Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/CrbKwDOvGgLKOcUMVOdtBTCU4HY.roa
File: CrbKwDOvGgLKOcUMVOdtBTCU4HY.roa (raw, json)
Hash identifier: ifJAmeXNZCfHH4k6q2nR0zurpo5jh+Qe2uzazbYsFdI=
Subject key identifier: 0A:B6:CA:C0:33:AF:1A:02:CA:39:C5:0C:54:E7:6D:05:30:94:E0:76
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7A4D5B6B74A17961C0C811B324274
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/CrbKwDOvGgLKOcUMVOdtBTCU4HY.roa
Signing time: Mon 02 Jan 2023 09:54:44 +0000
ROA not before: Mon 02 Jan 2023 09:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49944
IP address blocks: 2.58.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 22 May 2023 08:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:a4:d5:b6:b7:4a:17:96:1c:0c:81:1b:32:42:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ab6cac033af1a02ca39c50c54e76d053094e076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a2:17:d8:05:94:1c:00:42:e0:60:82:c5:e2:
b1:4f:29:39:1a:b8:14:3a:b0:02:25:d3:27:ee:6e:
f0:7c:52:a9:21:83:80:02:e4:ae:bf:a6:ae:29:38:
b1:56:6c:80:67:b9:bd:cc:a7:6d:fc:fe:40:a7:cf:
66:d0:16:bb:a8:54:1a:a2:3d:2a:e6:e9:fb:b8:2b:
ec:02:63:56:f7:29:c8:f1:65:06:94:3b:ee:21:95:
ac:19:e7:e6:9b:62:55:04:c7:7c:46:67:e3:7d:a0:
bb:db:43:59:28:ce:68:8e:12:d4:13:83:29:60:fe:
9b:be:ab:56:8c:dc:5e:c7:c7:e9:32:61:76:21:dc:
0f:f5:c2:cd:e8:96:04:8d:5c:e7:45:95:63:b0:a5:
f9:89:87:16:bf:25:35:5b:3c:37:af:b2:cc:09:19:
3d:94:d6:3c:01:8e:cd:0c:ac:73:9b:32:8c:84:52:
dd:6e:f3:3e:59:fc:95:54:1f:cb:90:16:63:7a:0c:
ff:63:9d:ae:45:c3:b9:7e:f2:78:cc:03:c9:26:68:
9c:5f:0a:e6:0f:0e:17:0f:fb:67:86:ba:db:a4:3a:
83:e9:8c:e4:6b:a7:b1:ed:08:a6:49:03:31:6d:4d:
3a:33:7e:0f:2f:4a:35:0d:26:4c:76:a7:9a:d3:e9:
07:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B6:CA:C0:33:AF:1A:02:CA:39:C5:0C:54:E7:6D:05:30:94:E0:76
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/CrbKwDOvGgLKOcUMVOdtBTCU4HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.168.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:19:03:3b:3d:47:c4:40:bc:a2:4e:04:22:4d:41:3c:19:50:
15:58:2a:fe:42:f5:15:52:49:9c:04:6f:b1:e6:aa:98:81:f0:
72:e7:68:a8:5e:7c:13:b2:90:e4:62:f7:27:97:41:67:3c:2d:
cb:dd:1b:68:e2:ac:ac:60:47:35:f2:be:b4:72:30:2c:a2:36:
34:ec:1e:2a:83:f2:76:03:6f:5a:93:f4:a4:01:80:69:68:31:
ee:fa:e7:c5:76:94:dd:b1:5b:87:85:ff:b0:5b:37:45:3a:34:
0b:2f:71:fc:6f:12:30:11:51:ab:69:66:1f:2c:ac:86:0d:c3:
7e:6e:4a:8a:7b:3a:19:be:bb:5b:c2:51:a0:de:f7:8d:27:a4:
d5:d0:90:b2:c6:60:27:3a:58:23:4b:34:44:e6:eb:15:f7:ff:
d6:d6:ca:1c:a3:62:ef:3c:e1:06:e7:d4:dd:fd:6f:f0:bb:61:
0f:6e:fd:45:a1:af:1c:89:4c:c5:78:78:49:82:75:31:68:e4:
ba:cb:9b:26:e0:a0:a8:46:68:ff:54:42:07:5c:40:55:5d:5b:
f0:06:52:6f:e1:49:38:82:69:5d:d4:19:41:de:c7:2d:82:63:
70:e1:01:ae:a5:42:80:44:90:88:80:54:25:ee:d8:be:04:f7:
cc:d1:46:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:55 2024 by rpki-client on console-ams.rpki-client.org