Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/0wT3yQ4J6KtH3y2UFfj9fYdylPg.roa
File: 0wT3yQ4J6KtH3y2UFfj9fYdylPg.roa (raw, json)
Hash identifier: rALuXI6nJfEBGUjt+s/MhCMjRseeNwJDaPfEAEb6iBc=
Subject key identifier: D3:04:F7:C9:0E:09:E8:AB:47:DF:2D:94:15:F8:FD:7D:87:72:94:F8
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0188776A9362D93DA9177F7B0C9F9D09D9DD
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/0wT3yQ4J6KtH3y2UFfj9fYdylPg.roa
Signing time: Thu 01 Jun 2023 14:44:13 +0000
ROA not before: Thu 01 Jun 2023 14:44:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 64.137.44.0/24 maxlen: 24
64.137.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:77:6a:93:62:d9:3d:a9:17:7f:7b:0c:9f:9d:09:d9:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jun 1 14:44:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d304f7c90e09e8ab47df2d9415f8fd7d877294f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d8:fd:af:47:5a:94:d7:cb:8b:f5:1e:ef:9f:
00:b3:54:ca:d7:dd:e2:c0:cf:67:e1:01:63:23:77:
a2:93:ee:15:f7:42:52:fc:75:3b:98:26:82:c9:cb:
e3:26:78:f6:ff:be:fc:5b:c0:32:41:3b:17:3b:2f:
91:10:aa:cc:08:bf:4d:b8:c0:31:47:28:96:01:7e:
ba:32:84:66:3a:b6:12:c3:5f:d4:52:e6:84:b0:8a:
5a:9a:99:74:d3:0f:90:83:36:e1:c9:81:b9:cb:f6:
df:03:07:71:d7:68:89:2d:4c:21:a7:44:87:fb:6a:
d5:b7:fc:e9:30:f7:53:6a:b0:6c:6c:2e:a4:5b:71:
cc:a6:f9:e6:d5:2e:a6:44:60:9e:7c:a0:48:72:ea:
7b:05:fa:89:92:2d:a4:1b:4b:da:3e:81:db:ef:80:
ab:37:b5:ef:88:65:2f:79:8c:6b:e1:a3:83:12:9c:
2e:40:60:4e:75:0a:f0:7e:65:a6:72:be:a3:5c:e9:
82:ff:6b:df:f6:6d:d5:cd:32:c2:6e:ea:12:c0:95:
59:10:39:5f:1e:65:94:df:f9:e3:d7:78:9a:8f:6b:
18:0a:69:11:4d:3b:79:3f:a0:d3:47:85:8a:5f:77:
db:d1:de:5d:5c:ef:5a:86:8d:93:7a:d6:6b:d0:ad:
21:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:04:F7:C9:0E:09:E8:AB:47:DF:2D:94:15:F8:FD:7D:87:72:94:F8
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/0wT3yQ4J6KtH3y2UFfj9fYdylPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.44.0/24
64.137.46.0/24
Signature Algorithm: sha256WithRSAEncryption
60:66:23:bb:06:be:4e:51:95:3a:c2:e4:c6:5e:1a:92:5d:22:
b3:1a:0d:78:bf:9c:5e:3a:27:21:72:80:ad:b8:3a:b7:67:86:
1f:1c:0b:86:12:9e:6c:26:47:ef:7c:39:9a:aa:15:33:d2:fd:
2b:c9:a6:a3:71:64:03:44:84:ff:c6:55:49:3d:9c:bc:64:14:
5d:78:55:ff:ec:53:e4:9c:15:f5:34:6a:a1:45:6e:f6:41:40:
4c:00:82:92:ac:bf:92:0c:d7:23:71:08:54:4a:81:a8:c8:9c:
4b:18:93:c9:c5:e2:22:71:cf:7c:5d:67:6f:b3:13:0e:1a:ab:
7b:41:02:6a:fb:2b:37:2b:77:a6:84:e0:7c:7a:f4:5d:f6:77:
ca:57:9c:40:49:6c:d1:74:b5:2d:b3:0a:7c:e5:58:68:42:78:
f1:0f:c4:20:89:0b:a6:62:1c:00:c8:36:5f:ec:29:41:6e:c2:
c0:fa:e4:40:50:4a:2a:05:d8:09:09:4a:ec:82:2b:1c:97:05:
5a:e4:0f:45:19:fc:5a:d3:8b:25:e2:59:5f:04:4a:98:9f:4d:
69:08:38:d3:12:3b:04:e9:34:e5:b8:5b:b2:21:86:6c:a3:c8:
e5:aa:48:e7:00:fc:92:bb:95:02:6e:c5:a3:61:e6:b9:92:2e:
d0:79:f9:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:54 2024 by rpki-client on console-ams.rpki-client.org