Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/05Rs0nmx-c12zKzdEemGbYcsE2Y.roa
File: 05Rs0nmx-c12zKzdEemGbYcsE2Y.roa (raw, json)
Hash identifier: hUF60jcsTD/l6/HX871up95itsekpSWhzyIyTrnqhg4=
Subject key identifier: D3:94:6C:D2:79:B1:F9:CD:76:CC:AC:DD:11:E9:86:6D:87:2C:13:66
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018708C64F5F894D4430FBBE660608CE6E2A
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/05Rs0nmx-c12zKzdEemGbYcsE2Y.roa
Signing time: Wed 22 Mar 2023 10:03:46 +0000
ROA not before: Wed 22 Mar 2023 10:03:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 64.137.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 09:57:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:c6:4f:5f:89:4d:44:30:fb:be:66:06:08:ce:6e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Mar 22 10:03:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3946cd279b1f9cd76ccacdd11e9866d872c1366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ed:b7:48:68:97:a6:fc:a7:77:43:7c:03:d7:
04:46:6a:43:ad:f5:f6:e4:94:ef:10:3f:c1:81:75:
18:e8:0e:4f:d1:b1:4c:de:1f:dc:e2:23:e6:45:b8:
48:90:41:85:43:dd:d9:14:b7:0e:2d:6a:6e:61:40:
72:d7:96:40:a4:7e:a4:03:83:9c:2b:05:d9:c3:52:
fa:13:22:5b:f9:67:c5:b8:db:2a:6f:96:1e:6a:9d:
29:b4:05:16:a9:76:51:d4:ce:6c:81:15:4e:1a:08:
8d:29:cb:48:bf:5b:bf:b0:a4:0c:95:af:41:9a:88:
d9:79:f6:be:c7:ec:1b:09:bf:84:9e:fb:30:be:c3:
12:c3:57:73:75:0c:2d:60:fd:22:b0:df:fe:42:fc:
58:bd:14:54:f0:db:34:c2:21:01:86:eb:42:da:8b:
df:3c:ab:fd:5d:fe:08:02:f1:19:bb:67:33:6d:7d:
eb:73:f5:20:ca:95:a2:ce:a9:75:b1:36:4e:b4:8b:
c4:dc:61:5c:7e:02:dc:52:8d:1e:2c:91:22:7b:63:
4e:67:66:a9:74:d4:fb:49:8c:da:fa:b7:66:fd:b6:
c0:67:3c:14:19:86:52:d4:7a:11:3b:d8:ab:fb:a5:
53:46:2d:a5:d6:48:31:96:7e:16:93:6a:8b:3a:76:
6c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:94:6C:D2:79:B1:F9:CD:76:CC:AC:DD:11:E9:86:6D:87:2C:13:66
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/05Rs0nmx-c12zKzdEemGbYcsE2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.45.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:ce:23:d1:db:1b:0c:fa:51:ed:cb:1e:bf:ba:3d:0a:3c:2e:
0c:d1:a8:cf:6d:92:b9:d8:52:4e:15:56:64:c6:fd:f5:14:ee:
76:d8:69:41:46:98:b7:c3:0c:99:3a:1b:5d:ba:5c:50:41:77:
2c:33:92:52:b1:98:a4:27:ee:f3:4a:ca:aa:f8:46:ff:c6:7f:
5e:94:33:dd:3d:d5:2d:d9:a7:7d:16:bb:0b:d1:01:9b:c3:56:
6b:3c:7c:cb:01:e7:3b:c0:e3:ac:da:21:f0:bf:81:75:d3:b1:
e2:e7:79:92:da:42:f2:6f:ea:58:69:37:d4:15:b8:8c:0c:6c:
b4:a0:67:cc:b9:37:66:70:97:e3:21:51:ac:cd:7c:91:c7:68:
6f:0e:b0:ae:0c:35:f3:f5:ac:df:26:16:06:09:30:c2:6e:88:
4d:86:5d:03:ae:8e:fe:5e:6d:c0:03:48:c0:97:a5:f4:a8:1b:
e9:66:a3:cc:f0:75:75:51:e2:fa:97:c9:60:59:2d:5e:0c:3d:
59:5c:50:e4:4d:f1:e4:99:c3:41:86:b9:f0:67:28:eb:38:a2:
31:3f:5e:0f:ae:42:86:cd:72:c2:f7:8d:12:be:74:b8:b0:16:
96:94:a0:a4:b2:d2:27:2e:a4:02:34:ac:4d:9a:c1:c7:42:3f:
bc:58:05:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org