Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/r2sKe6tbQSssnyUMAdeSdww7958.roa
File: r2sKe6tbQSssnyUMAdeSdww7958.roa (raw, json)
Hash identifier: XL3z6rIS+/mxijeYDv9cYAcSKWBJOIatbqWsFTrR6lI=
Subject key identifier: AF:6B:0A:7B:AB:5B:41:2B:2C:9F:25:0C:01:D7:92:77:0C:3B:F7:9F
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018B8F78202B13F72A7F09BD412ACE3FCE47
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/r2sKe6tbQSssnyUMAdeSdww7958.roa
Signing time: Thu 02 Nov 2023 09:58:16 +0000
ROA not before: Thu 02 Nov 2023 09:58:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 92.61.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:78:20:2b:13:f7:2a:7f:09:bd:41:2a:ce:3f:ce:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Nov 2 09:58:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af6b0a7bab5b412b2c9f250c01d792770c3bf79f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ef:db:21:9b:0d:cb:bc:a6:c9:d8:e3:3a:b5:
8a:7c:13:3c:45:a8:62:4b:09:28:bb:0c:af:56:39:
75:df:e3:e0:44:34:40:a1:d9:b0:23:66:1b:f4:ca:
b2:dd:cb:4d:98:b7:14:2e:b6:77:51:70:2b:bd:4a:
88:60:32:59:db:45:f2:16:26:51:75:f5:13:09:18:
38:ed:65:89:b6:1c:d9:c0:e1:63:f8:2b:cd:93:c3:
32:48:b4:46:68:54:8c:7a:7c:49:34:32:7d:ab:85:
e4:55:62:51:a3:96:6f:be:1c:80:a6:31:ec:c7:b6:
f9:93:7b:e0:38:24:88:be:8c:5d:35:af:04:f2:7b:
7b:35:55:3f:be:47:d2:fd:83:94:e1:5b:4d:78:6a:
ef:58:4e:8b:c5:80:8f:0a:ef:33:00:03:01:dd:9b:
13:67:98:f1:3e:03:c0:f0:97:fb:8d:51:84:84:49:
df:2a:f3:bd:ff:6d:06:6d:56:09:6e:75:67:ea:c9:
2b:8d:9a:1d:d1:2b:a3:ea:ce:61:bd:2d:6e:6b:e6:
ed:e3:ac:7a:09:8b:71:36:b5:d8:85:ac:91:f0:91:
1e:15:50:db:a0:ce:4d:80:07:58:78:e2:1b:0a:df:
64:72:c3:88:a9:6f:a1:82:6c:23:89:48:28:fb:2d:
16:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6B:0A:7B:AB:5B:41:2B:2C:9F:25:0C:01:D7:92:77:0C:3B:F7:9F
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/r2sKe6tbQSssnyUMAdeSdww7958.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.108.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b3:ae:68:4e:57:40:a3:d6:d1:95:a4:47:92:a8:d4:41:d7:
be:59:bf:16:92:9b:5a:49:b3:51:fe:29:8d:e1:0c:a2:c4:3d:
16:56:06:2f:35:93:59:24:f7:a7:4f:b8:db:14:9f:c2:8a:c9:
dd:06:46:9c:58:ca:1a:7a:74:24:fd:b8:58:aa:28:61:6a:40:
f2:35:4c:0a:38:96:53:99:91:1c:fe:ec:55:71:d1:4f:3d:b1:
5a:f0:24:fe:77:25:09:9d:fe:73:67:2d:ce:4d:7b:1e:48:19:
5e:fd:93:17:5f:85:b8:9f:43:49:18:73:f5:c4:3d:99:1d:d1:
d8:6e:19:7e:bb:7e:ee:99:15:42:e3:67:5b:14:df:32:90:af:
86:55:b0:12:bd:22:d3:0c:7a:39:a6:a8:a2:57:dc:91:96:2b:
f5:79:2f:35:e3:2c:b6:0b:2e:29:da:c7:f3:59:d3:59:9a:93:
4f:e0:43:94:45:bd:90:ad:91:7b:80:af:a4:70:cb:f3:1a:5f:
25:13:ea:2a:f8:58:aa:be:d1:c6:60:21:45:95:e8:7e:00:bd:
02:1b:40:63:17:98:c8:ce:82:d1:50:9e:d3:83:5e:46:15:dd:
27:58:b4:af:9b:b7:61:6d:e7:ab:81:e8:31:27:ca:0c:62:1b:
43:84:7d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org