Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/549a37-2c00-4b41-abf4-829a1cbe23f2/1/afCQqCSLqsoe0KAF3y_-e7ZxZIg.roa
File: afCQqCSLqsoe0KAF3y_-e7ZxZIg.roa (raw, json)
Hash identifier: 0hxZtIypV3IG6TOFlC0rZPPQaoXzhsGal3IfqsfgYVc=
Subject key identifier: 69:F0:90:A8:24:8B:AA:CA:1E:D0:A0:05:DF:2F:FE:7B:B6:71:64:88
Certificate issuer: /CN=6eeb10f0a4b91964541a5e19a9cb83cb7268950e
Certificate serial: 01856DCAD1F2EA76B05250FB2596658107C9
Authority key identifier: 6E:EB:10:F0:A4:B9:19:64:54:1A:5E:19:A9:CB:83:CB:72:68:95:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/busQ8KS5GWRUGl4ZqcuDy3JolQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/549a37-2c00-4b41-abf4-829a1cbe23f2/1/afCQqCSLqsoe0KAF3y_-e7ZxZIg.roa
Signing time: Sun 01 Jan 2023 14:44:46 +0000
ROA not before: Sun 01 Jan 2023 14:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12859
IP address blocks: 2.56.226.0/23 maxlen: 23
2.56.226.0/24 maxlen: 24
2.56.227.0/24 maxlen: 24
2a09:d240:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:d1:f2:ea:76:b0:52:50:fb:25:96:65:81:07:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eeb10f0a4b91964541a5e19a9cb83cb7268950e
Validity
Not Before: Jan 1 14:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69f090a8248baaca1ed0a005df2ffe7bb6716488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0f:03:1d:38:0c:2a:d4:25:ac:f5:03:e4:f8:
e8:6f:43:77:ea:7e:26:a2:19:c0:a8:bb:bf:e2:e1:
e9:45:ea:52:15:5d:b7:0a:cf:ad:95:8d:d5:aa:bf:
49:ed:ba:03:ec:83:f4:9f:80:41:a9:25:af:ab:76:
5c:1a:fa:67:8c:54:8c:e9:7d:e5:4c:bd:34:85:3c:
62:4e:01:a1:9c:0f:b6:37:cd:2e:72:8e:c8:7a:68:
65:69:e2:7a:1d:6b:35:0f:e6:7e:e5:b1:b0:ab:af:
23:8b:24:3e:1f:07:b4:0a:6e:3b:97:98:cb:5d:36:
4d:27:63:09:f2:f3:f1:52:fd:b0:fd:c0:0d:5e:91:
11:66:62:d0:0b:b1:bc:9c:ad:6f:51:18:9b:d6:fd:
90:2f:75:af:59:48:9a:cc:29:0e:1f:6e:22:d3:bf:
2e:58:bb:3a:fc:f3:22:de:19:ca:51:12:99:5e:54:
a4:e5:ec:74:a0:c8:c0:98:41:82:49:02:ca:18:d1:
dc:dc:51:3f:70:54:60:d8:49:31:e8:bc:ce:4d:48:
65:5c:06:70:75:f7:64:b6:62:77:91:b4:c2:1e:74:
99:03:a3:8d:5a:cd:fa:77:52:c6:74:76:1b:18:0e:
cc:e8:ca:4b:c0:ee:aa:2f:24:23:6a:65:ad:0d:af:
08:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F0:90:A8:24:8B:AA:CA:1E:D0:A0:05:DF:2F:FE:7B:B6:71:64:88
X509v3 Authority Key Identifier:
keyid:6E:EB:10:F0:A4:B9:19:64:54:1A:5E:19:A9:CB:83:CB:72:68:95:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/busQ8KS5GWRUGl4ZqcuDy3JolQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/549a37-2c00-4b41-abf4-829a1cbe23f2/1/afCQqCSLqsoe0KAF3y_-e7ZxZIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/549a37-2c00-4b41-abf4-829a1cbe23f2/1/busQ8KS5GWRUGl4ZqcuDy3JolQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.226.0/23
IPv6:
2a09:d240:1::/48
Signature Algorithm: sha256WithRSAEncryption
09:45:90:98:54:57:bd:37:0a:1e:61:57:f0:b6:b9:7e:43:5a:
98:87:df:69:c7:3c:53:63:05:87:68:e2:86:be:65:60:ed:7f:
3e:73:f0:11:db:21:87:28:2b:0a:86:8e:96:e6:11:82:e7:e0:
bb:37:00:41:02:7a:ab:36:de:3c:a3:c7:25:2f:89:58:15:75:
06:a9:f5:1d:33:96:86:42:87:cb:4c:8c:f0:f6:ed:20:73:8c:
09:43:70:e2:11:a9:fa:16:73:c7:a6:b7:81:4b:a6:46:4d:6d:
a3:f2:0e:a1:4a:74:39:29:7c:72:c7:5f:60:de:5b:76:ab:37:
99:87:05:3f:f0:9d:a6:67:50:a3:68:8a:82:2d:9c:31:54:28:
65:40:65:df:2d:4f:35:08:e8:60:de:db:6b:21:0f:d9:ee:b9:
79:a7:7b:7b:59:9c:19:07:12:97:1f:0e:10:46:3e:eb:8f:aa:
41:65:dd:6c:5f:41:b6:36:4c:82:ad:ef:1d:51:79:8e:5a:54:
cd:bf:58:c4:b3:12:e4:40:f1:a7:1f:a2:7f:e3:8c:ad:ad:fb:
26:1a:6c:a1:fe:93:5b:16:72:b5:90:87:0c:98:05:1e:9d:52:
75:0d:5d:0c:db:ce:da:95:cc:5d:8c:f6:88:d4:41:79:67:23:
97:c6:79:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:45 2024 by rpki-client on console-fra.rpki-client.org