Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/ZVDu7gJQCUg7jy8b7rGa_mhbzu0.roa
File: ZVDu7gJQCUg7jy8b7rGa_mhbzu0.roa (raw, json)
Hash identifier: 3ydV3Gfzp6Oauyn3ubSiCqohSMW8tJrbijIebAsHRRU=
Subject key identifier: 65:50:EE:EE:02:50:09:48:3B:8F:2F:1B:EE:B1:9A:FE:68:5B:CE:ED
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 01856F42A95ED32EECCF50134C822F055D88
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/ZVDu7gJQCUg7jy8b7rGa_mhbzu0.roa
Signing time: Sun 01 Jan 2023 21:35:17 +0000
ROA not before: Sun 01 Jan 2023 21:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 2.58.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a9:5e:d3:2e:ec:cf:50:13:4c:82:2f:05:5d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jan 1 21:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6550eeee025009483b8f2f1beeb19afe685bceed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:b0:48:d9:c7:8f:a1:5e:99:1f:1f:cb:1d:
53:05:54:3e:43:e7:b0:1d:a4:e4:03:de:7d:d5:1d:
bb:50:09:cd:94:2a:96:99:5e:e0:28:46:de:be:f4:
47:0c:05:78:53:43:96:20:a0:a9:53:37:00:17:99:
45:73:83:e9:4b:63:59:fd:3c:27:eb:04:c0:14:91:
df:e2:a1:26:ed:9e:4f:17:7f:ba:ec:1d:17:97:4a:
41:3a:cd:c0:f7:e3:c6:7d:65:da:c2:cf:68:0c:1d:
e1:54:d7:6e:9b:65:df:d7:dc:2c:75:df:de:7f:84:
c5:9b:88:f9:20:2a:7d:81:10:b2:70:2d:1f:96:48:
d9:ea:2c:3f:75:ec:1f:8d:53:b6:9b:4d:63:00:c9:
56:66:05:d8:96:5f:e3:ea:e9:f1:17:02:9c:1b:9f:
47:a6:27:38:63:31:3b:a8:ef:c2:80:c4:51:31:b0:
0c:9b:0a:a5:6f:c7:f6:14:03:63:ca:3d:8e:78:df:
79:20:a7:52:96:5d:e2:e8:1b:35:16:ae:45:bc:0a:
03:e1:01:e3:8b:b1:81:81:1c:f7:50:ab:40:81:39:
8e:4c:3d:ef:45:c7:f4:c4:de:b5:5b:cc:d1:0c:e3:
6d:8f:4f:e7:33:db:da:48:e1:36:4a:1b:dd:2b:61:
94:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:50:EE:EE:02:50:09:48:3B:8F:2F:1B:EE:B1:9A:FE:68:5B:CE:ED
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/ZVDu7gJQCUg7jy8b7rGa_mhbzu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.113.0/24
Signature Algorithm: sha256WithRSAEncryption
33:61:18:0f:5d:d8:18:d6:95:68:5a:b8:87:d0:b1:fb:32:18:
fc:63:a6:94:ef:34:29:37:98:72:77:a7:f4:91:f6:53:88:28:
19:69:6e:29:88:29:56:f4:1e:eb:84:23:fa:9e:0e:59:bf:2a:
0d:28:26:ee:36:70:31:2e:d4:9e:01:63:60:74:7f:55:fa:4f:
52:49:3f:23:2a:91:1f:cb:c2:68:2c:4d:97:17:07:27:c8:ba:
a8:92:a2:7e:43:b7:f1:a6:19:cb:a7:2b:da:a3:58:3e:3c:2a:
ee:a9:b8:76:c7:b7:2f:2a:46:2e:8a:30:61:3f:65:b1:f0:fe:
10:a7:b7:22:7c:ed:a2:29:3a:ae:b2:ba:84:c1:5e:ab:ae:a6:
06:f4:b3:71:eb:51:19:25:a4:28:8b:37:b5:07:50:73:f2:b4:
ac:0f:30:2c:92:35:c0:4b:be:ad:28:88:c9:11:c1:41:71:0b:
c1:f0:be:0b:91:03:5d:84:61:a1:70:6f:3d:ab:40:d6:92:dd:
b6:5e:ee:15:e2:0f:f1:0f:1c:80:07:e9:6a:c2:6c:ac:01:95:
7b:56:4c:76:a2:ad:db:07:6a:d7:45:0b:ce:47:e3:eb:a6:8a:
cb:34:cc:92:5d:fd:58:9d:69:5e:23:94:96:fe:8a:12:bb:ca:
ff:1b:1b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:30 2024 by rpki-client on console-ams.rpki-client.org