Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/sxi_jha8jn-ymeYgqXzgknALuWU.roa
File: sxi_jha8jn-ymeYgqXzgknALuWU.roa (raw, json)
Hash identifier: iIG2AxSpKQvcASgdkUOLhscWc2ZdWHUT7EIw3Dd7qw8=
Subject key identifier: B3:18:BF:8E:16:BC:8E:7F:B2:99:E6:20:A9:7C:E0:92:70:0B:B9:65
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 0187FBEE4631B36B232DEB3BC4FEA8F0A08A
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/sxi_jha8jn-ymeYgqXzgknALuWU.roa
Signing time: Mon 08 May 2023 15:15:09 +0000
ROA not before: Mon 08 May 2023 15:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 2.58.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 14:40:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:ee:46:31:b3:6b:23:2d:eb:3b:c4:fe:a8:f0:a0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: May 8 15:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b318bf8e16bc8e7fb299e620a97ce092700bb965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:87:08:46:ba:32:ab:5d:5a:60:29:89:2a:3b:
6a:9c:5a:4c:3d:ca:5c:ef:ce:13:08:24:c1:73:89:
bd:5d:ff:d6:97:54:44:17:f2:d9:e4:c9:1b:1f:4d:
42:d5:b0:2d:5a:fb:b6:c4:1a:b6:00:a0:9c:58:f9:
63:60:83:b3:8c:4b:c0:d3:34:e0:75:f7:65:9c:e0:
ef:1d:04:c8:d6:08:59:2a:36:b4:1f:fd:51:31:b0:
78:b6:fb:9c:3f:82:34:82:7c:81:1c:3a:fe:98:77:
ce:80:a8:c8:8a:3c:4e:3b:29:f6:c6:dd:d3:6e:75:
6f:53:b8:b6:94:af:25:9d:fa:5e:a2:3c:69:24:5b:
b7:7a:76:2d:7d:eb:ff:3d:df:9d:82:77:38:4c:77:
ca:ca:ac:f6:56:9e:10:a7:de:58:d2:05:51:b1:23:
a1:42:e3:1d:02:50:50:34:a5:93:e6:38:39:f2:91:
f3:89:e3:37:00:f3:8c:42:c5:ba:b4:22:31:ab:0e:
a3:e6:48:84:9a:71:b4:ff:b3:83:9a:b6:3b:2f:e0:
f6:63:9c:89:28:05:e8:61:d1:96:f2:18:9d:4d:21:
84:6c:11:f9:6b:eb:88:d4:0d:5c:c6:bd:a9:1a:92:
bd:31:df:02:1a:fe:c6:ff:58:34:c9:e3:bc:83:c3:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:18:BF:8E:16:BC:8E:7F:B2:99:E6:20:A9:7C:E0:92:70:0B:B9:65
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/sxi_jha8jn-ymeYgqXzgknALuWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.115.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:fc:82:16:ad:57:35:5e:e8:cd:85:72:94:ea:a8:0d:83:45:
10:ef:15:65:ec:32:e4:f6:7d:99:e3:56:f1:92:31:75:b5:1f:
25:cc:b0:45:bc:89:41:e5:e3:56:0b:fe:01:5d:05:eb:8e:60:
86:e1:0e:f7:51:56:0a:a4:1f:c0:83:34:66:73:64:6a:89:1d:
ec:67:82:98:ea:9b:e6:a5:35:02:94:f0:29:ef:52:aa:86:10:
1c:1f:9f:4f:65:e4:ef:5b:79:9f:b0:d9:02:d8:65:20:9a:a8:
d8:43:85:bb:c8:cf:f5:57:a5:ba:4a:5d:a4:bc:06:eb:03:0f:
87:ac:48:90:02:94:f1:02:f8:e8:eb:02:19:c6:1e:6d:68:9e:
4c:50:9d:8f:92:36:9c:f1:eb:c8:f2:89:4b:b4:91:87:72:d7:
f4:ab:fb:2d:cc:b2:35:ac:63:54:02:72:0d:69:ae:81:91:31:
a9:1a:0d:1b:c9:ca:0f:8c:f6:bf:c4:65:f1:06:40:53:0d:a6:
53:e5:62:0c:71:95:b1:f0:20:19:1c:f2:d9:17:d1:e7:06:de:
af:6c:5e:ef:27:ef:cc:b2:07:db:18:85:de:1e:3c:70:b1:e9:
96:db:76:15:88:78:1b:ca:66:2d:e8:19:b0:ef:d3:d8:48:69:
ae:45:05:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org