Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/K0h2ECjN6_enaU3Sv6MFNaXhs2M.roa
File: K0h2ECjN6_enaU3Sv6MFNaXhs2M.roa (raw, json)
Hash identifier: EgeHrz5LbAJTwxvuI/gJqdRnawyxulHc7TE7gVf3BY8=
Subject key identifier: 2B:48:76:10:28:CD:EB:F7:A7:69:4D:D2:BF:A3:05:35:A5:E1:B3:63
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 018AFB2284D8767BABFE3BFF011E82C7A9A5
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/K0h2ECjN6_enaU3Sv6MFNaXhs2M.roa
Signing time: Wed 04 Oct 2023 14:40:57 +0000
ROA not before: Wed 04 Oct 2023 14:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42055
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 17:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:22:84:d8:76:7b:ab:fe:3b:ff:01:1e:82:c7:a9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Oct 4 14:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b48761028cdebf7a7694dd2bfa30535a5e1b363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:60:b2:ad:31:cb:c0:ec:6b:03:73:ff:00:bf:
91:6e:8b:79:8b:f6:c6:f7:3c:99:45:2d:5e:77:03:
25:a5:54:46:18:c7:fc:04:51:06:8a:b4:9f:b5:a9:
0f:44:73:f9:63:b1:96:bd:67:0a:46:b4:94:39:cd:
66:d0:af:9b:2e:37:c4:de:31:92:e2:1a:27:ff:55:
27:2a:d3:b3:08:99:88:13:11:1b:22:31:64:7a:13:
bd:46:b4:70:05:e4:34:31:fa:f5:df:cd:14:31:7e:
fc:13:d0:3a:9f:39:2b:42:7a:72:e6:4a:33:19:1a:
15:73:8a:70:99:9c:40:e9:03:8a:0c:7f:33:45:0c:
6b:09:cb:3d:6f:50:11:9e:40:63:91:9b:b5:2b:68:
1e:7a:e3:62:89:4a:4f:f3:2c:bb:1b:18:0b:e4:ec:
af:33:07:d0:c1:81:e8:98:fd:6a:69:25:d6:13:9d:
41:8e:71:47:be:14:6f:85:d7:cd:8d:1a:8e:85:6e:
92:33:bc:37:92:70:64:6f:c2:57:34:25:17:ce:0c:
42:24:46:35:8f:a9:5b:66:b7:29:51:1e:39:90:9f:
76:0c:10:ab:45:c5:91:4a:73:21:55:a5:41:8e:5e:
4d:9d:47:ee:70:eb:f9:97:1a:b5:78:43:24:4c:da:
a7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:48:76:10:28:CD:EB:F7:A7:69:4D:D2:BF:A3:05:35:A5:E1:B3:63
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/K0h2ECjN6_enaU3Sv6MFNaXhs2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
47:7a:53:87:02:fa:77:fc:86:fb:24:7e:e8:59:bf:05:80:c7:
52:93:e7:9b:78:03:1e:02:cc:31:d6:a2:f3:0b:cd:16:94:94:
83:65:19:b4:35:35:80:a0:69:09:77:aa:8d:44:67:61:4d:b3:
e6:34:8d:1c:12:dc:98:6f:54:0a:c4:71:5c:50:0a:2b:85:eb:
19:d9:ee:c0:92:bd:5d:03:df:4e:64:0a:2d:fc:d7:91:f8:b8:
45:17:88:2b:90:9b:9d:9d:6a:dc:14:f8:f9:99:51:82:54:26:
b9:24:c8:10:fb:30:4e:5a:6e:ce:37:1e:b9:84:f5:25:a8:1e:
d5:46:86:6f:61:e9:80:ed:91:0c:1b:fd:b6:38:15:83:e3:1e:
cf:c4:4c:07:c0:a3:4d:ab:2d:fe:b5:33:2e:9c:f4:36:e3:e2:
59:80:03:b3:27:75:0b:a7:61:71:83:ca:76:bd:2b:84:91:ac:
d1:b9:02:5f:8f:fe:92:bb:80:d7:6b:24:57:a2:ea:84:a2:c0:
27:b8:87:b8:90:a2:b7:8f:49:6f:ab:3b:b4:c5:b7:4d:b8:39:
37:6e:fa:0d:3a:30:c3:f0:9a:66:39:11:08:96:80:cd:47:93:
19:8c:b4:c9:46:1a:86:af:b7:1d:b9:16:b0:21:c9:b4:c7:c7:
67:de:dc:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr7IoTYdnur/jv/AR6Cx6mlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjBhNGQ4NzRkOTYwMWM4MTQyYzM1MmY4MGM1NmE0MzI3
NmNkNDcwHhcNMjMxMDA0MTQ0MDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjQ4NzYxMDI4Y2RlYmY3YTc2OTRkZDJiZmEzMDUzNWE1ZTFiMzYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWCyrTHLwOxrA3P/AL+Rbot5i/bG
9zyZRS1edwMlpVRGGMf8BFEGirSftakPRHP5Y7GWvWcKRrSUOc1m0K+bLjfE3jGS
4hon/1UnKtOzCJmIExEbIjFkehO9RrRwBeQ0Mfr1380UMX78E9A6nzkrQnpy5koz
GRoVc4pwmZxA6QOKDH8zRQxrCcs9b1ARnkBjkZu1K2geeuNiiUpP8yy7GxgL5Oyv
MwfQwYHomP1qaSXWE51BjnFHvhRvhdfNjRqOhW6SM7w3knBkb8JXNCUXzgxCJEY1
j6lbZrcpUR45kJ92DBCrRcWRSnMhVaVBjl5NnUfucOv5lxq1eEMkTNqngwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCtIdhAozev3p2lN0r+jBTWl4bNjMB8GA1UdIwQY
MBaAFLpgpNh02WAcgULDUvgMVqQyds1HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWIt
ZTVhMzc3OGJlM2FkLzEvSzBoMkVDak42X2VuYVUzU3Y2TUZOYVhoczJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWItZTVhMzc3OGJlM2Fk
LzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjpzMA0G
CSqGSIb3DQEBCwUAA4IBAQBHelOHAvp3/Ib7JH7oWb8FgMdSk+ebeAMeAswx1qLz
C80WlJSDZRm0NTWAoGkJd6qNRGdhTbPmNI0cEtyYb1QKxHFcUAorhesZ2e7Akr1d
A99OZAot/NeR+LhFF4grkJudnWrcFPj5mVGCVCa5JMgQ+zBOWm7ONx65hPUlqB7V
RoZvYemA7ZEMG/22OBWD4x7PxEwHwKNNqy3+tTMunPQ24+JZgAOzJ3ULp2Fxg8p2
vSuEkazRuQJfj/6Su4DXayRXouqEosAnuIe4kKK3j0lvqzu0xbdNuDk3bvoNOjDD
8JpmOREIloDNR5MZjLTJRhqGr7cduRawIcm0x8dn3twk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org