Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Nj6AaCkhi8vk4YxYISzK6i7H_EQ.roa
File: Nj6AaCkhi8vk4YxYISzK6i7H_EQ.roa (raw, json)
Hash identifier: vqMprfJTiZ5rXKS455s4m1Q1tXLftO1Rz/3d25YJwUk=
Subject key identifier: 36:3E:80:68:29:21:8B:CB:E4:E1:8C:58:21:2C:CA:EA:2E:C7:FC:44
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0189543A909A9308ED3E1A24C48780E4DF69
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Nj6AaCkhi8vk4YxYISzK6i7H_EQ.roa
Signing time: Fri 14 Jul 2023 11:47:51 +0000
ROA not before: Fri 14 Jul 2023 11:47:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43641
IP address blocks: 2.58.169.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:3a:90:9a:93:08:ed:3e:1a:24:c4:87:80:e4:df:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 14 11:47:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=363e806829218bcbe4e18c58212ccaea2ec7fc44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ac:56:fa:17:49:a0:0b:86:37:34:56:b0:c9:
0b:68:2e:e6:bd:ce:bd:a5:70:32:4d:fb:79:5d:62:
24:a9:3a:86:2a:ba:4e:f3:26:60:f3:83:65:71:95:
dd:6a:48:ac:33:73:42:1d:ee:9f:0a:4d:0f:34:f3:
28:c8:d5:ca:78:61:5f:18:f0:1b:86:bf:fe:f8:12:
db:18:28:77:6a:03:47:f6:73:aa:13:75:0c:08:f8:
08:37:fc:c4:32:31:aa:f1:47:d7:48:c3:e8:6a:f2:
92:17:1d:26:67:4e:5f:75:e7:46:c4:9f:a4:7e:44:
f0:2e:11:81:04:2e:fa:88:22:cc:62:e9:fa:c4:8e:
ac:b3:d3:d8:e4:60:af:cf:44:e4:c9:18:5e:19:99:
25:94:17:6b:98:c9:d1:f3:42:cf:56:c2:b0:1e:16:
c0:4f:20:0f:ee:8f:03:1a:c1:c6:55:6e:e8:27:f2:
c1:c2:50:04:06:92:8e:5a:a0:6f:14:63:40:27:32:
84:40:d0:28:03:7a:14:73:5a:41:70:3a:20:43:d8:
98:0e:54:7c:06:11:29:84:1c:ac:1a:48:16:33:43:
06:15:e4:fe:96:b4:1d:28:da:a4:0d:0c:a3:37:33:
71:71:5e:54:ef:9e:01:a8:63:f6:f1:be:0d:35:e9:
c9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:3E:80:68:29:21:8B:CB:E4:E1:8C:58:21:2C:CA:EA:2E:C7:FC:44
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/Nj6AaCkhi8vk4YxYISzK6i7H_EQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.169.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:69:05:2d:bd:e5:e3:69:4d:d0:61:e5:80:77:9c:c8:24:12:
3c:a4:e1:1a:45:f7:23:b7:0d:c8:9e:5a:9a:49:60:69:a9:16:
fa:98:26:57:f4:4f:03:85:9d:bb:54:87:e8:28:e3:84:91:c7:
59:6e:15:5e:6a:ff:80:70:d6:57:4e:ff:1b:43:05:1f:4b:2d:
30:b9:c3:41:e6:24:43:c3:bd:30:89:23:0e:88:07:c8:28:de:
bb:7b:d2:ff:09:74:ab:50:b0:c0:b9:e6:33:ff:7d:38:75:64:
eb:3e:ca:c8:7f:55:ac:41:98:65:5e:55:8b:f1:87:9a:c1:d1:
77:98:03:07:02:25:bd:a7:b8:80:9d:43:8c:f4:05:c3:38:74:
d7:f8:d7:d9:7a:d0:bb:6d:5a:48:b7:a7:ec:44:b7:7e:a2:8b:
2a:05:fd:00:1f:63:55:03:29:ef:20:50:74:e3:2d:22:b3:37:
c0:b6:b5:ae:b9:39:83:a6:9c:20:9f:a3:56:8a:55:37:ef:c6:
1c:87:36:55:fc:b1:40:52:c1:ed:9d:55:3e:d0:c5:cf:80:0e:
bd:20:89:04:97:f3:b6:49:d3:1b:b5:8c:d2:c1:10:49:7a:ef:
ca:8d:07:d4:53:e0:09:92:c3:f9:85:13:f4:b2:0c:f3:83:4c:
70:bf:f0:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlUOpCakwjtPhokxIeA5N9pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwNzE0MTE0NzUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjNlODA2ODI5MjE4YmNiZTRlMThjNTgyMTJjY2FlYTJlYzdmYzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6xW+hdJoAuGNzRWsMkLaC7mvc69
pXAyTft5XWIkqTqGKrpO8yZg84NlcZXdakisM3NCHe6fCk0PNPMoyNXKeGFfGPAb
hr/++BLbGCh3agNH9nOqE3UMCPgIN/zEMjGq8UfXSMPoavKSFx0mZ05fdedGxJ+k
fkTwLhGBBC76iCLMYun6xI6ss9PY5GCvz0TkyRheGZkllBdrmMnR80LPVsKwHhbA
TyAP7o8DGsHGVW7oJ/LBwlAEBpKOWqBvFGNAJzKEQNAoA3oUc1pBcDogQ9iYDlR8
BhEphBysGkgWM0MGFeT+lrQdKNqkDQyjNzNxcV5U754BqGP28b4NNenJ1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDY+gGgpIYvL5OGMWCEsyuoux/xEMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvTmo2QWFDa2hpOHZrNFl4WUlTeks2aTdIX0VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjqpMA0G
CSqGSIb3DQEBCwUAA4IBAQCxaQUtveXjaU3QYeWAd5zIJBI8pOEaRfcjtw3Inlqa
SWBpqRb6mCZX9E8DhZ27VIfoKOOEkcdZbhVeav+AcNZXTv8bQwUfSy0wucNB5iRD
w70wiSMOiAfIKN67e9L/CXSrULDAueYz/304dWTrPsrIf1WsQZhlXlWL8YeawdF3
mAMHAiW9p7iAnUOM9AXDOHTX+NfZetC7bVpIt6fsRLd+oosqBf0AH2NVAynvIFB0
4y0iszfAtrWuuTmDppwgn6NWilU378YchzZV/LFAUsHtnVU+0MXPgA69IIkEl/O2
SdMbtYzSwRBJeu/KjQfUU+AJksP5hRP0sgzzg0xwv/CT
Generated at Tue Jul 25 16:29:29 2023 by rpki-client on console-fra.rpki-client.org