Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/_WXz8eQdVJAQFwJArrEKPYWq84g.roa
File: _WXz8eQdVJAQFwJArrEKPYWq84g.roa (raw, json)
Hash identifier: zUKOu1lo6NI0ZKqaa8P/JxL68zkBdpyMfFAd/XxltyQ=
Subject key identifier: FD:65:F3:F1:E4:1D:54:90:10:17:02:40:AE:B1:0A:3D:85:AA:F3:88
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 019058450C46A72EB7EABA0D69FDB9D6658A
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/_WXz8eQdVJAQFwJArrEKPYWq84g.roa
Signing time: Thu 27 Jun 2024 05:57:18 +0000
ROA not before: Thu 27 Jun 2024 05:57:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:45:0c:46:a7:2e:b7:ea:ba:0d:69:fd:b9:d6:65:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jun 27 05:57:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd65f3f1e41d549010170240aeb10a3d85aaf388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d0:f3:fd:52:bf:94:69:b6:fa:4b:b5:51:bc:
52:29:9e:08:5d:d2:28:ca:0e:df:0c:ac:1d:cb:fb:
a3:56:95:56:36:47:64:40:46:09:49:82:f4:7f:34:
d6:53:31:46:17:a3:61:a9:81:ea:51:78:17:d8:f8:
5b:0f:86:b5:d7:47:2d:55:55:05:de:d3:2d:c2:d1:
1e:86:94:fa:33:9f:15:e7:e9:64:5d:36:04:93:df:
e0:70:3d:cd:79:74:b7:eb:ac:0d:32:ff:f2:1f:5e:
78:4f:d1:90:f1:73:e3:5a:a9:0a:25:db:c6:7b:2d:
3c:a3:1d:e7:f9:35:cb:05:d5:41:fb:0b:49:a5:38:
8e:23:ba:6f:6b:41:04:a3:36:55:d3:f3:62:ee:41:
05:a1:4d:96:c5:a1:6e:c2:c5:93:45:6f:f2:7c:49:
83:ec:e7:10:21:23:c4:d6:82:63:7d:01:c9:f8:be:
3e:cc:3c:98:89:16:d4:08:c7:ec:30:6c:90:73:3e:
41:02:b2:7e:79:97:7a:f6:c2:a9:4b:72:28:74:b4:
96:c4:73:6b:81:a7:34:f6:f0:49:59:2a:d9:3d:b2:
c5:80:ea:7b:a5:16:62:ec:dc:d5:39:ed:28:9d:36:
07:35:c7:9b:cc:32:0c:f2:a9:ed:a1:3f:64:34:7f:
22:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:65:F3:F1:E4:1D:54:90:10:17:02:40:AE:B1:0A:3D:85:AA:F3:88
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/_WXz8eQdVJAQFwJArrEKPYWq84g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
57:71:ac:7b:93:a0:32:78:79:49:3e:4f:28:bf:dd:29:db:f5:
0f:3f:67:73:78:e4:09:08:96:b0:9e:36:53:0f:3c:e1:97:52:
d0:ea:ec:76:7d:7f:13:d6:15:05:dd:58:79:fb:37:94:19:02:
c8:7f:8b:98:c5:9c:eb:4d:3b:89:9f:d1:17:c4:2c:be:81:5b:
6b:4b:04:1c:8d:48:37:68:1c:88:81:0e:5d:cc:52:b9:3d:e6:
22:ec:0d:52:0e:0e:70:a6:a9:42:f7:31:ae:e9:c9:55:19:e0:
f5:c3:44:92:1e:96:59:53:8b:37:c7:23:d1:55:d7:b7:54:5b:
4f:b9:c0:4d:ae:f3:dd:1d:f2:c6:e3:15:ee:77:18:c2:8a:80:
1c:c8:9d:94:a9:16:65:62:b2:64:ca:1e:75:a9:41:8f:e6:b9:
0c:5e:f2:67:df:66:65:56:68:60:27:a0:21:0f:3d:23:c0:21:
c5:97:c3:6e:a5:5e:93:13:45:7c:89:4f:17:fc:f1:d1:d9:64:
a6:e4:a8:d6:30:d4:43:5b:ac:c1:1e:db:78:90:03:7c:ad:42:
49:3f:75:1b:6e:45:66:7b:ba:c1:b0:f8:26:7d:f6:5c:76:16:
61:76:04:23:a2:41:13:9c:ee:85:2b:63:c3:15:37:e9:5d:5d:
70:47:cf:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBYRQxGpy636roNaf251mWKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjBhNGQ4NzRkOTYwMWM4MTQyYzM1MmY4MGM1NmE0MzI3
NmNkNDcwHhcNMjQwNjI3MDU1NzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDY1ZjNmMWU0MWQ1NDkwMTAxNzAyNDBhZWIxMGEzZDg1YWFmMzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudDz/VK/lGm2+ku1UbxSKZ4IXdIo
yg7fDKwdy/ujVpVWNkdkQEYJSYL0fzTWUzFGF6NhqYHqUXgX2PhbD4a110ctVVUF
3tMtwtEehpT6M58V5+lkXTYEk9/gcD3NeXS366wNMv/yH154T9GQ8XPjWqkKJdvG
ey08ox3n+TXLBdVB+wtJpTiOI7pva0EEozZV0/Ni7kEFoU2WxaFuwsWTRW/yfEmD
7OcQISPE1oJjfQHJ+L4+zDyYiRbUCMfsMGyQcz5BArJ+eZd69sKpS3IodLSWxHNr
gac09vBJWSrZPbLFgOp7pRZi7NzVOe0onTYHNcebzDIM8qntoT9kNH8iEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP1l8/HkHVSQEBcCQK6xCj2FqvOIMB8GA1UdIwQY
MBaAFLpgpNh02WAcgULDUvgMVqQyds1HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWIt
ZTVhMzc3OGJlM2FkLzEvX1dYejhlUWRWSkFRRndKQXJyRUtQWVdxODRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWItZTVhMzc3OGJlM2Fk
LzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjpzMA0G
CSqGSIb3DQEBCwUAA4IBAQBXcax7k6AyeHlJPk8ov90p2/UPP2dzeOQJCJawnjZT
Dzzhl1LQ6ux2fX8T1hUF3Vh5+zeUGQLIf4uYxZzrTTuJn9EXxCy+gVtrSwQcjUg3
aByIgQ5dzFK5PeYi7A1SDg5wpqlC9zGu6clVGeD1w0SSHpZZU4s3xyPRVde3VFtP
ucBNrvPdHfLG4xXudxjCioAcyJ2UqRZlYrJkyh51qUGP5rkMXvJn32ZlVmhgJ6Ah
Dz0jwCHFl8NupV6TE0V8iU8X/PHR2WSm5KjWMNRDW6zBHtt4kAN8rUJJP3UbbkVm
e7rBsPgmffZcdhZhdgQjokETnO6FK2PDFTfpXV1wR8+a
-----END CERTIFICATE-----
Generated at Mon Jul 1 07:46:06 2024 by rpki-client on console-ams.rpki-client.org