Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/16TFe1nS0PzuWF9v55MAMXva39E.roa
File: 16TFe1nS0PzuWF9v55MAMXva39E.roa (raw, json)
Hash identifier: DatfOUlIiHfm5Ktp7x6IkSJ4FVoxWhh/jeQpY5AoO/g=
Subject key identifier: D7:A4:C5:7B:59:D2:D0:FC:EE:58:5F:6F:E7:93:00:31:7B:DA:DF:D1
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018920CE7C8B73E703D5612AC5061433DCD1
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/16TFe1nS0PzuWF9v55MAMXva39E.roa
Signing time: Tue 04 Jul 2023 12:09:10 +0000
ROA not before: Tue 04 Jul 2023 12:09:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 104.249.57.0/24 maxlen: 24
104.249.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:ce:7c:8b:73:e7:03:d5:61:2a:c5:06:14:33:dc:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jul 4 12:09:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7a4c57b59d2d0fcee585f6fe79300317bdadfd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:74:42:ad:ae:b7:19:fc:5a:75:cf:cf:2c:6b:
62:34:94:f9:05:e7:af:71:74:b6:a2:21:d8:77:5f:
02:19:37:d6:20:56:4d:7d:03:7c:5f:c0:3b:e4:24:
f8:b7:a7:64:d3:79:e0:9e:d2:b4:48:78:a8:76:39:
86:cd:8d:a8:f0:f5:85:fe:22:2c:52:7c:2a:92:67:
bf:f4:9d:56:c1:ba:5e:e4:95:b1:f5:70:4e:7a:96:
b7:1a:1f:89:e9:04:ea:00:1f:40:7e:e2:c4:a5:d2:
35:52:13:be:9b:bd:8e:81:01:2b:77:58:c3:b6:ca:
da:3e:e6:b3:33:a4:f2:aa:31:a1:16:ab:45:df:e3:
4b:b6:92:be:0c:cf:6e:4f:f6:2a:8e:15:53:90:2b:
cd:f1:6b:9c:31:bb:8e:48:48:5f:85:e0:4a:3f:1b:
3b:f4:d6:f9:26:9e:5a:cb:fd:a6:3e:60:31:35:f2:
37:02:c5:fa:79:e0:ea:51:98:fd:91:2a:39:43:5f:
23:e1:20:58:ab:41:f7:e2:f0:6e:8e:d3:94:3c:6b:
78:a2:23:a7:df:69:eb:73:8e:e6:7f:7c:7e:e3:12:
2f:a9:78:0b:ee:42:d6:f2:9b:7f:31:6d:e6:e0:85:
06:35:07:0b:3c:2c:4b:f7:97:58:bd:e4:2a:8a:3f:
16:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A4:C5:7B:59:D2:D0:FC:EE:58:5F:6F:E7:93:00:31:7B:DA:DF:D1
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/16TFe1nS0PzuWF9v55MAMXva39E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.249.57.0/24
104.249.59.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ef:db:61:fd:62:82:6d:45:1f:92:9c:0a:58:a8:2e:69:dd:
1f:b7:2d:e5:b1:e5:13:50:6f:3e:5e:bb:4f:ee:e4:8f:41:5c:
12:48:7e:f7:36:8b:b1:bd:3c:bb:e4:ae:02:65:92:eb:32:97:
3f:b7:48:12:98:17:f9:0d:a4:f6:37:2d:dd:a8:e0:fb:90:97:
11:9a:02:41:7b:55:6f:51:3c:ba:cf:e2:42:b1:db:41:1e:8b:
8e:bf:11:a8:ab:70:3d:9c:a1:42:49:66:0f:52:65:ed:f0:52:
08:6a:1e:4d:80:47:7d:82:a2:ba:a8:6f:37:32:cf:cc:40:f2:
a0:fd:81:c9:ac:80:ba:ba:20:78:27:81:9e:ed:72:a0:44:94:
0e:4a:07:bb:09:da:a6:90:7c:ec:23:6f:3d:04:ca:7f:1f:89:
25:cf:4c:d1:25:62:58:1f:80:66:df:56:64:8c:73:e8:ac:9d:
41:30:9e:45:84:09:f2:45:d0:ce:c1:54:84:35:2f:e8:0a:23:
bb:c8:d5:f7:83:7a:bd:5f:84:41:ed:dd:20:55:df:88:bb:69:
1a:60:ea:5f:79:61:25:02:39:12:dd:18:27:e9:4e:be:8d:9d:
4c:c5:1c:3f:bb:e0:b1:dd:bb:1f:8a:65:18:90:2b:50:2c:77:
42:e4:34:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 10:39:21 2023 by rpki-client on console-ams.rpki-client.org