Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/6Stz3mfDH_p13reHQiIYCqzlreU.roa
File: 6Stz3mfDH_p13reHQiIYCqzlreU.roa (raw, json)
Hash identifier: 3wPy+ipjfQvf80n7o0tD9uHGkti8DKyiRjMjna7T2vg=
Subject key identifier: E9:2B:73:DE:67:C3:1F:FA:75:DE:B7:87:42:22:18:0A:AC:E5:AD:E5
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018F9964672BF141333B9A4370680C1FAF6B
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/6Stz3mfDH_p13reHQiIYCqzlreU.roa
Signing time: Tue 21 May 2024 04:24:05 +0000
ROA not before: Tue 21 May 2024 04:24:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 2.56.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 13:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:64:67:2b:f1:41:33:3b:9a:43:70:68:0c:1f:af:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: May 21 04:24:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e92b73de67c31ffa75deb7874222180aace5ade5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8c:c6:c7:73:8b:aa:e5:0b:3f:f9:52:1c:fd:
a1:a6:ac:67:22:ee:d5:ed:dc:9f:1f:70:00:a2:9c:
53:13:f6:ef:f6:a4:fb:03:0b:4d:4a:78:cd:b2:cd:
71:78:3a:7f:53:cd:c3:34:54:c9:f2:42:71:08:41:
e7:03:9e:aa:fb:44:3c:45:31:f4:b9:a8:60:2c:da:
b4:05:e5:d4:e6:0f:32:04:99:c1:a0:5e:64:7c:f9:
c5:ba:61:68:57:c8:bb:04:82:2b:91:4d:0b:cf:81:
d1:29:0f:95:42:57:fc:03:81:80:65:11:56:76:1d:
44:c3:c6:f9:97:3d:f8:6e:f1:7c:7a:cd:41:e3:93:
0b:81:b9:79:2d:52:66:c7:04:71:fd:4f:e3:f7:e5:
72:ab:45:d1:48:5e:5b:56:c1:1c:35:a6:88:27:05:
a0:5a:71:aa:c1:b3:aa:a1:8c:ef:6a:e3:5f:e0:32:
b1:da:c1:04:bb:fd:a8:22:95:fa:b0:1d:69:5b:c6:
21:1d:ee:ff:77:41:77:d3:b3:c7:d3:24:fb:13:fa:
9d:76:32:d7:9b:af:64:a5:2e:2f:e0:ab:8d:89:f8:
99:57:20:6b:eb:e9:fe:4d:72:21:4c:c9:43:81:4b:
91:2f:62:d9:5d:1c:87:7b:7b:75:51:39:e1:75:19:
40:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2B:73:DE:67:C3:1F:FA:75:DE:B7:87:42:22:18:0A:AC:E5:AD:E5
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/6Stz3mfDH_p13reHQiIYCqzlreU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.56.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:db:2a:0c:7a:1c:7f:46:88:e8:86:91:70:57:41:d9:51:f0:
76:fa:1a:ed:23:3a:ee:c9:66:83:3d:42:96:10:67:c4:cd:9d:
39:3d:b6:a0:a9:2f:ee:43:4b:fc:e9:16:63:84:86:57:3d:51:
22:f2:6c:f1:de:98:81:14:ae:b2:fd:6c:6d:4d:28:89:ca:fc:
3e:26:09:ba:2f:e5:02:a7:1c:26:6f:94:76:0b:26:8d:f5:f8:
5b:e5:31:cb:ce:3a:9b:eb:10:d3:4e:a2:b8:16:f7:34:71:3e:
8d:1f:e6:62:9b:6a:eb:dd:24:5f:3c:5f:0a:1b:52:ed:88:cb:
bd:a0:ba:af:f2:46:78:99:0e:02:d7:26:24:f2:d6:0f:83:4b:
e9:44:7d:36:80:5b:22:ff:ac:a5:da:9c:89:93:14:64:7d:f6:
b9:30:09:aa:46:90:47:fa:3e:39:60:d7:88:aa:ad:4f:bc:94:
33:74:44:1b:80:26:68:5f:cc:7f:1f:13:8b:25:58:5a:ba:8c:
51:b7:fd:20:71:91:20:4a:dd:ac:bc:1c:b8:1e:b2:05:a5:1e:
90:b3:b3:38:dc:48:20:45:06:4a:e0:71:72:45:f5:dd:a3:6a:
3f:23:10:20:3c:f1:32:69:52:e5:e7:8c:f3:8f:64:4d:9c:34:
3d:44:f0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:08 2024 by rpki-client on console-ams.rpki-client.org