Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/CEdBckgnwquxkncKy2bDmYQitvw.roa
File: CEdBckgnwquxkncKy2bDmYQitvw.roa (raw, json)
Hash identifier: Nt+DmVVVURImqylsztAIIlYyK1wlFSZ2JfZLLNpNhx4=
Subject key identifier: 08:47:41:72:48:27:C2:AB:B1:92:77:0A:CB:66:C3:99:84:22:B6:FC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CC4933EFC2363F0C343180FF15A9ED922
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/CEdBckgnwquxkncKy2bDmYQitvw.roa
Signing time: Mon 01 Jan 2024 10:30:33 +0000
ROA not before: Mon 01 Jan 2024 10:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207590
IP address blocks: 2.57.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 09:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:3e:fc:23:63:f0:c3:43:18:0f:f1:5a:9e:d9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 10:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=084741724827c2abb192770acb66c3998422b6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:45:dd:b0:f3:61:b9:7b:16:2d:15:cb:95:
43:b9:b1:e6:5f:73:53:87:f9:3b:41:ad:66:3c:51:
ae:32:13:07:cf:ce:23:a3:1e:e9:bb:32:e9:0e:6c:
32:28:93:d8:a2:8b:33:a5:2c:33:8b:d9:b6:47:6d:
3d:0f:2c:35:f6:f8:da:68:5b:2b:56:a3:02:1d:7a:
5a:c2:b6:08:ca:cf:a9:cf:ea:ab:39:ca:ff:46:7f:
32:72:d1:2e:f0:1f:81:6f:ee:ed:bb:d0:a8:d7:97:
53:45:8c:d0:fb:e4:54:ca:07:60:39:94:eb:7f:38:
c7:40:2b:ea:30:43:17:b9:01:50:69:f8:f1:f7:1b:
6c:a7:7a:74:62:12:5a:36:cd:87:00:8b:a3:ee:7c:
eb:42:4c:64:8f:a7:f4:61:ad:39:25:c7:43:f8:9b:
2f:66:96:05:f7:b5:98:41:55:36:d7:28:47:33:95:
de:7d:30:6c:c3:56:2b:be:48:58:24:49:2a:4f:d5:
af:29:d1:81:92:b8:c2:d8:18:44:f8:33:18:4b:cc:
88:51:5c:72:b6:4f:41:42:d2:3b:12:04:4d:78:59:
cc:36:03:2d:3a:7b:a2:15:92:ce:ae:cb:46:cf:c9:
e1:a8:dd:7b:49:14:ca:0f:a6:81:66:87:24:b2:e5:
80:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:47:41:72:48:27:C2:AB:B1:92:77:0A:CB:66:C3:99:84:22:B6:FC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/CEdBckgnwquxkncKy2bDmYQitvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:38:77:11:85:bf:b9:d1:24:5b:f0:2b:8f:47:eb:af:25:d2:
ce:de:9f:db:e4:4d:e4:94:10:28:b4:ee:63:79:10:2b:79:51:
a2:48:8e:09:b6:c3:c0:8e:79:d7:e0:2b:5b:43:83:34:1e:62:
12:b6:5b:56:32:37:d3:14:24:6e:82:64:8c:8a:83:12:d4:a7:
23:d7:21:08:54:65:6c:7d:58:4a:f0:26:25:13:5e:db:b2:d2:
ca:0f:6a:32:90:5c:09:96:60:02:4a:38:f8:09:e0:a7:3a:00:
e7:8e:e6:a6:91:a4:77:fc:16:ab:a3:50:26:2b:7d:52:61:4a:
45:7c:d9:c8:3a:aa:b2:0a:0e:1a:2a:4a:ea:34:22:d2:ae:f8:
83:a7:8e:96:51:07:18:e7:0e:18:f4:fd:f2:b6:ec:6e:9e:ca:
97:00:00:a7:e4:3a:6e:ee:3e:03:91:b4:96:af:ea:45:bd:63:
0f:b7:2e:fb:e3:53:6f:42:93:2a:2a:75:e9:54:39:5e:2b:cc:
3b:da:60:38:b7:85:96:08:d4:a8:8a:4f:e9:9f:cd:d8:5b:c8:
0b:7a:16:11:e4:1f:2b:ee:10:d2:7e:11:cf:f9:b7:ef:64:d0:
3f:15:20:21:7c:45:ad:48:82:a5:ec:74:e5:b3:71:d4:f6:bf:
bf:64:ed:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEkz78I2Pww0MYD/FantkiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMTAxMTAzMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODQ3NDE3MjQ4MjdjMmFiYjE5Mjc3MGFjYjY2YzM5OTg0MjJiNmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPJF3bDzYbl7Fi0Vy5VDubHmX3NT
h/k7Qa1mPFGuMhMHz84jox7puzLpDmwyKJPYooszpSwzi9m2R209Dyw19vjaaFsr
VqMCHXpawrYIys+pz+qrOcr/Rn8yctEu8B+Bb+7tu9Co15dTRYzQ++RUygdgOZTr
fzjHQCvqMEMXuQFQafjx9xtsp3p0YhJaNs2HAIuj7nzrQkxkj6f0Ya05JcdD+Jsv
ZpYF97WYQVU21yhHM5XefTBsw1YrvkhYJEkqT9WvKdGBkrjC2BhE+DMYS8yIUVxy
tk9BQtI7EgRNeFnMNgMtOnuiFZLOrstGz8nhqN17SRTKD6aBZocksuWAiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAhHQXJIJ8KrsZJ3Cstmw5mEIrb8MB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvQ0VkQmNrZ253cXV4a25jS3kyYkRtWVFpdHZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjnxMA0G
CSqGSIb3DQEBCwUAA4IBAQArOHcRhb+50SRb8CuPR+uvJdLO3p/b5E3klBAotO5j
eRAreVGiSI4JtsPAjnnX4CtbQ4M0HmIStltWMjfTFCRugmSMioMS1Kcj1yEIVGVs
fVhK8CYlE17bstLKD2oykFwJlmACSjj4CeCnOgDnjuamkaR3/Baro1AmK31SYUpF
fNnIOqqyCg4aKkrqNCLSrviDp46WUQcY5w4Y9P3ytuxunsqXAACn5Dpu7j4DkbSW
r+pFvWMPty7741NvQpMqKnXpVDleK8w72mA4t4WWCNSoik/pn83YW8gLehYR5B8r
7hDSfhHP+bfvZNA/FSAhfEWtSIKl7HTls3HU9r+/ZO2D
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org