Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/60zvjRsRmiVxdyAfPNQ7I7oLpAU.roa
File: 60zvjRsRmiVxdyAfPNQ7I7oLpAU.roa (raw, json)
Hash identifier: tK+IhK18AV00VtlYnU88a25uMSxfFE8u6F9kYA7W10w=
Subject key identifier: EB:4C:EF:8D:1B:11:9A:25:71:77:20:1F:3C:D4:3B:23:BA:0B:A4:05
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018682EF213D6A23FF8E50617743515C7010
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/60zvjRsRmiVxdyAfPNQ7I7oLpAU.roa
Signing time: Fri 24 Feb 2023 10:19:15 +0000
ROA not before: Fri 24 Feb 2023 10:19:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 87.248.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Jun 2023 11:03:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:ef:21:3d:6a:23:ff:8e:50:61:77:43:51:5c:70:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Feb 24 10:19:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb4cef8d1b119a257177201f3cd43b23ba0ba405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ed:07:fd:aa:f2:4f:98:66:79:fc:8a:f6:13:
90:90:95:b1:e5:c0:fa:1d:c7:10:77:b1:6c:ec:d2:
80:21:60:00:ed:74:7c:02:5a:1c:44:e4:13:8d:41:
79:e6:e1:55:be:57:84:51:2f:ef:96:c8:c2:4f:c9:
3e:4b:84:6c:ea:18:ba:e0:5b:7f:f2:ca:59:de:74:
da:f9:e2:04:f9:51:3e:fe:98:30:2c:cc:f1:63:8a:
d1:d4:80:71:55:4f:04:52:72:62:27:df:57:63:85:
7b:61:85:f6:81:0c:35:b9:e9:29:4c:5e:60:f7:35:
bd:d1:b1:d9:b9:54:8d:c7:e4:0d:75:10:d1:ff:a8:
24:ae:92:a6:57:84:14:cf:62:23:17:48:2a:54:cd:
c8:a2:ff:bd:dc:0e:ad:0a:9a:97:37:31:6f:fb:24:
13:7b:a0:43:37:4c:3d:9c:fd:fb:c9:3f:38:66:9f:
6a:ac:c6:b7:3e:7d:7d:70:d8:ac:20:c9:71:b7:de:
49:e9:c2:02:2a:58:40:77:cf:87:8c:47:00:4a:fc:
ce:29:c7:5b:8c:dd:14:54:f1:a8:58:3e:1f:fc:e0:
d9:91:b7:3a:36:08:81:e3:4f:4e:a6:e0:ab:d0:34:
92:b8:63:4d:de:6f:35:eb:4d:78:c9:20:39:2c:da:
4e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4C:EF:8D:1B:11:9A:25:71:77:20:1F:3C:D4:3B:23:BA:0B:A4:05
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/60zvjRsRmiVxdyAfPNQ7I7oLpAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.151.0/24
Signature Algorithm: sha256WithRSAEncryption
28:97:0b:0b:c0:ef:20:81:92:02:19:c2:59:81:c5:ab:26:97:
6b:f8:5f:3b:a6:e3:5b:e2:5e:48:0c:8d:7d:1c:86:1c:08:55:
aa:8b:2e:cc:84:a6:40:bd:7b:f4:cd:0e:37:02:3f:10:a2:d9:
c7:ac:da:c8:28:bc:a7:ea:96:34:c0:29:f1:93:25:b1:26:06:
e8:ad:92:a9:63:f1:00:b4:c9:17:07:ae:c8:1c:74:99:f8:d1:
f6:28:58:b5:bc:44:43:bd:ad:ce:c5:95:50:58:9e:42:92:2a:
0c:42:d7:88:27:5f:4e:a7:1f:4a:de:ea:de:95:5d:c3:a0:21:
ec:82:c7:58:74:d9:31:dc:6e:a1:58:5d:d0:01:93:e6:e6:f1:
85:3e:89:82:3c:7c:97:38:a8:90:53:5a:a0:87:0a:45:29:08:
dd:2e:4c:3f:65:01:c5:ef:a6:07:fe:e6:8d:1f:95:52:dc:98:
b8:2b:56:62:38:94:d9:c3:4b:5a:a0:2d:ef:cc:4b:cc:a2:2a:
7d:ae:68:5d:9a:c3:0f:b2:5b:da:45:6f:55:ca:55:e6:3e:62:
c8:3a:60:4f:de:3e:50:68:7c:6a:c1:87:36:17:74:a7:e2:eb:
6c:a5:ec:a4:ad:83:f8:55:c5:0f:ad:d0:00:52:d3:4e:83:a4:
34:c7:dc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org