Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/5hUdNmbKFp0mC5mhMrtO5W2rVbI.roa
File: 5hUdNmbKFp0mC5mhMrtO5W2rVbI.roa (raw, json)
Hash identifier: CIJr6ASj7kD4cTMHH8DGkalw1YcqXrVBIj72yPDeZm8=
Subject key identifier: E6:15:1D:36:66:CA:16:9D:26:0B:99:A1:32:BB:4E:E5:6D:AB:55:B2
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 01859BAB18073E7CAED647A9F3E9635A23BB
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/5hUdNmbKFp0mC5mhMrtO5W2rVbI.roa
Signing time: Tue 10 Jan 2023 12:32:39 +0000
ROA not before: Tue 10 Jan 2023 12:32:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 2.58.54.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:ab:18:07:3e:7c:ae:d6:47:a9:f3:e9:63:5a:23:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 10 12:32:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6151d3666ca169d260b99a132bb4ee56dab55b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:34:7c:03:c2:f8:2e:fc:1e:af:f5:07:47:f3:
9d:af:89:83:33:0b:96:53:c1:29:7e:a0:e6:f5:ea:
6a:a6:64:30:7a:f3:47:69:b1:3e:a9:fb:a0:dd:27:
28:08:1a:7c:41:3c:9f:3d:a1:3c:2a:2b:a9:17:89:
e0:11:f8:54:9b:3c:40:4f:2b:eb:88:e7:48:bc:1a:
db:cb:5b:39:a1:33:7f:87:27:8a:9c:08:a7:43:d0:
19:50:eb:89:c3:1f:91:25:6c:c4:6e:0f:19:6e:67:
8f:52:40:8e:89:5a:b2:ac:e0:6e:6b:1b:d9:f8:11:
70:a9:ed:6d:4b:38:72:63:81:4e:1a:ee:7c:38:57:
0a:93:75:bf:3d:22:b8:f9:8d:3e:1d:2a:fd:ed:18:
64:a8:cb:c0:ce:75:dd:60:7b:7c:71:bb:23:84:2f:
eb:b0:fb:e8:64:be:55:8a:78:f3:9e:b1:14:42:e9:
9c:de:d1:fa:08:f9:c2:f6:f2:0d:33:63:b3:44:e0:
e2:9b:21:18:10:6d:97:24:1e:12:c6:8d:7d:16:4c:
80:23:3a:01:fd:e4:cb:33:9b:c2:58:92:9d:44:e1:
12:e0:7f:ae:93:3a:56:eb:53:47:ea:3d:1e:97:1c:
3b:c9:5b:cb:5c:ba:a4:48:60:83:cf:31:27:16:43:
9b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:15:1D:36:66:CA:16:9D:26:0B:99:A1:32:BB:4E:E5:6D:AB:55:B2
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/5hUdNmbKFp0mC5mhMrtO5W2rVbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.54.0/24
Signature Algorithm: sha256WithRSAEncryption
69:42:aa:6d:a1:ce:16:eb:02:0e:19:a4:3d:ab:49:cc:f8:c2:
4c:85:2c:49:41:ea:52:28:d1:d5:75:5c:15:b3:75:c2:d6:60:
86:65:83:f7:65:9b:a9:8c:05:12:61:c1:79:ae:ea:bb:23:d4:
cb:51:1b:75:8c:88:38:cf:65:8d:6c:7d:86:67:7e:0e:26:3b:
1f:5a:78:5e:9c:a7:68:ef:26:41:09:50:4a:57:05:66:58:92:
3d:00:8f:52:b5:d5:fd:49:fb:ca:ac:86:38:fd:2c:a9:0b:4f:
45:fc:07:7c:93:f8:26:6b:d1:67:19:f0:ff:70:c3:cc:a2:b3:
5c:d1:cb:99:39:57:c6:4f:31:b6:bc:0c:31:0d:1f:e8:1c:ca:
e1:38:90:34:48:bd:78:32:e2:18:9a:6a:a5:79:68:e5:82:89:
f5:5a:27:fb:36:34:b3:d6:cd:8a:ca:46:14:73:99:ad:68:ad:
51:7c:32:0c:27:b5:ee:46:d3:87:b0:87:63:1d:82:3b:96:14:
d0:d9:27:c9:5e:7b:f7:c1:25:28:30:62:c1:01:b5:35:f4:71:
bd:35:60:ac:eb:e6:7a:3a:49:d3:cb:b7:ed:74:23:0e:c0:8c:
44:a4:70:b4:de:ec:61:0e:88:fb:eb:08:83:58:cd:8d:cd:81:
91:58:d2:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org