Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/f5e0K3KZnVkDWTGHqy22Zzge2jU.roa
File: f5e0K3KZnVkDWTGHqy22Zzge2jU.roa (raw, json)
Hash identifier: 1M5RSOyMSN6p3h8g0tJNXuFD+wLjIrpWULe6tEygJ48=
Subject key identifier: 7F:97:B4:2B:72:99:9D:59:03:59:31:87:AB:2D:B6:67:38:1E:DA:35
Certificate issuer: /CN=6eef3973d6e07681419bae867bd514545e7df5da
Certificate serial: 01856C4A403A3697AC14A9015B3520409FA1
Authority key identifier: 6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/f5e0K3KZnVkDWTGHqy22Zzge2jU.roa
Signing time: Sun 01 Jan 2023 07:44:43 +0000
ROA not before: Sun 01 Jan 2023 07:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25579
IP address blocks: 2.58.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 17:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:40:3a:36:97:ac:14:a9:01:5b:35:20:40:9f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eef3973d6e07681419bae867bd514545e7df5da
Validity
Not Before: Jan 1 07:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f97b42b72999d5903593187ab2db667381eda35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:29:ea:09:22:d4:a0:83:f9:02:3c:92:d5:b0:
7a:e3:ca:4c:89:30:e9:10:39:e2:d9:1d:7a:9f:9e:
21:8d:fa:f2:77:8d:65:22:50:39:ca:37:7a:c8:7c:
22:77:d0:76:a9:37:66:a7:de:32:84:1e:1a:62:82:
d4:97:92:41:b0:da:d2:35:40:f8:da:7a:f3:65:5e:
75:a4:d1:0b:1c:1f:91:f8:a7:34:5b:b5:bb:07:04:
2c:23:95:a8:fa:cf:49:68:42:fe:d4:01:71:9c:cf:
b8:88:dd:6b:68:77:6e:1b:6c:5d:f0:1f:73:99:53:
23:6d:0c:34:34:cd:1f:6e:53:3b:41:ae:b5:99:d9:
d3:a6:c0:79:ac:ad:e6:19:c9:b8:96:f8:fb:6a:4c:
44:37:b9:9f:ca:61:93:35:6e:c0:1f:66:1e:06:79:
21:d5:ac:71:c0:91:9f:d4:cb:ef:ca:5a:bd:e7:23:
b4:ef:fe:28:cb:3f:b1:99:7e:97:7b:ff:85:c3:9a:
18:ba:38:e8:40:97:d1:2d:03:29:e0:b0:44:62:4f:
c1:8c:5b:22:01:c0:e1:0e:19:b3:c2:ff:39:1e:ea:
59:b1:cf:bf:2c:32:11:e1:da:89:3b:2b:c1:ec:eb:
71:5f:14:50:62:13:55:95:16:6b:7d:f0:2e:b9:34:
09:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:97:B4:2B:72:99:9D:59:03:59:31:87:AB:2D:B6:67:38:1E:DA:35
X509v3 Authority Key Identifier:
keyid:6E:EF:39:73:D6:E0:76:81:41:9B:AE:86:7B:D5:14:54:5E:7D:F5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bu85c9bgdoFBm66Ge9UUVF599do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/f5e0K3KZnVkDWTGHqy22Zzge2jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/087513-d2d6-43c6-9b79-22f0aaa81327/1/bu85c9bgdoFBm66Ge9UUVF599do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.102.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:92:9f:37:3e:cb:fb:2e:53:f9:ec:8b:88:69:a1:2f:ac:0d:
e0:d6:de:1e:eb:cf:48:1f:f2:26:a2:cc:3f:e6:5b:42:09:93:
30:8c:75:27:c2:f7:09:e8:10:be:da:31:7d:1d:73:62:64:7e:
3a:71:c5:af:63:93:f8:01:c7:6f:06:ae:ea:ab:9f:46:82:51:
18:da:f8:e6:bc:6f:8b:4b:a5:72:e1:32:b9:fc:d1:2e:88:3c:
97:94:bb:99:c5:a0:62:2d:65:93:a1:31:26:6c:56:17:a5:04:
08:22:43:d2:47:86:de:db:42:2e:2f:91:46:18:97:6b:ac:e9:
04:42:43:48:ed:c4:82:56:9c:ec:db:ba:b4:e4:3b:34:67:51:
0e:e9:0b:b8:47:9b:c7:c8:d3:10:b4:44:f0:7a:71:88:b2:cc:
7f:78:d3:9e:a0:25:fa:2b:c4:49:51:7d:b7:39:af:24:d4:16:
b2:02:36:c1:2b:88:20:81:2e:63:53:c0:fc:49:fb:3f:3a:bf:
be:94:27:86:07:4d:64:6f:1f:33:51:ec:d1:e9:fc:8d:0f:7d:
9a:30:ca:4f:c0:c1:0f:2e:17:ff:91:c2:15:b4:cf:f9:80:ae:
f8:9f:d6:b5:34:68:ae:5d:13:92:f0:0b:a3:79:0b:89:d9:f8:
ad:5a:2e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:33 2024 by rpki-client on console-ams.rpki-client.org