Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2f6dd0-b76f-47d5-a4ab-32feeb566ee6/1/k2JeDzVnN6ekxt-b3_SoDjfqQak.roa
File: k2JeDzVnN6ekxt-b3_SoDjfqQak.roa (raw, json)
Hash identifier: 6sHSAaOKoNBQgN+LFUpFIR4eAs99lKA/2tqV3/dmsuQ=
Subject key identifier: 93:62:5E:0F:35:67:37:A7:A4:C6:DF:9B:DF:F4:A8:0E:37:EA:41:A9
Certificate issuer: /CN=21e86ff9973c93abe6398f031966c29d75a3ba86
Certificate serial: 01856D7879F0316E288C54FBCEF5D528E9D0
Authority key identifier: 21:E8:6F:F9:97:3C:93:AB:E6:39:8F:03:19:66:C2:9D:75:A3:BA:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iehv-Zc8k6vmOY8DGWbCnXWjuoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2f6dd0-b76f-47d5-a4ab-32feeb566ee6/1/k2JeDzVnN6ekxt-b3_SoDjfqQak.roa
Signing time: Sun 01 Jan 2023 13:14:49 +0000
ROA not before: Sun 01 Jan 2023 13:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202745
IP address blocks: 144.2.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:79:f0:31:6e:28:8c:54:fb:ce:f5:d5:28:e9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21e86ff9973c93abe6398f031966c29d75a3ba86
Validity
Not Before: Jan 1 13:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93625e0f356737a7a4c6df9bdff4a80e37ea41a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:87:76:b0:12:b1:31:fa:2d:1d:6f:2f:9b:c9:
74:fe:6e:46:11:27:27:6d:ba:81:b6:85:46:fc:9e:
27:21:2e:6b:9f:a9:70:e5:2d:84:21:85:0b:bc:d9:
27:05:26:d3:1f:bd:6e:ee:15:99:3f:f1:bf:4c:7c:
7a:0b:32:e7:3e:09:15:06:79:5b:34:d4:9d:42:37:
51:06:27:c6:79:c3:c9:fe:08:35:73:5d:a0:e5:14:
4f:d9:da:de:65:04:4a:d8:cb:af:bf:0e:0d:63:8b:
b5:ec:44:63:1c:04:6e:7c:15:21:e6:0d:74:42:32:
cf:cb:ef:a5:4d:13:30:25:87:ca:57:30:d3:53:9b:
53:89:63:3b:95:33:2a:e8:b5:e9:85:59:99:92:4f:
2c:3a:26:61:57:3f:80:08:5e:94:4e:af:56:cd:c0:
32:70:79:19:3b:11:74:48:43:2a:17:b6:c0:d7:d8:
e8:54:46:97:f0:91:8b:6e:68:4e:2d:81:85:da:96:
25:43:05:a7:23:7f:d8:e1:b8:a5:18:01:80:92:34:
85:5b:4b:f9:cc:b5:e3:54:85:8a:1c:cd:11:17:22:
4d:56:16:4b:c8:20:5d:ab:f5:d5:2b:82:e3:b1:bd:
b3:92:c9:d7:67:ca:e1:b4:e8:f1:79:3e:b7:fd:66:
07:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:62:5E:0F:35:67:37:A7:A4:C6:DF:9B:DF:F4:A8:0E:37:EA:41:A9
X509v3 Authority Key Identifier:
keyid:21:E8:6F:F9:97:3C:93:AB:E6:39:8F:03:19:66:C2:9D:75:A3:BA:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iehv-Zc8k6vmOY8DGWbCnXWjuoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2f6dd0-b76f-47d5-a4ab-32feeb566ee6/1/k2JeDzVnN6ekxt-b3_SoDjfqQak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2f6dd0-b76f-47d5-a4ab-32feeb566ee6/1/Iehv-Zc8k6vmOY8DGWbCnXWjuoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.223.0/24
Signature Algorithm: sha256WithRSAEncryption
61:7e:86:17:df:61:1b:fa:d4:22:a0:f5:35:7b:bf:8d:b8:bf:
60:71:f1:97:ce:4d:14:52:ec:fa:62:b0:0c:af:7b:25:8b:e7:
66:de:41:70:8f:73:6a:30:54:10:d6:55:ab:c4:c3:41:5e:03:
ba:bc:b9:db:e3:e7:2d:8a:f9:76:24:70:32:3e:c4:e9:c3:4a:
79:8c:26:4d:f8:a4:ab:c7:85:2a:fa:e6:20:45:60:da:cf:05:
a0:d2:6e:c0:a4:3b:b2:c0:cb:67:39:aa:e0:8c:be:0d:06:ca:
8a:77:5a:d5:c9:e8:1e:9d:06:14:e6:ce:c7:2a:1b:69:12:26:
80:34:09:f4:f9:30:92:b8:c9:2b:3f:a5:8a:f2:aa:d1:8c:4f:
67:30:48:05:2b:66:1d:e8:69:8a:5e:7e:97:85:5b:96:ee:9e:
c8:f0:03:73:ad:cf:60:0a:6b:b0:90:20:08:8c:f9:02:93:63:
af:d1:61:3c:97:45:1a:75:ae:d2:ef:b3:70:85:ef:7c:f7:a9:
e7:44:a9:11:e2:0f:c1:cf:d9:01:42:07:92:22:18:fc:d1:4b:
01:6e:f3:fe:e3:ea:77:b5:25:77:08:bd:3a:82:83:94:dd:f6:
ad:0d:9e:43:3e:f0:6b:4c:4a:49:dd:77:38:51:44:a6:96:2b:
b2:4e:87:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:49 2024 by rpki-client on console-ams.rpki-client.org