Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/VCk_2sY502TxvZQT8Lakb_z2d28.roa
File: VCk_2sY502TxvZQT8Lakb_z2d28.roa (raw, json)
Hash identifier: IQvy5ozRsKe32FXPF5TMNYL3VBytcpx0rZfMzgH3NsI=
Subject key identifier: 54:29:3F:DA:C6:39:D3:64:F1:BD:94:13:F0:B6:A4:6F:FC:F6:77:6F
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C9A45DB0FC94621617FA7BE5ADC1DC71F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/VCk_2sY502TxvZQT8Lakb_z2d28.roa
Signing time: Sun 24 Dec 2023 05:21:58 +0000
ROA not before: Sun 24 Dec 2023 05:21:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207590
IP address blocks: 2.57.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:9a:45:db:0f:c9:46:21:61:7f:a7:be:5a:dc:1d:c7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 24 05:21:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54293fdac639d364f1bd9413f0b6a46ffcf6776f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ad:34:c6:52:29:0c:73:5b:1f:86:15:60:96:
51:8f:df:65:60:8d:02:fa:01:f8:49:9b:50:94:d8:
ee:16:dd:2a:06:31:50:95:b5:71:44:b2:2e:94:ce:
d8:28:71:c5:66:cb:22:07:ae:09:0c:0d:57:b4:19:
71:45:38:21:4f:a6:4a:1a:9b:0a:8f:a4:cd:1e:a1:
53:50:dc:35:c4:b4:b0:d4:bf:ff:d8:e7:a6:21:f7:
83:d3:5a:f0:75:a3:f7:ec:44:ac:21:8a:44:d7:b4:
9e:77:20:aa:08:60:c5:bf:be:d8:7b:8f:bc:3d:73:
3e:47:ab:e7:41:a0:af:ee:60:22:a1:bd:f9:45:2f:
88:0a:46:a1:21:17:3f:9b:52:72:b5:8a:5d:8d:6d:
74:cf:b3:10:12:be:42:e5:83:60:2a:2a:62:0f:53:
6e:3a:5a:8b:84:8a:f7:5e:34:ae:7b:e5:74:a0:7c:
44:4d:8c:55:4e:6c:88:b0:69:d8:04:26:22:99:5e:
0f:1f:df:0b:9f:fc:ce:57:11:c0:4e:25:33:20:a0:
52:fb:6a:9b:a9:03:4d:19:f7:34:e9:de:80:ac:e6:
8b:dc:4b:88:04:b3:40:85:a2:7c:ce:8e:1f:b7:98:
df:4a:0f:76:1e:ff:3e:96:0d:93:5b:82:93:65:f2:
1f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:29:3F:DA:C6:39:D3:64:F1:BD:94:13:F0:B6:A4:6F:FC:F6:77:6F
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/VCk_2sY502TxvZQT8Lakb_z2d28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:4d:fe:7f:65:86:62:38:bd:b2:5c:2c:87:08:b4:2f:d7:0b:
ab:39:08:37:7d:b6:1b:53:7e:d2:2d:0c:f5:3e:2a:29:51:5c:
d5:9d:92:6d:40:fa:26:19:ec:56:7f:a9:c9:b0:03:d5:1d:4b:
31:c8:35:b1:9e:7c:7f:e3:76:c6:10:1e:9a:75:db:c5:28:aa:
59:10:e1:81:96:67:82:35:e1:11:ef:b6:ac:84:9a:9f:75:04:
5b:2c:4e:44:68:df:c8:9d:51:1f:9f:b9:a7:62:75:b6:3f:45:
3b:9c:53:89:bf:e5:f3:4d:f9:f4:82:35:87:6e:cc:fb:d5:a8:
fa:df:4c:d0:26:5c:dc:96:c2:a5:8b:00:ef:22:eb:7c:ca:92:
54:d6:f4:9d:49:dd:20:e6:51:8e:0b:e0:a9:49:72:73:8a:f4:
84:c8:3c:e3:a9:56:ce:e7:29:88:11:8f:bb:8e:c8:58:22:ac:
c2:b9:08:70:c7:64:e3:c4:73:ca:24:03:51:76:9c:8b:e9:09:
07:59:b7:a1:c2:72:b3:79:8c:9a:f0:4c:2d:b2:dc:bf:d1:5f:
49:18:2b:fd:44:9b:21:e6:26:11:45:15:6a:31:41:c7:76:86:
de:74:ee:78:66:63:ee:29:0e:36:24:7f:14:d3:6b:e1:b6:b0:
01:2a:8c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org