Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/b59df6-d5fb-4524-8d72-e18aac5054a9/1/2Kg3gVZkEugy-TEBRfOQzbjMxoU.roa
File: 2Kg3gVZkEugy-TEBRfOQzbjMxoU.roa (raw, json)
Hash identifier: 2w977EdXeWl0K9+RuW4TNY4bUYdjHvDJ3h+FJL/yC64=
Subject key identifier: D8:A8:37:81:56:64:12:E8:32:F9:31:01:45:F3:90:CD:B8:CC:C6:85
Certificate issuer: /CN=69d78759e0ec6f14566d10b83c83f2bf199b7100
Certificate serial: 01856C4124A42BAD54625C4F2BE83E9D6447
Authority key identifier: 69:D7:87:59:E0:EC:6F:14:56:6D:10:B8:3C:83:F2:BF:19:9B:71:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/adeHWeDsbxRWbRC4PIPyvxmbcQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/b59df6-d5fb-4524-8d72-e18aac5054a9/1/2Kg3gVZkEugy-TEBRfOQzbjMxoU.roa
Signing time: Sun 01 Jan 2023 07:34:46 +0000
ROA not before: Sun 01 Jan 2023 07:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 84.254.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:24:a4:2b:ad:54:62:5c:4f:2b:e8:3e:9d:64:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69d78759e0ec6f14566d10b83c83f2bf199b7100
Validity
Not Before: Jan 1 07:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8a83781566412e832f9310145f390cdb8ccc685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d2:06:04:40:26:45:0e:7e:a9:a5:44:fc:f1:
b3:74:17:ba:aa:35:cb:32:bb:09:10:a2:36:af:b6:
21:bb:ec:02:dd:f9:75:4d:8f:d2:4c:a8:70:bc:e1:
df:6e:2d:e4:06:1b:1d:a4:01:44:b0:6a:89:bb:3f:
56:93:50:31:cd:87:96:9f:3e:73:ff:f1:a2:e9:a8:
39:f6:16:be:c5:3c:89:c5:3d:0b:9e:38:45:0d:6b:
ad:2d:7f:fd:f0:9b:ec:41:d1:dc:7f:90:50:51:71:
ac:8e:0b:f8:d5:8b:aa:50:43:c7:78:ff:d5:df:fc:
35:4d:25:f1:13:ef:76:a9:e2:40:ad:d9:0a:60:1d:
45:03:66:5c:51:b6:32:55:3f:f3:e2:a6:cc:b2:f0:
ee:68:c3:2b:cd:f8:ff:51:f0:b3:71:0a:b3:54:96:
30:da:c4:65:aa:19:d8:1e:a7:de:c7:e9:8b:22:da:
91:ef:f2:54:28:68:2d:ff:f5:4a:3b:26:7f:b6:8d:
32:8b:f7:bb:f4:d1:f3:e5:51:1f:15:b1:13:2e:3a:
af:23:75:a7:3b:22:a6:27:2f:53:0e:66:a7:76:87:
eb:02:28:3b:e1:1b:30:ba:c7:89:8a:00:5f:54:1d:
f9:e5:9e:ba:a0:cf:8a:39:d5:5f:d7:85:67:ab:4e:
8a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A8:37:81:56:64:12:E8:32:F9:31:01:45:F3:90:CD:B8:CC:C6:85
X509v3 Authority Key Identifier:
keyid:69:D7:87:59:E0:EC:6F:14:56:6D:10:B8:3C:83:F2:BF:19:9B:71:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/adeHWeDsbxRWbRC4PIPyvxmbcQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b59df6-d5fb-4524-8d72-e18aac5054a9/1/2Kg3gVZkEugy-TEBRfOQzbjMxoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b59df6-d5fb-4524-8d72-e18aac5054a9/1/adeHWeDsbxRWbRC4PIPyvxmbcQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.254.68.0/22
Signature Algorithm: sha256WithRSAEncryption
05:98:54:8e:ba:e2:81:e0:9e:eb:6b:2d:f9:68:d9:1e:cd:fe:
c7:29:12:b4:15:de:1d:1c:59:8e:6e:14:f0:a9:14:b2:7e:33:
9d:ff:c9:59:5f:a4:d9:e7:50:e5:38:d5:8a:35:52:c3:72:29:
8e:25:57:df:87:3d:4c:bc:74:0b:de:d9:2c:ed:1d:87:a5:2e:
2d:cf:ff:58:b9:40:65:84:1c:ff:bd:83:d5:c4:42:65:a3:63:
0d:7f:1c:33:e2:59:62:7c:9b:ea:3b:58:94:fa:b3:1a:d2:78:
b2:6d:e0:4b:21:45:6d:3b:ce:2a:4c:98:2a:ae:f3:60:7f:45:
99:cc:8d:ea:cf:6f:1e:3c:c8:a8:4e:1b:96:83:b3:db:39:ea:
eb:0f:b5:fe:35:81:a6:0c:d5:45:6f:7f:82:3e:d2:9a:2d:b4:
1c:57:5b:93:e3:ad:79:9f:e6:69:0f:12:66:8c:19:dd:a9:79:
a2:80:a8:34:16:21:4a:5d:6a:4a:03:d7:26:29:ab:6a:22:87:
e1:50:bb:87:c0:04:c0:73:1e:0f:ea:d1:39:03:15:2e:3a:b3:
a8:66:dc:e1:c1:fc:63:eb:50:ca:77:3c:b0:ca:db:18:6a:02:
4d:5d:b5:d1:d7:07:a0:25:a3:9e:1c:84:7d:9b:5e:e1:d4:b1:
90:3b:d6:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:58 2024 by rpki-client on console-ams.rpki-client.org