Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/dyZ5G1dk34MeOpsRVf-ZznYgeQM.roa
File: dyZ5G1dk34MeOpsRVf-ZznYgeQM.roa (raw, json)
Hash identifier: SsGLbVRAuLgFrlE62zsheG1iZe/VwQcUFZ2M9BbGWmY=
Subject key identifier: 77:26:79:1B:57:64:DF:83:1E:3A:9B:11:55:FF:99:CE:76:20:79:03
Certificate issuer: /CN=92b5ac88f2cdb14934830c1ac096a5ef73098f12
Certificate serial: 01856F66BD46133328F237EDF59CD0D79E0F
Authority key identifier: 92:B5:AC:88:F2:CD:B1:49:34:83:0C:1A:C0:96:A5:EF:73:09:8F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/dyZ5G1dk34MeOpsRVf-ZznYgeQM.roa
Signing time: Sun 01 Jan 2023 22:14:42 +0000
ROA not before: Sun 01 Jan 2023 22:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213300
IP address blocks: 2.56.170.0/24 maxlen: 24
2a10:4040::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:bd:46:13:33:28:f2:37:ed:f5:9c:d0:d7:9e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92b5ac88f2cdb14934830c1ac096a5ef73098f12
Validity
Not Before: Jan 1 22:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7726791b5764df831e3a9b1155ff99ce76207903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:3d:5c:89:a0:21:3f:7c:6c:8d:3b:49:12:
43:a7:28:c2:2e:21:5d:4c:96:42:a9:65:fc:af:59:
f3:03:db:4b:8a:e3:f5:2b:11:c8:db:1b:0a:de:b4:
73:21:28:60:c0:33:33:06:69:70:99:63:a3:45:19:
ed:0f:d7:18:e5:8c:23:78:23:1d:d9:bf:05:a7:b8:
b0:5b:91:44:91:58:3b:84:a5:c3:32:d9:ba:e5:47:
c3:b9:54:50:e3:0f:83:2e:23:2b:ef:71:e6:ab:99:
1d:db:f9:41:37:54:d5:d8:eb:7e:5a:ad:e6:45:9c:
c7:05:fb:3d:6c:04:bf:dd:0e:72:f5:f4:24:99:85:
17:7b:56:c7:91:b1:40:11:48:35:b7:1c:55:87:f7:
e3:9c:b3:9f:de:6a:b9:51:e0:ca:f9:cc:3e:89:7a:
95:bb:a2:06:c4:85:bb:f7:67:dc:07:2b:f0:5c:ac:
40:6f:13:5f:e0:19:11:7b:1f:f6:3b:e9:20:2c:d2:
8e:a6:ad:57:18:18:57:2d:7b:95:ed:cc:97:44:29:
94:e4:eb:80:94:c4:cf:b6:47:a6:94:a9:a8:b5:79:
16:0e:36:c7:31:2e:b2:27:b5:a7:ee:af:3d:dd:30:
73:33:89:e5:90:bc:03:68:ff:c4:6b:77:95:12:3b:
6a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:26:79:1B:57:64:DF:83:1E:3A:9B:11:55:FF:99:CE:76:20:79:03
X509v3 Authority Key Identifier:
keyid:92:B5:AC:88:F2:CD:B1:49:34:83:0C:1A:C0:96:A5:EF:73:09:8F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/dyZ5G1dk34MeOpsRVf-ZznYgeQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/krWsiPLNsUk0gwwawJal73MJjxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.170.0/24
IPv6:
2a10:4040::/29
Signature Algorithm: sha256WithRSAEncryption
07:0d:b2:10:64:9c:c3:7c:3d:b5:b2:81:e6:62:0a:81:3c:c9:
ba:fd:35:40:bb:0f:13:fe:d0:9c:cb:72:f2:6e:0e:7e:7f:2f:
78:a1:ac:7d:08:06:89:30:78:5b:05:36:a2:0a:a5:b9:f0:75:
51:fb:82:99:f9:de:61:d5:ab:4c:0a:8d:ab:22:61:34:ad:d7:
8b:37:48:58:f8:24:40:35:ba:3d:62:a3:a4:ac:5c:04:9f:86:
47:d8:7b:30:93:a1:55:5a:e7:f0:db:aa:ab:f4:e2:fc:f6:fa:
06:fb:2f:66:95:38:8e:76:8b:1d:a5:e6:b7:40:f5:fa:0e:f8:
83:a9:4d:56:53:02:11:53:70:5c:d0:b9:3c:98:8f:df:bf:3d:
9d:65:0d:fd:fe:5d:9c:e1:40:c2:57:7a:f3:aa:5f:c6:f2:d1:
c8:d2:65:51:e1:4e:f4:58:60:eb:c3:4f:2b:ae:e6:b2:1b:6a:
b5:fe:34:45:92:e9:a7:02:9c:58:9c:41:3d:04:0f:31:b5:9d:
79:59:87:14:54:4e:aa:be:31:da:14:c2:2f:4a:0c:66:5c:a1:
89:32:35:42:90:80:b2:6b:eb:3c:99:df:ad:32:09:4c:9a:50:
66:e7:ca:01:9c:4f:74:0b:e7:95:3b:41:2f:08:d3:ee:42:8e:
8c:74:52:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:22 2024 by rpki-client on console-ams.rpki-client.org