Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/208eGewZGr7Gc3snuRvqb56yfkI.roa
File: 208eGewZGr7Gc3snuRvqb56yfkI.roa (raw, json)
Hash identifier: zHlofNLp2rY6v7F5SdaJNvOflEZBi9x99iywo8Mg+gE=
Subject key identifier: DB:4F:1E:19:EC:19:1A:BE:C6:73:7B:27:B9:1B:EA:6F:9E:B2:7E:42
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 01880AE12FDF9E11D16CEA03F966B96569B2
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/208eGewZGr7Gc3snuRvqb56yfkI.roa
Signing time: Thu 11 May 2023 12:55:09 +0000
ROA not before: Thu 11 May 2023 12:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41378
IP address blocks: 2.58.64.0/23 maxlen: 23
2.58.64.0/24 maxlen: 24
2.58.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:e1:2f:df:9e:11:d1:6c:ea:03:f9:66:b9:65:69:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: May 11 12:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db4f1e19ec191abec6737b27b91bea6f9eb27e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c0:dd:df:5a:d3:62:6c:de:bb:c7:f6:52:f9:
a2:5a:0f:fd:67:22:1b:ae:95:68:4a:ad:3f:f5:a9:
b8:08:11:3f:d9:0d:10:3e:20:4a:24:45:e2:f2:10:
f0:1c:57:f0:1f:e5:18:61:c2:85:3f:fa:f6:2b:84:
dc:a5:ee:65:7a:a8:f4:88:d2:eb:d9:5a:f3:c9:40:
ad:cd:86:dc:84:e6:17:04:91:47:b3:24:75:cb:5f:
c6:3e:05:e9:0f:3a:c7:25:8e:09:30:b4:3c:f2:41:
2e:6e:b9:af:8b:8e:6d:06:cb:63:1f:be:3a:94:20:
1c:d3:91:4b:cc:53:ad:64:7f:33:b9:01:ec:ce:ec:
48:ee:68:c7:48:99:0a:e7:7f:cf:9f:05:40:7f:8b:
b4:93:75:8a:a6:73:3d:cf:e3:e0:e2:84:25:c2:d5:
94:6f:d3:55:fd:a1:67:8f:06:e6:b8:0a:35:be:cb:
0c:a2:a7:58:b5:78:19:7e:11:c4:df:af:38:80:6c:
15:c3:86:38:b0:0e:7a:80:d7:f7:7c:93:da:3b:90:
21:a2:13:9c:c3:c9:a6:00:38:83:2a:a8:9f:fc:17:
81:44:d1:6a:53:2a:db:c3:8f:4e:33:0e:30:93:15:
5d:0b:53:9e:30:af:24:98:9c:1d:d7:57:49:03:63:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:4F:1E:19:EC:19:1A:BE:C6:73:7B:27:B9:1B:EA:6F:9E:B2:7E:42
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/208eGewZGr7Gc3snuRvqb56yfkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.64.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:b3:8a:05:64:3b:79:af:df:f0:b4:50:32:d0:74:d3:86:47:
b5:36:59:5c:62:19:6a:1a:5b:7d:37:5b:81:fc:0b:21:40:cb:
24:9b:7c:eb:c5:f1:1f:22:01:7c:9f:ba:6d:0b:e3:ac:57:26:
6e:bc:95:3d:bf:12:d4:62:a0:e0:42:4a:ca:c6:29:23:71:20:
bd:55:94:56:c2:b0:89:72:74:2d:a7:11:3b:4c:ca:ae:1f:2c:
3b:50:f8:4e:f5:40:00:ce:e9:c4:6e:d5:5f:b7:78:e1:0b:76:
38:fb:e5:cf:81:56:03:86:69:84:5e:7e:d2:9c:8e:24:c6:e6:
67:c3:4c:0f:ff:e8:08:fd:37:50:eb:54:d9:ec:89:5f:0c:ca:
91:36:a9:a9:28:33:6d:2c:59:43:0d:40:d7:24:bd:b4:e8:ac:
c6:d1:e9:23:f2:da:db:23:80:2d:fd:e9:f4:1f:fa:e3:1b:84:
28:ac:f6:fe:bb:20:75:32:b1:40:bd:ce:01:e9:52:f9:4f:68:
10:57:be:ae:1f:f5:c5:11:ea:d0:b8:43:79:13:bc:9a:23:02:
68:1d:d7:08:57:3c:a0:d5:9a:25:51:7d:45:8f:73:31:ea:3d:
98:dc:2c:8f:51:4d:ab:96:de:52:c4:e6:36:ee:af:a5:64:a2:
91:ab:59:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:29 2023 by rpki-client on console-fra.rpki-client.org