Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/p2GuNN7ZZiq4dJ5Pb3NUNutXkRQ.roa
File: p2GuNN7ZZiq4dJ5Pb3NUNutXkRQ.roa (raw, json)
Hash identifier: EVBAgneY+x5DJlFj2rDyOdXDI0bZfCFSm8eVInacuRM=
Subject key identifier: A7:61:AE:34:DE:D9:66:2A:B8:74:9E:4F:6F:73:54:36:EB:57:91:14
Certificate issuer: /CN=95b81f4e45d711da0c148dc2baad1504ddbb427b
Certificate serial: 01856C25DD4493ECAF9D39362D2263D099B6
Authority key identifier: 95:B8:1F:4E:45:D7:11:DA:0C:14:8D:C2:BA:AD:15:04:DD:BB:42:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbgfTkXXEdoMFI3Cuq0VBN27Qns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/p2GuNN7ZZiq4dJ5Pb3NUNutXkRQ.roa
Signing time: Sun 01 Jan 2023 07:04:58 +0000
ROA not before: Sun 01 Jan 2023 07:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209189
IP address blocks: 2.57.188.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:dd:44:93:ec:af:9d:39:36:2d:22:63:d0:99:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b81f4e45d711da0c148dc2baad1504ddbb427b
Validity
Not Before: Jan 1 07:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a761ae34ded9662ab8749e4f6f735436eb579114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b3:a2:c2:f3:67:66:22:4e:39:ad:36:bb:0c:
72:bd:f7:60:33:cf:76:59:a9:34:b5:c0:7d:23:57:
49:9c:d9:d2:c7:c2:72:93:ab:a4:9d:cc:17:d8:db:
a8:54:b9:ff:51:e4:13:a8:bc:4c:51:97:2e:12:75:
38:82:bf:28:78:df:b5:58:ce:62:e3:44:f1:10:f1:
05:d5:e3:78:64:e0:e1:4c:06:56:26:ae:2e:1b:a3:
c3:f8:a1:93:30:09:00:fd:1b:d6:28:de:f4:f7:d3:
e2:d5:51:71:64:12:c7:c5:c8:74:34:93:20:f5:ad:
40:34:51:3c:41:30:cb:e4:cb:63:cf:ba:f5:57:72:
ce:8a:ab:6b:d3:6f:06:b0:23:1e:08:4a:da:aa:05:
cb:51:48:3e:e8:da:59:93:aa:76:7a:08:47:69:75:
2d:88:b7:f0:0c:f5:be:0d:22:1a:97:04:e8:1b:73:
3a:9b:8d:5f:74:98:8e:b7:ab:10:04:dc:dc:3f:62:
fc:66:07:44:a1:21:72:66:c9:41:28:2b:94:1f:d7:
89:7b:ce:14:25:0b:73:a6:ab:db:12:d6:c0:9f:95:
fb:d4:4f:cc:79:8b:93:63:8f:20:ee:e3:cc:86:72:
b1:5a:e6:ff:b1:bb:38:bf:f3:c7:5c:65:97:13:bd:
c2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:61:AE:34:DE:D9:66:2A:B8:74:9E:4F:6F:73:54:36:EB:57:91:14
X509v3 Authority Key Identifier:
keyid:95:B8:1F:4E:45:D7:11:DA:0C:14:8D:C2:BA:AD:15:04:DD:BB:42:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbgfTkXXEdoMFI3Cuq0VBN27Qns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/p2GuNN7ZZiq4dJ5Pb3NUNutXkRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/0aab78-66de-444c-a843-0b3cb4c6b79a/1/lbgfTkXXEdoMFI3Cuq0VBN27Qns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.188.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:39:0e:06:d1:e2:f5:f2:ab:91:ac:66:48:97:6e:ba:a7:07:
4c:1b:36:8d:65:e2:18:20:12:e2:85:d3:65:11:5a:9d:23:61:
61:e2:00:f3:49:4c:62:6e:7a:8f:cc:a3:58:92:6d:ad:fa:8c:
c8:f2:3e:5f:70:44:31:94:43:37:82:92:37:fe:34:ad:03:df:
e9:f8:2b:97:08:01:3c:60:84:ee:ae:38:21:2f:47:54:84:38:
e6:5c:81:3d:cc:77:6f:f6:ed:51:d5:5b:0d:3f:f0:98:22:4c:
a0:1e:44:42:8d:eb:9c:9c:c7:46:7a:99:e4:6a:54:d8:af:d7:
58:4d:82:49:4a:ed:1c:7e:04:be:b7:5d:09:53:42:f9:a0:4c:
75:4e:a3:da:53:be:3d:f0:ea:bd:cf:5c:00:bc:33:dc:c4:e1:
1f:a4:f6:1a:c2:a7:a4:6b:c0:09:68:30:48:52:4b:22:88:2c:
d9:2a:42:07:9b:04:77:9f:a2:94:09:db:26:2d:e8:5c:fd:a0:
93:17:b2:19:72:f9:b4:41:7b:42:96:37:02:80:49:65:70:a3:
6e:69:87:d3:1b:65:4f:6e:7e:28:51:95:29:4a:d6:96:02:bb:
6c:64:0c:cb:5a:96:b8:72:c2:b2:38:00:0d:10:8d:0f:7a:70:
ec:8b:9a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:10 2024 by rpki-client on console-ams.rpki-client.org