Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/8RtuG7VFA4mAnUQtklfkGCezo58.roa
File: 8RtuG7VFA4mAnUQtklfkGCezo58.roa (raw, json)
Hash identifier: 5wYjfckG3eAYs0usSVjtEduQx8rR1QiApfk4LUXAzEg=
Subject key identifier: F1:1B:6E:1B:B5:45:03:89:80:9D:44:2D:92:57:E4:18:27:B3:A3:9F
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 018E428E2D8B11B8D60752A6B3E5B7138783
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/8RtuG7VFA4mAnUQtklfkGCezo58.roa
Signing time: Fri 15 Mar 2024 14:39:57 +0000
ROA not before: Fri 15 Mar 2024 14:39:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3292
IP address blocks: 2.110.0.0/20 maxlen: 20
2.110.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 17 Jul 2024 10:56:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:42:8e:2d:8b:11:b8:d6:07:52:a6:b3:e5:b7:13:87:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: Mar 15 14:39:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f11b6e1bb5450389809d442d9257e41827b3a39f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:e3:c9:03:34:c5:e3:d6:f9:91:fc:17:5a:
58:bd:88:00:c5:ee:19:99:0d:ba:9f:bc:ac:f0:3f:
b5:ad:b0:ae:dd:fd:ca:0f:17:c8:11:20:ed:78:f4:
dd:c7:3e:e7:5e:3a:25:10:98:8d:a9:fe:98:5e:73:
34:bb:7d:d7:3e:22:39:71:a7:69:2d:6f:72:13:87:
41:82:b1:e0:a3:8b:5c:c5:e8:d9:d9:a1:e7:c3:1c:
57:bb:58:3a:db:59:73:3a:7f:ca:5e:58:82:c2:96:
69:38:8b:a9:1a:76:2f:7c:67:cd:20:cf:d2:32:33:
e5:7f:fb:ec:f7:b4:86:86:0b:fe:35:a9:bf:03:81:
77:55:dd:49:aa:86:3e:83:ee:45:85:01:8b:62:68:
76:fa:14:1f:72:2c:f0:db:ca:eb:e5:64:bc:b1:5e:
bc:e9:32:fa:3a:5a:92:32:57:19:eb:4c:19:8b:fb:
9b:ef:6f:6d:32:40:da:9e:73:d4:db:f0:00:93:7a:
11:fc:d6:e8:86:c0:db:d7:c6:c0:8d:6c:03:fd:ca:
15:93:f7:8a:8a:b5:b6:3d:69:50:2f:be:f0:dd:fd:
26:f2:9f:25:53:12:82:cd:4b:2a:f8:81:f1:12:b1:
d2:dc:cd:bb:e2:ff:d1:e4:e5:00:9d:ea:25:53:db:
bb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1B:6E:1B:B5:45:03:89:80:9D:44:2D:92:57:E4:18:27:B3:A3:9F
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/8RtuG7VFA4mAnUQtklfkGCezo58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.110.0.0-2.110.19.255
Signature Algorithm: sha256WithRSAEncryption
86:2f:d4:b3:68:42:1f:9d:a2:a1:e8:fb:24:4a:75:1b:62:5c:
da:20:b2:9a:a6:2d:31:28:59:46:17:1b:f7:2a:5f:29:8e:67:
f7:87:7a:ca:27:8b:5c:9d:3d:f2:f8:87:ed:86:58:d8:3d:45:
42:e0:38:3b:d6:a2:09:97:74:5d:29:68:98:aa:73:7b:a6:55:
d2:53:08:a6:9c:08:e8:2d:8b:5b:56:67:30:ee:51:6b:83:e4:
39:2c:08:c5:e6:d8:d4:4a:5f:60:db:b7:74:25:a8:09:05:87:
cc:44:16:9e:ff:2a:24:ef:5a:de:3f:0b:b1:40:3a:62:c2:62:
67:86:8c:ed:69:90:4e:d8:49:a4:5d:0b:59:05:fd:db:0d:1e:
4f:7c:7c:d9:f3:3a:63:95:29:5d:9c:bd:de:18:df:3e:21:1d:
31:df:83:d4:05:44:30:88:86:1c:49:0b:81:cd:61:73:b2:cf:
fe:f6:2d:57:ad:43:6a:e7:4a:3f:c9:f3:91:28:f8:76:e9:a1:
a5:c6:e8:3d:39:88:c1:86:57:c2:9b:c6:a2:4c:78:a4:80:f9:
60:92:84:59:ac:ae:36:b6:5b:f2:8a:67:17:e8:b7:69:a1:2b:
01:98:06:b8:0f:1a:bd:f2:df:12:58:2e:aa:ad:e5:e2:f6:86:
8d:36:e4:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 14:12:20 2024 by rpki-client on console-fra.rpki-client.org