Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/c2Mi0o_tj6BpLnKVNZybZskNMtY.roa
File: c2Mi0o_tj6BpLnKVNZybZskNMtY.roa (raw, json)
Hash identifier: 9tifvLoSeeQM8A7tDIwpCt89hTntiMILxEB3VLJXG40=
Subject key identifier: 73:63:22:D2:8F:ED:8F:A0:69:2E:72:95:35:9C:9B:66:C9:0D:32:D6
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 018DF341218A2948499176738E64BBF584D8
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/c2Mi0o_tj6BpLnKVNZybZskNMtY.roa
Signing time: Thu 29 Feb 2024 05:05:48 +0000
ROA not before: Thu 29 Feb 2024 05:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 168.199.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 13:39:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f3:41:21:8a:29:48:49:91:76:73:8e:64:bb:f5:84:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Feb 29 05:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=736322d28fed8fa0692e7295359c9b66c90d32d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:79:fd:d7:40:c2:0c:84:36:95:2e:12:2a:4e:
d2:9a:c1:9f:e6:8e:9a:3f:19:a0:03:75:af:fe:47:
7e:17:a2:af:2e:15:f5:a5:4c:e4:66:72:0a:06:4d:
b7:05:f4:1d:31:f4:72:9a:75:94:27:23:15:cf:65:
f3:c8:7c:19:63:3e:62:16:7e:b6:01:82:e2:a4:12:
45:4e:8b:13:3c:73:7b:99:c1:87:11:ce:10:40:ad:
64:eb:a5:47:9f:57:34:94:e8:af:e0:92:0d:95:13:
d0:d0:0c:7e:02:ba:94:6e:b6:99:eb:b2:34:8d:53:
b9:ac:d3:12:47:86:fb:a8:22:0c:32:a5:dd:2d:84:
60:1c:11:5f:2d:6c:dd:4f:92:fd:8a:f8:e3:d0:b2:
2c:ff:93:ea:bf:5e:04:a2:a6:c8:63:11:eb:67:20:
bc:06:8d:ac:aa:f2:90:6c:80:32:d0:3d:43:4c:36:
f1:93:c1:53:e1:6c:40:ee:1c:f5:fb:75:8d:b1:e9:
de:b9:87:dc:b0:83:f7:ea:6b:c6:13:2f:fa:ec:89:
a2:48:ed:d7:d5:93:f2:00:4b:73:60:6a:5a:1c:5f:
0d:1b:df:73:e6:90:dc:6a:95:95:ea:6c:fd:07:bd:
c8:42:4c:00:46:fc:2b:c0:f4:48:86:36:e7:30:60:
0c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:63:22:D2:8F:ED:8F:A0:69:2E:72:95:35:9C:9B:66:C9:0D:32:D6
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/c2Mi0o_tj6BpLnKVNZybZskNMtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.199.18.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:dc:b0:c5:b5:e5:49:57:0e:47:2a:7d:3c:7f:47:81:79:54:
8d:01:85:09:53:71:a0:a9:bc:5a:66:07:8d:72:96:d3:9a:30:
f0:24:3a:0b:1c:eb:e8:7d:87:6d:e1:d2:83:85:21:56:1b:8a:
54:ce:35:a5:11:0c:72:35:19:e1:33:af:93:94:02:d1:1f:cf:
38:ca:53:c0:88:5c:ba:f9:31:e2:a3:24:ac:dd:9d:b2:e2:ad:
1f:e7:1f:e8:95:88:5f:aa:94:7e:75:da:ad:5e:6e:5c:31:07:
30:ab:d8:da:ea:d7:ac:d1:c5:46:03:3c:75:3e:73:ca:8c:c7:
b2:de:8a:10:50:a1:e2:91:01:bf:d5:1b:63:dc:15:3d:49:d5:
31:49:5e:07:15:ae:2e:4c:da:19:57:15:87:ee:2c:ba:1e:8c:
21:e7:ad:be:88:fd:4f:90:50:9e:d2:60:a8:47:41:fc:72:aa:
e5:ba:f2:2a:00:e2:c8:0b:f0:68:8f:71:50:22:4e:dd:3a:83:
1e:fa:f6:dc:ea:a5:5a:58:c3:02:7d:b2:b2:2d:8c:92:1f:46:
32:8c:9f:eb:e9:39:42:87:60:da:2f:17:1e:88:11:e7:bf:62:
d9:a3:1b:74:96:a1:1a:0a:81:a4:1e:62:ba:79:c0:93:42:f8:
49:89:24:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org