Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa
File: Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa (raw, json)
Hash identifier: z83n+YNTqUt5hReddr2tT+ntIWGvtZCrvvywOLvkVyo=
Subject key identifier: 0E:5E:A0:F4:D2:D5:27:D4:62:4C:24:8E:D7:D7:53:17:0C:AE:19:D3
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018A03752A01FC1F093BE300D8523BE5CB69
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa
Signing time: Thu 17 Aug 2023 12:25:24 +0000
ROA not before: Thu 17 Aug 2023 12:25:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 265561
IP address blocks: 201.77.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:03:75:2a:01:fc:1f:09:3b:e3:00:d8:52:3b:e5:cb:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 17 12:25:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e5ea0f4d2d527d4624c248ed7d753170cae19d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d6:e8:a3:30:c7:0d:47:f9:d8:ac:6c:a7:4a:
fa:fb:32:a9:ed:fc:dc:b2:62:26:99:9d:34:c6:a1:
d0:e5:91:81:af:36:98:b1:30:e4:0e:1d:6c:59:65:
d1:4a:81:75:91:94:44:fe:8a:5d:97:f7:38:28:91:
f4:5b:d4:80:03:e5:f9:fb:f0:c5:84:1c:95:4d:95:
77:6e:b8:e5:9a:26:68:e1:ef:2e:61:4e:2f:d1:35:
f5:56:fc:fe:fb:98:80:c3:fc:eb:7f:23:4c:35:2a:
cf:2a:98:e8:18:e6:31:8f:6e:18:a0:d1:ba:85:9d:
f1:c6:2a:b1:3f:b9:8e:a3:45:b7:bd:b4:96:57:a2:
20:8a:6c:a3:99:43:b0:bc:bf:3b:b3:35:92:41:10:
9c:84:21:89:c2:04:e2:06:3d:cf:7c:6b:cc:06:b4:
bf:fc:99:a0:1c:f6:96:89:48:1e:cd:b5:49:e6:eb:
0b:79:9f:64:91:e8:8d:44:cb:55:06:2a:ba:d2:3b:
b7:90:10:fe:1f:ca:ee:10:e0:74:24:af:96:ef:34:
ac:6f:2f:1b:0b:ff:0b:5f:aa:a4:da:51:94:c5:b2:
2d:ed:1e:ea:3e:0b:77:b0:c6:f6:71:db:5e:36:df:
10:5f:47:ea:db:23:3b:c3:8c:d2:61:23:e3:06:23:
4b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5E:A0:F4:D2:D5:27:D4:62:4C:24:8E:D7:D7:53:17:0C:AE:19:D3
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.77.59.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:fc:73:aa:10:36:1e:08:f3:04:77:dc:45:1f:44:32:d8:e6:
88:df:02:f1:e7:90:4f:56:54:ea:2f:0a:2f:9d:6a:fc:67:87:
29:73:f3:b2:d9:c7:ea:03:a9:98:20:30:27:68:74:05:ac:94:
68:d0:b2:35:0d:0d:87:fe:8f:0e:4d:ff:3d:df:64:16:5f:44:
30:b2:66:83:9b:f1:fa:9d:ce:1d:3a:3a:2c:9d:f9:b0:ce:97:
77:9e:c2:d2:a1:43:e6:84:6e:7f:b5:ff:b7:df:0e:3e:8c:a4:
01:f7:05:2b:64:71:03:99:19:29:02:06:bf:05:7d:56:03:c9:
83:92:da:a7:c8:61:a0:ec:65:a8:ff:ba:db:02:17:c8:ca:f8:
a0:58:7d:88:c5:ba:ad:23:6d:23:01:ec:1e:60:18:d3:d5:3e:
0f:4c:68:8d:10:6a:b5:54:db:b9:8a:0b:cf:ed:3a:45:4c:8a:
13:85:96:b1:c3:c2:00:73:75:64:c1:d6:f9:62:0f:fe:fa:b1:
4f:f8:02:6f:a8:4d:9e:a1:d9:03:6a:96:15:df:e2:26:e0:64:
61:35:3d:21:e6:02:50:ac:11:45:ac:3a:8c:36:2c:74:c1:4a:
26:22:55:22:78:52:5f:ae:92:b6:00:1e:a5:15:8b:2e:b9:50:
13:dc:9b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:08 2024 by rpki-client on console-ams.rpki-client.org