Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/Cae58TgP8ly5q65SmiJ9dkE4ngA.roa
File: Cae58TgP8ly5q65SmiJ9dkE4ngA.roa (raw, json)
Hash identifier: L/0tTi63+Um+PbkjDVv0ZeDevMrHGG4cZDXhNxQT4Rw=
Subject key identifier: 09:A7:B9:F1:38:0F:F2:5C:B9:AB:AE:52:9A:22:7D:76:41:38:9E:00
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018CFE6B195611450094606DA04A52016624
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/Cae58TgP8ly5q65SmiJ9dkE4ngA.roa
Signing time: Fri 12 Jan 2024 16:04:40 +0000
ROA not before: Fri 12 Jan 2024 16:04:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 128.65.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Feb 2024 15:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:fe:6b:19:56:11:45:00:94:60:6d:a0:4a:52:01:66:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 12 16:04:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09a7b9f1380ff25cb9abae529a227d7641389e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f2:7d:12:6c:24:d7:e1:c1:f0:68:3f:c4:77:
9b:5e:94:33:62:f6:63:ac:af:22:fc:ce:cc:5c:b5:
17:84:2b:30:10:73:e9:35:92:c8:ce:76:6e:47:6a:
27:60:05:8d:64:d6:54:a3:c9:b5:67:ab:f7:6c:00:
34:57:cb:f3:c9:70:98:2c:19:35:8d:4e:9f:a7:50:
8c:93:1e:92:05:4b:56:80:08:2e:37:5b:7b:ca:55:
76:66:2c:9a:12:be:a0:82:cd:30:96:90:33:c2:da:
cd:74:b1:a2:bc:14:d8:99:bc:b5:8d:a4:ad:58:97:
0d:ff:c7:d1:d3:ea:b1:b8:58:14:ba:f6:51:e0:1c:
d7:f3:1a:7a:fb:ee:40:3c:b4:61:7a:24:ba:79:95:
f9:6f:e4:ca:51:47:dd:38:e1:2c:7e:ed:fd:62:27:
c0:2e:b5:d9:80:b5:79:3d:bd:c3:43:44:c8:67:5c:
72:e4:f4:82:c8:f7:1c:9f:1e:75:c3:a2:a9:c7:91:
65:a2:f4:9d:57:49:8a:ef:50:10:2c:57:1b:5a:6b:
23:f5:23:01:24:b8:78:f8:b5:fa:58:6f:92:2f:84:
24:d6:0a:da:f6:0e:16:7f:21:c3:04:d8:96:42:97:
86:57:65:87:8a:4f:5f:07:46:1d:69:5b:e9:72:49:
90:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A7:B9:F1:38:0F:F2:5C:B9:AB:AE:52:9A:22:7D:76:41:38:9E:00
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/Cae58TgP8ly5q65SmiJ9dkE4ngA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.65.166.0/24
Signature Algorithm: sha256WithRSAEncryption
33:79:13:37:4b:de:9f:9e:0f:51:4e:c5:bc:7d:91:59:64:27:
2e:00:cd:0f:79:e3:4d:b6:8f:08:64:29:52:20:c0:ed:e3:de:
f5:76:8f:2e:9c:7b:90:25:87:d5:bb:97:9c:b3:aa:b4:89:80:
d7:ca:b5:80:63:83:36:b7:29:3a:a4:46:47:45:bd:32:5d:f3:
92:2d:0b:d6:62:e1:10:3c:d7:73:af:72:3c:19:a6:aa:f3:47:
01:17:43:e4:06:bc:40:a4:0f:6d:4a:7e:fa:da:41:3c:be:74:
cf:48:d6:a1:df:32:34:77:c2:dc:1b:72:ab:27:84:90:96:0a:
b4:b0:af:2d:d6:b7:6a:02:7f:98:f2:90:f0:e2:27:4a:af:11:
a2:e2:3c:d5:a1:44:7b:f5:7e:3d:d3:2c:24:e5:45:a9:54:89:
16:dd:1c:7f:43:2f:71:32:63:91:80:32:74:57:af:d3:b7:fc:
36:76:6b:30:b1:d0:39:00:42:c8:05:dc:b7:34:30:fa:d7:3f:
93:fc:e8:82:d3:b3:73:3f:81:57:e0:30:bc:c0:01:56:f1:4b:
03:cc:f1:21:b2:47:ef:93:a7:29:56:72:12:d2:c6:2b:40:f3:
9c:b3:7b:1f:c9:0c:73:7c:82:0d:ee:d4:1f:07:27:66:fe:65:
ff:a0:c2:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org