Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/ewJcSKOZMkDMF5SOjevGAMLrqWM.roa
File: ewJcSKOZMkDMF5SOjevGAMLrqWM.roa (raw, json)
Hash identifier: 07BqQGIHXQV1YAFd1MN00++BDD3dtucWMqWwoSoKBPY=
Subject key identifier: 7B:02:5C:48:A3:99:32:40:CC:17:94:8E:8D:EB:C6:00:C2:EB:A9:63
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 018570707FDFFFFE1258F098FB21BD9C768E
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/ewJcSKOZMkDMF5SOjevGAMLrqWM.roa
Signing time: Mon 02 Jan 2023 03:04:59 +0000
ROA not before: Mon 02 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4862
IP address blocks: 57.72.0.0/24 maxlen: 24
57.72.0.0/15 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7f:df:ff:fe:12:58:f0:98:fb:21:bd:9c:76:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b025c48a3993240cc17948e8debc600c2eba963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2d:c2:dc:3f:dd:99:f8:0e:ad:57:37:38:d8:
6d:c2:89:54:01:f0:e6:4a:97:f9:0a:69:14:3f:71:
a6:e3:e4:b7:60:a0:ad:5a:06:e8:13:f7:ba:8c:32:
b6:1d:3f:c6:44:a0:87:64:7c:4c:07:e2:a0:8d:3d:
1d:4a:f6:de:e2:87:54:c0:0d:e4:89:44:c0:37:e7:
af:08:19:ae:28:a2:1a:e9:07:51:93:4c:1d:99:92:
24:49:66:25:c4:71:19:9b:5b:25:ef:a9:53:5f:60:
77:fc:18:48:91:4c:ee:b8:74:5b:e2:bc:7b:a3:2b:
95:5d:9b:fe:dc:6c:34:50:c8:60:5a:df:c0:c2:9b:
b2:de:7e:14:db:29:3d:d1:07:86:fc:e8:d8:12:97:
b6:97:d2:f0:ac:64:4f:9a:12:29:80:ac:83:22:a2:
de:51:e1:a2:bc:2b:63:ba:58:ed:75:ce:94:46:68:
40:fa:cb:3c:12:d5:8c:6f:70:31:10:14:8f:a8:ea:
ab:dc:1f:24:91:83:d7:28:c9:c1:eb:f4:a0:91:2e:
ab:29:98:3e:74:74:88:35:e0:29:39:b7:76:27:da:
c3:8a:68:2b:38:dc:93:38:b8:8c:b3:0d:5f:c4:00:
e4:8b:72:f6:80:c8:24:47:6a:11:4d:b0:68:9d:dc:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:02:5C:48:A3:99:32:40:CC:17:94:8E:8D:EB:C6:00:C2:EB:A9:63
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/ewJcSKOZMkDMF5SOjevGAMLrqWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.72.0.0/15
Signature Algorithm: sha256WithRSAEncryption
26:84:38:95:94:7a:dc:32:d2:26:24:61:30:cb:e4:d4:5f:bf:
4c:e2:8e:67:b5:fd:41:2e:a2:b6:84:56:7a:63:7b:04:b1:b5:
3f:c7:f1:6a:b7:bf:bd:07:3f:10:7f:49:5f:b2:6b:c2:7b:a0:
13:63:55:79:1a:eb:5b:69:62:72:e9:ba:ef:e4:98:c5:d7:ab:
27:23:91:51:c1:ec:ee:f9:34:43:fd:dc:03:2b:bd:fd:f8:5b:
07:02:bd:ab:8b:05:8a:13:da:b1:12:d4:8e:a9:93:71:7c:24:
de:79:e0:29:3d:ae:a1:03:d8:b1:47:5d:6c:b7:87:dc:ff:05:
24:cf:8c:bc:c5:88:ed:27:06:8d:c6:b0:d9:63:10:b2:1b:58:
65:5b:9d:22:b9:2a:91:45:d2:ee:b5:e4:cd:fb:c8:60:c1:c4:
36:32:29:ca:cc:34:a5:2d:9e:4e:37:9f:38:6f:aa:f1:b4:4f:
ff:fd:31:16:9e:14:8f:71:11:46:1f:99:c0:29:0d:41:48:0b:
7b:ad:15:41:e4:9c:1d:3b:cc:e0:df:94:c7:cb:1f:63:5b:8b:
2d:ca:80:95:41:7b:05:95:be:3d:0d:94:3f:14:6a:bc:59:de:
6a:7a:d0:de:0a:c7:5d:3a:d1:bb:8b:54:49:8d:ae:fe:c6:a7:
12:6a:be:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org