Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/34cc12-c824-4499-a5af-29ef17540222/1/H51mEioledOTF0uSVSaB4-zwffk.roa
File: H51mEioledOTF0uSVSaB4-zwffk.roa (raw, json)
Hash identifier: R/jOrmMyTZJ/ysEPI/Lbd6U3Dj3zrZIaynqGeZf6ZGA=
Subject key identifier: 1F:9D:66:12:2A:25:79:D3:93:17:4B:92:55:26:81:E3:EC:F0:7D:F9
Certificate issuer: /CN=fbb0a25810d02646656f909c44eb2ba939d23209
Certificate serial: 0185720341208068E69DCF497FA19AE716A1
Authority key identifier: FB:B0:A2:58:10:D0:26:46:65:6F:90:9C:44:EB:2B:A9:39:D2:32:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-7CiWBDQJkZlb5CcROsrqTnSMgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/34cc12-c824-4499-a5af-29ef17540222/1/H51mEioledOTF0uSVSaB4-zwffk.roa
Signing time: Mon 02 Jan 2023 10:24:53 +0000
ROA not before: Mon 02 Jan 2023 10:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209171
IP address blocks: 2.58.140.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:41:20:80:68:e6:9d:cf:49:7f:a1:9a:e7:16:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbb0a25810d02646656f909c44eb2ba939d23209
Validity
Not Before: Jan 2 10:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f9d66122a2579d393174b92552681e3ecf07df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5f:b1:cb:17:1c:8b:05:ec:28:41:e9:e9:ae:
1c:31:68:9f:ad:47:a8:1b:25:e7:4d:80:bb:e3:9a:
ea:6d:a3:ee:0b:5b:43:ec:c9:28:4c:f8:c1:f8:6b:
39:21:81:46:1e:73:4d:41:2c:d1:fa:f5:8a:fd:08:
28:19:5d:f1:02:73:05:b2:a7:0a:da:22:64:e7:7a:
97:05:45:9e:99:20:59:8a:cf:0f:f5:91:ab:d4:76:
40:f1:16:1d:4a:3f:6b:26:27:5a:c4:ea:95:ff:aa:
91:39:9f:a6:0f:1b:69:d0:0b:d1:81:96:3c:43:5b:
80:57:4b:ab:2c:06:ec:5b:67:5f:22:77:30:4b:83:
de:3d:60:18:36:73:92:2b:01:fe:64:42:7e:97:cb:
30:b1:80:0c:8a:1d:ed:d1:5f:c8:89:48:31:b5:78:
53:2c:cf:53:be:a0:55:50:55:8b:43:85:87:ce:bd:
94:b0:c4:b8:ae:22:30:af:27:35:2f:b9:cf:1f:66:
70:9d:c4:22:c6:ac:de:a1:4e:d2:45:a0:03:f9:8a:
d6:03:ae:98:96:21:cc:0a:39:09:6f:37:c5:b5:95:
1c:de:d0:b8:d1:d5:fb:a1:b9:17:91:13:df:4c:bf:
98:c9:7d:3c:df:68:66:9e:03:68:9a:7b:8a:c9:5e:
b4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9D:66:12:2A:25:79:D3:93:17:4B:92:55:26:81:E3:EC:F0:7D:F9
X509v3 Authority Key Identifier:
keyid:FB:B0:A2:58:10:D0:26:46:65:6F:90:9C:44:EB:2B:A9:39:D2:32:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-7CiWBDQJkZlb5CcROsrqTnSMgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/34cc12-c824-4499-a5af-29ef17540222/1/H51mEioledOTF0uSVSaB4-zwffk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/34cc12-c824-4499-a5af-29ef17540222/1/1-7CiWBDQJkZlb5CcROsrqTnSMgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.140.0/22
Signature Algorithm: sha256WithRSAEncryption
34:5d:7b:49:36:18:ea:d6:bf:14:02:a5:5f:fc:fd:cd:eb:ff:
26:3e:bf:b7:5b:b5:16:90:cb:07:9b:23:98:c9:96:ae:3f:14:
63:3f:46:d3:b5:db:8b:ca:75:91:e7:5e:77:da:0c:0e:19:5f:
bd:6a:e7:5b:cd:bc:5c:56:bd:aa:41:8b:c4:19:4d:6b:48:2c:
9e:4e:59:9c:15:a4:be:43:cd:68:bd:9b:f8:35:51:ba:02:cd:
3e:a8:b5:6d:82:e0:7f:46:08:8d:08:79:76:c5:45:cf:22:73:
f5:28:47:44:24:cd:b8:98:7f:25:c4:46:58:33:48:eb:ab:87:
c2:80:cd:5a:64:63:58:ec:27:fd:60:84:7c:cc:ff:a8:4a:fb:
e4:dc:5d:6a:da:cf:e4:fc:e6:5f:44:e7:10:fa:0f:61:53:40:
11:28:d5:34:10:fc:9d:6a:b1:8d:31:cf:5e:c8:b5:fd:0c:c9:
b0:39:68:95:75:53:c7:ae:59:00:47:97:9a:7e:1a:78:5c:fc:
74:ef:36:85:0f:be:b6:05:b7:e5:6b:55:c1:9d:a9:15:69:20:
5f:2d:03:1f:d3:6d:47:87:d4:41:c3:8f:fc:d6:5e:21:82:55:
91:fa:33:c5:36:7f:7f:73:62:e3:41:72:18:c7:76:6b:1f:10:
ac:c7:25:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:11 2024 by rpki-client on console-ams.rpki-client.org