Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bG_GFWoZ0mbUVTAsY7wZkQK_JMQ.roa
File: bG_GFWoZ0mbUVTAsY7wZkQK_JMQ.roa (raw, json)
Hash identifier: yZtgQW4frp6RM9c+fXXJXRolcxWByJQsNe9kZDRnPas=
Subject key identifier: 6C:6F:C6:15:6A:19:D2:66:D4:55:30:2C:63:BC:19:91:02:BF:24:C4
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 019344CC7445D6940F30F06ECEDECB52CF3D
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bG_GFWoZ0mbUVTAsY7wZkQK_JMQ.roa
Signing time: Tue 19 Nov 2024 14:21:09 +0000
ROA not before: Tue 19 Nov 2024 14:21:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214208
IP address blocks: 2.56.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 20 Nov 2024 10:28:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:44:cc:74:45:d6:94:0f:30:f0:6e:ce:de:cb:52:cf:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 19 14:21:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c6fc6156a19d266d455302c63bc199102bf24c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:46:67:cc:31:47:8a:21:6f:93:1e:55:a7:3f:
6a:c2:e5:50:4e:dd:fa:9d:af:13:e2:a2:73:48:9c:
70:40:57:82:2b:69:31:82:3f:44:b6:a9:cd:76:cc:
a0:f7:f4:21:58:64:2d:0a:fb:7e:65:c1:02:fc:93:
94:e6:02:c2:f8:dc:8e:b4:81:05:1c:b2:e9:20:7e:
83:10:fc:0e:97:31:85:c7:f0:ae:fc:16:84:a0:d0:
c8:07:96:da:87:d2:38:f1:43:68:09:da:cb:1d:ce:
cd:93:9a:19:74:da:ed:fc:f6:c2:8a:cd:18:c0:71:
34:58:52:af:f3:1b:34:0e:40:16:64:1d:55:ba:e9:
bb:d5:e8:35:41:e1:11:bb:07:c9:b1:23:14:57:2a:
45:15:8c:0c:b3:ee:db:09:36:2b:af:61:c4:83:0f:
e0:fc:73:c9:4f:f9:a6:03:e9:88:a2:57:0a:89:f5:
e3:cc:c8:f2:03:5b:8e:94:db:7c:b1:6e:dc:c9:d2:
d4:5c:f7:43:5b:80:dc:b0:f0:e8:71:10:b7:8c:cf:
c8:84:50:49:f3:33:3c:c9:32:e5:64:40:1b:53:bb:
b9:17:65:36:55:e2:c8:82:c3:bb:65:25:f3:9a:64:
cf:b0:f3:1c:a2:b4:22:4c:95:5a:85:f5:94:59:a0:
32:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6F:C6:15:6A:19:D2:66:D4:55:30:2C:63:BC:19:91:02:BF:24:C4
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bG_GFWoZ0mbUVTAsY7wZkQK_JMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.0.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:d4:85:d1:c1:0c:eb:18:2b:23:52:2e:e1:7c:80:d4:2f:a6:
f8:63:a6:2e:4e:15:5d:7f:b5:c3:1e:ab:04:4f:b3:e7:50:61:
34:2c:1c:08:22:d5:36:40:ce:a4:46:08:7c:9e:6d:de:06:43:
f1:74:e7:5c:51:dd:63:26:97:98:2f:15:67:9a:23:4d:a2:28:
b5:79:b1:8e:22:08:0a:51:6d:4a:b4:a9:85:af:d4:04:86:28:
9b:67:e4:ea:7b:bf:73:c1:ba:21:62:e7:2c:e2:e4:d2:8c:13:
10:b5:af:af:86:ed:d6:3a:f8:d1:bc:f3:ec:29:06:4c:ef:7d:
a9:c7:95:aa:20:d0:5b:81:a1:af:81:f6:c4:3b:71:70:af:7f:
da:f4:5f:15:8b:52:67:52:70:52:2f:bd:b3:54:a3:38:44:fe:
1c:0e:bb:d1:ab:cf:7c:56:3f:52:24:b0:5d:54:18:f3:2c:82:
61:15:49:ff:94:09:49:bb:96:1f:13:14:bb:e0:ee:b8:03:dc:
76:57:43:a9:83:32:6e:6a:60:96:2a:de:51:55:67:b5:11:e3:
7b:5f:c5:f0:65:51:4c:46:7e:55:ef:90:35:04:79:40:9e:c0:
78:ca:d1:14:f5:d7:12:d6:f6:64:d9:b8:03:be:4e:74:be:41:
fb:66:a9:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 13:14:13 2024 by rpki-client on console-fra.rpki-client.org