Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/4t53J09rEESVafpy0UzyBti9Yow.roa
File: 4t53J09rEESVafpy0UzyBti9Yow.roa (raw, json)
Hash identifier: DXCvklym2EKa3LwnC+srpcAyjRqW9Ym0daAWY5OZxw4=
Subject key identifier: E2:DE:77:27:4F:6B:10:44:95:69:FA:72:D1:4C:F2:06:D8:BD:62:8C
Certificate issuer: /CN=b464e0af28b755c4ec88010d94298697d1883933
Certificate serial: 018963E95664143E274E38B487532655C824
Authority key identifier: B4:64:E0:AF:28:B7:55:C4:EC:88:01:0D:94:29:86:97:D1:88:39:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/4t53J09rEESVafpy0UzyBti9Yow.roa
Signing time: Mon 17 Jul 2023 12:53:03 +0000
ROA not before: Mon 17 Jul 2023 12:53:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57344
IP address blocks: 2.56.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:e9:56:64:14:3e:27:4e:38:b4:87:53:26:55:c8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b464e0af28b755c4ec88010d94298697d1883933
Validity
Not Before: Jul 17 12:53:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2de77274f6b10449569fa72d14cf206d8bd628c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1b:a6:1f:df:f7:b3:29:e2:a6:bc:ee:3b:a5:
4f:9e:7e:85:83:2b:2d:25:6c:84:26:53:c5:04:34:
6d:41:0e:f0:f9:64:75:38:d1:89:37:04:8a:fe:fd:
e4:9a:88:c9:95:90:99:d9:89:01:85:bd:64:2c:a8:
e8:a2:c2:d7:1a:1f:c3:08:fc:82:7a:6f:d7:c8:1c:
1e:2e:54:fe:b6:94:86:f1:25:61:8f:3d:56:fc:a4:
d9:20:6c:8f:7a:66:49:ab:02:00:00:78:4d:41:93:
54:80:df:7f:a4:22:6e:8b:f0:82:7a:2c:94:a1:c4:
8a:3b:d4:62:6b:72:7b:df:d7:5b:a0:90:1c:2f:f9:
b4:23:17:09:9b:b7:55:62:e9:6d:ba:97:ae:a9:61:
24:90:74:ee:0b:3f:2d:fb:e2:b4:97:15:f9:76:9c:
da:bd:5e:f8:b1:6e:77:2c:ee:47:36:de:38:a5:d7:
05:8f:48:bc:38:7b:8e:d4:dc:15:ec:88:f3:f5:2b:
fe:f8:e8:5c:56:09:aa:48:ee:43:df:7b:f8:df:0f:
de:de:e3:1d:e9:d5:89:05:50:be:85:f5:8c:95:e2:
4b:19:ea:70:6d:d5:aa:e5:ae:43:3a:d9:bf:ad:04:
a8:50:7e:9e:14:d4:1d:78:27:74:36:d2:93:2b:59:
8d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DE:77:27:4F:6B:10:44:95:69:FA:72:D1:4C:F2:06:D8:BD:62:8C
X509v3 Authority Key Identifier:
keyid:B4:64:E0:AF:28:B7:55:C4:EC:88:01:0D:94:29:86:97:D1:88:39:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGTgryi3VcTsiAENlCmGl9GIOTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/4t53J09rEESVafpy0UzyBti9Yow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/0caa6d-109e-45f3-a932-475c5c91f474/1/tGTgryi3VcTsiAENlCmGl9GIOTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.14.0/24
Signature Algorithm: sha256WithRSAEncryption
44:73:43:85:95:dc:51:b1:43:a6:e5:ee:8b:e8:8e:5f:0e:fd:
07:f2:00:b7:33:de:c3:ae:ff:bf:87:be:0f:81:dc:1a:a5:62:
74:6d:93:06:77:ff:3a:2e:31:91:ae:62:6a:3e:9e:ac:66:02:
f1:43:24:60:a5:80:16:a5:b8:5a:67:c7:40:90:c2:8a:32:d9:
83:71:a9:d6:1c:2f:4f:1d:85:70:9f:c4:50:5b:e5:9e:50:68:
4a:c4:63:b2:2f:d3:f8:c0:6f:f4:ed:33:df:da:80:32:bb:fb:
fa:c2:2b:9a:06:f8:a5:29:c5:c8:47:39:9d:e4:4a:4e:db:e9:
24:da:34:8a:bd:0a:b1:cd:f8:5b:07:96:6d:49:0f:c5:42:0e:
f2:a1:a3:56:ac:2d:90:58:93:b3:b3:af:f7:5f:02:09:7f:0d:
9e:e2:3a:7d:36:e7:f2:2a:06:32:aa:03:e2:14:c2:af:a6:10:
17:37:04:17:54:5e:d2:69:6b:0b:b0:1e:1c:cd:a6:b5:64:1f:
7f:e9:1c:60:23:9f:9d:9f:8a:23:35:4c:00:a0:41:db:12:d2:
70:28:07:8a:81:5b:13:b8:9a:4a:4e:07:e2:20:3a:f8:56:5c:
74:07:da:b0:47:e1:70:ad:08:24:48:9e:c0:5b:3f:94:c5:0b:
10:93:9a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:32 2024 by rpki-client on console-fra.rpki-client.org