Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/h8Zgob3Y2gzC4oKIFVkWA9loxZM.roa
File: h8Zgob3Y2gzC4oKIFVkWA9loxZM.roa (raw, json)
Hash identifier: msRTN9xm/b4hVdYTJtZNSVHTOiZxoLU8yjzF2V0IQeQ=
Subject key identifier: 87:C6:60:A1:BD:D8:DA:0C:C2:E2:82:88:15:59:16:03:D9:68:C5:93
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018F19215D320B3972095A011E714C37CB1A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/h8Zgob3Y2gzC4oKIFVkWA9loxZM.roa
Signing time: Fri 26 Apr 2024 06:39:27 +0000
ROA not before: Fri 26 Apr 2024 06:39:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215620
IP address blocks: 2.57.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 23:59:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:21:5d:32:0b:39:72:09:5a:01:1e:71:4c:37:cb:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 26 06:39:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87c660a1bdd8da0cc2e2828815591603d968c593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:73:e1:99:df:ab:e9:8c:32:52:f6:1e:ad:a4:
8a:e7:ad:d0:41:1c:d2:6b:57:a4:57:5d:f6:e0:e3:
14:10:07:31:a7:cf:08:81:59:81:dd:24:ae:05:7d:
0f:67:ce:33:c2:8e:62:ff:d3:eb:49:77:83:07:63:
e8:8d:a4:9a:85:65:53:9d:e7:ab:fa:2b:ca:34:e1:
9c:d2:3c:50:28:07:e6:80:c9:b8:91:ff:59:b7:83:
54:4c:67:fd:c3:a0:3e:d3:b2:02:38:90:d0:c4:35:
cc:1e:dc:93:f1:18:34:33:5a:95:ea:3b:8d:75:01:
a0:c8:68:b7:09:d1:57:a9:cf:b4:1f:c1:ad:ad:00:
64:14:c4:f4:ab:ff:0f:5a:08:99:40:29:43:06:f4:
c4:11:7d:55:77:01:11:b0:de:9a:a8:1c:61:ad:02:
25:2b:3a:e8:a6:ac:a8:08:9a:59:67:28:f7:d4:fe:
90:62:be:87:95:d6:ac:08:1e:ca:1e:cf:a7:83:59:
3f:64:7f:c5:5f:85:d6:23:ac:b9:64:98:12:73:19:
3f:ec:61:1a:d6:e2:7b:66:d9:28:1c:23:2a:1e:5d:
cc:de:a7:ae:29:7e:a5:57:ab:38:10:3d:ce:2f:f0:
9c:b0:2d:eb:5d:64:2b:7f:74:7b:d6:8b:1b:2e:b9:
74:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C6:60:A1:BD:D8:DA:0C:C2:E2:82:88:15:59:16:03:D9:68:C5:93
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/h8Zgob3Y2gzC4oKIFVkWA9loxZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:46:0b:88:4e:5a:dc:7d:23:3f:b1:0e:b3:e8:4c:9a:fe:64:
08:5d:14:9a:6f:10:0c:89:1f:34:c3:88:3d:7b:17:c7:e6:84:
cf:4f:6a:c8:47:d2:bf:3b:48:7b:40:7e:c4:6a:0d:2b:39:e6:
bb:9f:69:d2:0f:95:98:de:6e:cf:f3:e1:0f:b7:ee:07:e3:14:
09:9e:79:c5:d4:1f:b2:1b:59:d2:6e:9d:d9:73:7f:5e:e5:c8:
ee:b8:ce:34:a3:5d:f3:3a:3a:e9:09:86:ee:c2:02:e0:f0:19:
58:32:f6:15:9f:1c:ef:5d:85:b2:e5:2a:c2:a1:22:1e:69:67:
10:be:6f:76:8a:ef:37:1e:2a:e9:5d:46:f2:65:26:5c:67:1e:
bc:6f:8d:c9:82:64:be:41:8a:f2:69:2e:05:04:57:53:92:2b:
99:73:bb:0c:c8:13:db:e7:52:b5:17:79:15:0c:1b:5a:85:2b:
e1:5d:67:29:fe:75:e9:5c:ec:b2:34:0e:3a:5a:e0:e1:a5:d2:
38:4a:89:29:49:ed:1f:28:a6:c3:27:57:42:81:d8:a3:ee:87:
2d:e2:d6:5c:d4:0f:68:01:85:2e:bf:3a:ea:0a:2d:49:ff:89:
bc:e3:61:b9:08:94:1c:15:eb:31:fe:a9:07:9a:e3:d4:b7:fa:
82:f5:53:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org