5:d2:38:1a:43:99:6c:b9:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93bc8ddb8032e184c92bfe206e328f2c05d78e4b
Validity
Not Before: Jan 2 08:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c867a87dca1f8e3562926b6d5591541e35b78300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6b:b6:5f:de:bd:0a:67:c7:17:d8:14:aa:ae:
54:d1:21:b8:f7:1a:52:4a:09:8b:52:d5:52:89:c2:
cd:10:ae:73:ea:8a:4e:e1:ef:19:13:b5:24:04:37:
3e:d0:d9:29:2e:9f:00:78:ad:aa:57:73:21:d1:24:
44:5e:40:1c:fc:6a:b6:df:8b:f0:9d:43:a2:43:4a:
7a:07:61:29:38:5f:3f:05:ad:50:ec:5a:67:95:3e:
55:e1:89:14:9f:6d:8b:f1:25:73:4a:56:41:06:4c:
0d:a1:0d:c1:dc:1c:02:ec:71:fe:1a:b3:c7:97:b7:
74:fc:00:e3:64:70:c1:a7:ec:ad:0e:8f:72:81:0a:
6e:27:e0:52:09:3f:fc:dc:3c:1d:38:5c:35:39:75:
77:f4:9e:f3:e4:1f:ef:e7:66:d7:68:05:74:c9:3d:
09:e8:67:c3:52:83:46:cb:0d:e4:da:a7:f7:21:cb:
ae:45:7c:d4:d5:fb:0e:5e:f2:d3:95:af:c6:23:14:
04:2e:6f:38:f4:f9:70:ab:87:dc:38:f6:b9:6a:e9:
7a:e1:45:46:12:1d:08:a9:51:4d:61:4c:c2:de:a5:
a9:48:25:a4:23:b7:cb:c3:f6:04:f8:38:0d:b5:ff:
f5:a5:e2:73:3e:88:5b:0d:59:08:bd:e8:fd:d9:c7:
cd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:67:A8:7D:CA:1F:8E:35:62:92:6B:6D:55:91:54:1E:35:B7:83:00
X509v3 Authority Key Identifier:
keyid:93:BC:8D:DB:80:32:E1:84:C9:2B:FE:20:6E:32:8F:2C:05:D7:8E:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7yN24Ay4YTJK_4gbjKPLAXXjks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/yGeofcofjjVikmttVZFUHjW3gwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/k7yN24Ay4YTJK_4gbjKPLAXXjks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.92.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:4d:32:f9:6a:b0:f5:68:3e:ab:10:82:58:cc:0b:27:50:97:
b0:4c:cb:c2:ca:83:b8:bf:52:02:f4:95:b5:d2:30:42:a8:8c:
56:18:de:f5:7d:84:7b:1d:70:75:d9:1f:0a:06:47:ed:72:9d:
3a:65:8f:30:e8:17:4a:d5:5b:e4:7d:39:7d:b3:6b:30:d6:36:
04:a7:2c:0b:c9:6b:1e:12:4a:f2:3d:48:c5:1c:d0:48:39:77:
8d:19:18:d5:50:9e:12:01:ec:b9:b0:36:ee:9f:b7:80:6f:af:
e0:e8:84:97:3a:0b:36:6e:a6:12:69:82:cd:8d:07:28:6c:28:
cd:41:43:48:a9:8a:b4:c1:d9:82:6c:db:66:10:dc:26:64:88:
b1:99:7d:cd:48:8c:39:c0:dc:6a:ef:4b:7d:6b:80:df:9a:11:
0b:6f:83:19:5a:81:86:74:8e:96:bc:f2:2f:57:9a:ba:e8:05:
04:25:22:b1:f9:9a:ab:13:de:65:15:8d:57:df:dd:10:2b:b8:
af:d5:59:a2:4a:2c:f0:32:8a:7b:91:e8:c1:39:f0:21:e9:d7:
42:db:28:d7:b8:67:80:50:f5:d4:c8:5d:8f:07:9c:7b:58:8c:
8e:b0:ce:ea:01:86:53:07:6a:7a:14:f6:21:c9:20:3a:29:f2:
51:f1:dd:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:43 2024 by rpki-client on console-ams.rpki-client.org