Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/oNaSu8uJxkyQk_MNaDR9sMP-iY4.roa
File: oNaSu8uJxkyQk_MNaDR9sMP-iY4.roa (raw, json)
Hash identifier: xDbgxHHtoa1/3Sz7jeBZafEA4t8pB1qTZo1iNDV3q+I=
Subject key identifier: A0:D6:92:BB:CB:89:C6:4C:90:93:F3:0D:68:34:7D:B0:C3:FE:89:8E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018BB7669D902B59A4B788D8D7BE66AF4371
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/oNaSu8uJxkyQk_MNaDR9sMP-iY4.roa
Signing time: Fri 10 Nov 2023 04:03:57 +0000
ROA not before: Fri 10 Nov 2023 04:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216013
IP address blocks: 2.57.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b7:66:9d:90:2b:59:a4:b7:88:d8:d7:be:66:af:43:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 10 04:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0d692bbcb89c64c9093f30d68347db0c3fe898e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bd:5b:25:b5:f2:2a:8d:1a:91:14:9b:ec:c0:
0b:e1:44:aa:83:22:ce:0c:44:96:fe:72:74:e8:a9:
97:dd:0c:78:fe:b4:75:51:95:6c:2a:f7:40:df:ae:
ea:57:7e:b8:78:0e:98:f2:ba:d9:35:1e:0e:9e:97:
70:05:9d:28:48:3f:2c:ae:c4:36:50:3f:e8:ba:7e:
5d:12:13:32:79:82:f3:9f:73:49:b2:ab:99:c2:c9:
58:ca:1f:af:45:81:b2:8c:a1:ea:3d:50:80:62:42:
65:9b:29:5b:3b:6d:9e:69:53:1e:44:87:6e:4a:81:
65:95:ee:cf:a9:97:9b:3f:09:bc:df:ae:76:b7:38:
00:04:17:90:8f:11:d2:4e:0a:bc:65:38:56:3e:53:
b0:54:fa:1f:84:83:cf:4e:0f:31:ea:d0:2a:8f:73:
d2:37:4f:dc:8b:39:ed:71:13:a6:96:a2:f9:5a:a1:
d2:2f:44:27:79:b6:61:4b:2f:ea:ab:6c:27:c1:09:
ed:b1:11:7a:a0:65:8d:fe:f1:88:ff:78:dc:7d:36:
43:7e:90:63:00:ff:a3:d5:34:f4:1b:19:62:ef:5e:
6e:29:db:01:51:9a:f0:82:84:0f:d2:9f:8d:ca:2a:
56:93:a5:cf:cb:84:c7:b9:89:17:bf:fc:1b:02:d2:
c1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D6:92:BB:CB:89:C6:4C:90:93:F3:0D:68:34:7D:B0:C3:FE:89:8E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/oNaSu8uJxkyQk_MNaDR9sMP-iY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.240.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:85:35:eb:a6:74:77:bc:c9:eb:fc:37:0d:d1:97:f4:13:3a:
99:60:f2:7d:23:8c:78:47:87:65:3c:dc:ad:37:58:36:a1:7b:
69:a4:e9:c9:62:cd:46:82:5e:4a:11:d2:78:50:b0:54:70:d0:
9e:66:7d:9a:f8:29:f2:95:c7:fb:31:66:82:17:a7:1e:a9:c9:
4c:fe:47:ba:62:af:ba:35:41:8c:8c:5d:ae:aa:b9:52:15:2d:
24:7d:70:7f:7d:80:93:36:c1:34:4e:2e:f2:fa:38:b6:43:1d:
ac:69:9e:d3:7e:09:23:6c:77:28:f7:99:bf:49:c9:6b:ae:f2:
be:a1:30:f5:02:c4:88:4f:fa:69:7c:bf:cb:03:e0:e5:22:92:
48:59:ab:e8:04:c7:23:53:f2:c4:d3:73:97:e6:9e:22:d9:06:
dd:d1:81:42:5a:e2:de:1c:b5:89:85:7a:ae:60:59:11:81:06:
e0:98:b9:76:9e:e5:f8:f8:ed:8a:05:0c:97:6d:5b:69:90:15:
77:34:65:fb:2d:f3:25:47:48:26:96:cb:04:2a:8e:32:f8:5d:
bd:c5:31:81:2d:c5:9a:a3:d5:10:12:fe:b9:19:fa:c8:0e:c5:
17:0b:18:c8:85:6e:1c:0e:d7:78:c5:ed:c4:db:3a:00:62:54:
f9:94:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org