Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/kT1sfV_6N_fWGj7FBB23D3aDkw4.roa
File: kT1sfV_6N_fWGj7FBB23D3aDkw4.roa (raw, json)
Hash identifier: GvoMqoW3vMe+WCFhdv7q5ty7uVEAGwAoC7mQgF2KKmA=
Subject key identifier: 91:3D:6C:7D:5F:FA:37:F7:D6:1A:3E:C5:04:1D:B7:0F:76:83:93:0E
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 018626897C728C4C5AF92F7350D426727AA5
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/kT1sfV_6N_fWGj7FBB23D3aDkw4.roa
Signing time: Mon 06 Feb 2023 11:43:09 +0000
ROA not before: Mon 06 Feb 2023 11:43:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 May 2023 15:15:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:89:7c:72:8c:4c:5a:f9:2f:73:50:d4:26:72:7a:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Feb 6 11:43:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=913d6c7d5ffa37f7d61a3ec5041db70f7683930e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4a:be:3f:11:1c:9d:78:ee:b1:92:b4:17:96:
71:a7:99:e4:02:5d:d7:3f:08:12:a9:4f:ee:a9:dd:
3a:57:4a:45:80:39:59:53:73:b9:66:5d:0f:7e:1b:
71:a2:8d:11:13:a9:f9:40:38:f6:c4:cb:f5:d8:1e:
ea:7d:6f:72:1f:b8:ac:06:4d:49:3b:3a:0f:e5:9f:
e7:cc:9c:f1:3a:7d:92:a2:2e:30:b9:7e:ed:c6:65:
dc:ce:7c:37:49:ca:aa:04:cb:40:9b:02:11:b5:e5:
05:ac:18:ce:53:d6:69:23:d7:80:51:27:25:fa:cc:
c7:74:d7:ce:cc:f3:c0:62:4e:5a:4b:0e:36:f0:f1:
18:0c:54:ef:06:a8:b6:21:dd:73:4e:32:da:88:85:
19:9b:35:e8:12:a3:86:c3:d0:94:e9:5d:72:55:8d:
e4:2e:70:c0:44:33:7c:35:30:78:19:a5:98:a9:40:
74:9b:bc:d9:21:42:96:64:22:09:fe:a8:16:8a:ef:
32:ec:42:26:5c:1a:f4:54:6f:59:79:6c:25:76:65:
b0:94:d0:5b:ae:83:1f:51:f3:ea:05:7a:27:46:c5:
7e:fc:c9:8d:49:fc:8b:6f:61:10:f2:b8:70:73:d8:
a8:1a:4d:51:65:9e:88:b1:be:47:b5:07:6d:c8:b8:
f7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3D:6C:7D:5F:FA:37:F7:D6:1A:3E:C5:04:1D:B7:0F:76:83:93:0E
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/kT1sfV_6N_fWGj7FBB23D3aDkw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
af:8f:54:72:e7:36:07:1e:86:71:85:b6:24:92:74:1a:89:4d:
d4:d5:61:fa:d8:0d:cc:9b:d3:c3:0a:92:fd:99:e2:fe:f0:60:
34:fd:22:b2:3a:aa:74:fa:7b:86:b2:88:fe:91:37:84:fb:d6:
66:e3:c5:87:a7:6a:e6:e6:e6:34:4b:c1:1b:2c:a8:93:5c:38:
16:39:2e:33:fa:75:48:96:bb:b9:b2:7c:4d:08:f1:8e:f1:41:
e8:be:83:ec:25:e1:06:94:f3:70:23:80:df:82:cb:32:16:d2:
35:4b:20:25:ab:bb:30:f3:48:0b:7f:25:42:78:e0:1c:29:1c:
b2:ca:d9:e3:8f:30:10:5f:9d:5d:fc:15:8d:a4:a9:2b:13:f4:
8d:ac:c2:f2:54:b3:e4:d6:8a:ea:1e:9a:d3:95:3a:12:05:bc:
7d:87:1a:2a:e8:ea:84:56:74:9a:c7:7b:0a:f7:5f:b1:6e:2a:
c7:4e:94:08:e8:b0:f8:ff:63:53:08:ac:08:fc:3b:c4:56:68:
02:39:b0:2e:7d:b2:a1:2f:03:f4:75:0b:e3:59:2a:7c:35:7e:
d6:01:63:9a:b3:ea:34:fd:25:8d:7b:f7:74:72:f9:f4:d9:aa:
71:9a:b0:92:2c:d2:25:e3:ef:51:3a:8f:c4:97:7f:95:49:e5:
2c:af:f5:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:03 2024 by rpki-client on console-ams.rpki-client.org