Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/18EndxHL0XMIPcGOyIGW-cY9Cxs.roa
File: 18EndxHL0XMIPcGOyIGW-cY9Cxs.roa (raw, json)
Hash identifier: yPqQGcp0oogmRRgLex4coME1FuxeFr5pQHULwlAmy2o=
Subject key identifier: D7:C1:27:77:11:CB:D1:73:08:3D:C1:8E:C8:81:96:F9:C6:3D:0B:1B
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 018CC56EA418EE7C250EB958B4A2552F96BF
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/18EndxHL0XMIPcGOyIGW-cY9Cxs.roa
Signing time: Mon 01 Jan 2024 14:30:11 +0000
ROA not before: Mon 01 Jan 2024 14:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44413
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 16:12:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:a4:18:ee:7c:25:0e:b9:58:b4:a2:55:2f:96:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jan 1 14:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7c1277711cbd173083dc18ec88196f9c63d0b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7d:aa:e5:56:cf:02:77:29:46:37:35:9b:20:
30:40:fc:00:96:b3:3b:46:00:5d:3f:91:1b:9e:5a:
fc:9e:c3:e3:b7:c5:2d:d1:ca:ee:0d:03:6f:37:6c:
1d:c7:b7:1a:9c:29:f5:b8:c3:2e:89:45:53:bc:41:
b8:ca:e7:65:9a:bc:6a:05:75:a3:26:80:ce:d9:bc:
d9:a4:94:52:ea:4d:be:51:f4:6b:fd:f8:82:6c:ec:
33:37:42:79:a3:15:4a:83:d9:7f:3c:a9:db:ec:e8:
79:cc:e1:b5:a6:91:4f:8e:9d:87:48:3a:72:04:c0:
7b:0f:55:07:5f:7c:04:a8:5e:bc:af:b7:63:8a:a6:
f6:2b:b3:c5:70:86:5b:04:c6:ca:cd:f0:6b:50:2f:
4e:ac:fc:17:bc:92:41:1b:25:9a:0c:11:8f:f3:ae:
7e:09:ee:71:a7:cb:5c:63:9e:1a:c1:75:6a:fb:88:
c0:c1:fb:e6:5d:90:7c:25:72:b2:ab:39:9c:62:0c:
95:0a:59:e7:f6:1e:ef:cc:6b:6b:4c:18:ea:4c:66:
33:fa:48:ed:e1:2f:1d:14:31:40:5f:b0:0b:43:cd:
ed:58:90:f9:65:51:df:66:2f:f2:86:26:51:bf:31:
0e:69:de:30:e3:eb:05:e3:d2:0c:68:00:18:60:ce:
f4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C1:27:77:11:CB:D1:73:08:3D:C1:8E:C8:81:96:F9:C6:3D:0B:1B
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/18EndxHL0XMIPcGOyIGW-cY9Cxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
19:a6:48:86:33:8e:74:a3:90:51:19:d4:ff:8a:a0:18:82:5e:
f7:6b:ea:9b:a7:7f:be:10:2c:51:fd:c8:7b:8f:47:eb:2a:df:
d9:1e:5a:b1:01:1d:cc:64:22:b4:a4:cd:06:ca:35:50:2e:ed:
c1:fb:f0:61:70:35:72:6c:61:49:f8:3c:31:8d:b8:e5:f3:08:
50:70:df:81:74:b8:aa:5e:51:2d:8f:69:12:af:41:e2:79:e3:
ce:80:2d:1c:e1:c9:fd:c0:4e:22:fe:ff:95:59:f6:42:d7:45:
cf:f4:17:db:c4:90:af:b5:6e:48:36:f8:69:4d:74:47:ed:fe:
17:aa:2b:1d:91:be:7a:20:9b:28:15:ea:f5:bb:b8:33:02:1e:
6e:15:45:f3:1c:ac:5a:38:d0:f0:8f:e7:68:eb:2b:89:3d:29:
3b:d2:dc:33:30:37:06:95:75:e4:12:ad:f9:a8:f5:b8:11:ef:
86:e5:86:9a:c2:18:66:b4:07:c6:33:a9:b3:3d:7f:31:00:d1:
99:f6:61:98:69:2e:45:fb:af:62:bb:20:b9:5b:1c:74:ca:e9:
af:c0:10:61:64:54:6e:32:63:84:0b:58:f8:15:23:d7:82:67:
e3:62:f4:b0:65:9e:9b:f8:52:44:d9:c6:52:07:1f:71:45:e6:
fe:c7:89:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org