Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/XfjtaX5Q2nW51-IV7dQGYSjK4aI.roa
File: XfjtaX5Q2nW51-IV7dQGYSjK4aI.roa (raw, json)
Hash identifier: C7lMNdCegbsZgSK4bVKOmOizTyiierzoOquKUSCWJQw=
Subject key identifier: 5D:F8:ED:69:7E:50:DA:75:B9:D7:E2:15:ED:D4:06:61:28:CA:E1:A2
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0193491D7E8082F7F45242217B649282A9DD
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/XfjtaX5Q2nW51-IV7dQGYSjK4aI.roa
Signing time: Wed 20 Nov 2024 10:28:09 +0000
ROA not before: Wed 20 Nov 2024 10:28:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15830
IP address blocks: 2.56.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:49:1d:7e:80:82:f7:f4:52:42:21:7b:64:92:82:a9:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 20 10:28:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5df8ed697e50da75b9d7e215edd4066128cae1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dc:e1:df:47:93:cd:7d:7c:3a:0d:84:f2:ba:
ed:7f:f4:6f:25:e5:2f:fa:b9:d5:21:a7:e7:ee:01:
bc:b4:43:5e:c6:23:45:a1:c4:d1:54:53:38:76:e6:
d3:ff:99:fb:02:af:8c:ea:22:53:04:b3:4c:44:01:
5b:b7:20:65:1d:4b:7e:f5:51:61:cb:26:00:67:d1:
9d:ea:34:18:b9:41:eb:10:38:57:1a:41:95:ac:86:
ec:ed:1c:13:01:fa:69:fc:77:c1:b7:5f:fa:84:ff:
79:c3:35:1e:1e:b7:9d:3a:c5:64:d0:ea:3f:c1:56:
dd:2c:a5:58:c7:5e:d4:0c:15:f4:e0:c1:ac:d5:2b:
b6:97:f2:59:27:25:12:ab:e3:b3:a8:97:16:ea:2e:
66:74:76:47:9a:80:a6:b3:39:d2:59:41:90:66:6e:
8c:3f:ba:6c:b5:93:4b:0d:06:d1:00:a0:4c:77:88:
f5:e6:bc:a0:19:d6:6b:af:d4:e1:9d:72:aa:a2:ab:
d6:a5:a7:ac:ca:c2:36:b0:02:81:fa:43:0f:87:9f:
a7:62:1f:81:06:20:93:1a:34:54:ea:e9:3d:a6:8a:
be:31:65:a8:17:27:db:e3:af:f1:54:c9:86:f3:d0:
78:64:13:e0:85:a1:1b:ae:86:8f:9c:23:c5:7a:55:
24:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F8:ED:69:7E:50:DA:75:B9:D7:E2:15:ED:D4:06:61:28:CA:E1:A2
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/XfjtaX5Q2nW51-IV7dQGYSjK4aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:4a:51:87:ca:1c:90:6f:d1:22:ca:fb:5e:d8:77:96:ab:cb:
eb:13:ba:52:84:65:12:a3:ec:58:89:d3:85:1d:d9:e1:32:08:
38:d4:d6:ae:c4:46:4d:a0:38:35:ec:d8:44:4c:a5:cb:3c:94:
c5:67:9c:b9:9d:f0:1b:53:14:17:75:fc:22:dd:96:2b:62:be:
33:fa:7d:ae:41:93:84:53:8c:b1:d6:f9:58:99:af:a7:b7:16:
91:3b:f0:95:a2:dc:26:1e:09:32:3b:4d:71:d8:68:33:67:9b:
d1:27:b1:ca:be:1d:35:a6:a4:c6:60:1d:c0:7f:d0:ab:67:ce:
37:fc:26:c3:23:7f:d4:f7:80:65:0f:cc:b1:0b:b1:d0:58:d0:
a5:22:7a:e5:39:6e:bb:74:1d:d2:ec:6d:68:2f:90:dc:1f:e8:
46:f4:83:3f:23:b7:1f:04:4d:fa:98:84:5e:ee:22:81:02:36:
5f:21:ef:1c:34:5b:02:8d:27:12:c0:39:7f:44:73:0d:4b:f6:
72:0d:2e:ff:c3:4e:18:63:19:a7:d8:32:37:fd:b4:5b:00:87:
33:aa:0b:18:78:89:77:11:a7:60:fe:d7:46:50:85:26:44:d9:
33:93:c6:b4:a0:10:5d:1d:ad:d8:ef:a9:ff:87:84:6a:9b:a6:
23:be:51:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:14:32 2025 by rpki-client