Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/1vBxKjoZZC2dFl96aiFX7mmvVl0.roa
File: 1vBxKjoZZC2dFl96aiFX7mmvVl0.roa (raw, json)
Hash identifier: eii+rAGSPxOZetVXd24mXYQbu+cvBzoamOdAM4jWxGM=
Subject key identifier: D6:F0:71:2A:3A:19:64:2D:9D:16:5F:7A:6A:21:57:EE:69:AF:56:5D
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018EE11226C9F4496AA7352D4637BCFF1C9B
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/1vBxKjoZZC2dFl96aiFX7mmvVl0.roa
Signing time: Mon 15 Apr 2024 09:24:06 +0000
ROA not before: Mon 15 Apr 2024 09:24:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 104.233.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Thu 18 Apr 2024 00:43:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:12:26:c9:f4:49:6a:a7:35:2d:46:37:bc:ff:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 15 09:24:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6f0712a3a19642d9d165f7a6a2157ee69af565d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:bc:69:d1:85:8c:e5:f7:b0:ea:f1:43:4f:ca:
e5:15:d2:23:68:6d:6f:5d:82:68:86:9b:74:0c:02:
5d:da:3d:90:8a:c2:76:e6:55:75:1d:d1:34:59:2f:
0f:0d:48:41:a4:57:28:bd:0e:41:a0:ad:f4:22:ae:
b4:e3:3d:f9:3c:27:40:81:f1:3e:17:d3:62:c1:0e:
47:4b:39:6c:60:e3:a4:b1:ad:e0:58:c0:65:45:3e:
89:d6:82:64:b5:ac:31:14:a1:54:4a:aa:24:ac:9d:
47:3c:57:d9:c5:1a:c3:b5:17:38:b4:af:ed:5c:67:
1c:17:c1:db:dc:ee:fc:0f:b4:2f:76:c9:2b:9a:3e:
95:e6:03:97:9b:c6:53:42:63:2e:49:15:d3:e8:5a:
70:74:bc:e7:d0:2b:d1:40:ab:be:68:9a:15:49:30:
66:56:14:d8:6b:d2:cf:8b:66:59:8f:97:10:63:d0:
b1:75:cd:f8:ff:c5:7a:16:4d:18:bd:5b:b1:fa:f5:
5c:b4:3e:95:48:69:d2:6d:73:af:4e:f0:b9:b7:b8:
fe:ca:00:02:f8:a4:5c:12:1a:03:3e:4a:3a:32:95:
20:d5:f5:76:28:fd:80:15:a9:a2:b1:6c:82:b8:21:
f6:28:c4:fd:3c:5e:6c:88:bc:e1:f4:13:d7:10:23:
ef:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F0:71:2A:3A:19:64:2D:9D:16:5F:7A:6A:21:57:EE:69:AF:56:5D
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/1vBxKjoZZC2dFl96aiFX7mmvVl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.233.32.0/20
Signature Algorithm: sha256WithRSAEncryption
04:38:4a:7d:ab:45:d2:e2:09:c1:99:f8:1c:83:db:74:ef:5e:
7f:d0:8c:58:0b:62:1d:82:fd:19:b1:58:8e:6e:44:8c:9e:ab:
15:19:95:a3:a0:69:e5:ac:c7:0c:b6:23:3c:02:15:a9:73:df:
fb:79:3f:16:02:59:e4:c9:f2:da:71:70:c5:f8:9c:26:50:05:
b8:d1:67:95:4b:5d:da:cc:77:be:39:78:a2:f1:76:74:2e:97:
90:a1:b3:78:8b:b3:26:53:34:cf:fb:b6:37:20:38:ba:00:f8:
70:f4:69:14:b3:2b:f2:89:eb:b0:9c:ca:57:55:e2:fe:f2:12:
31:44:31:89:19:49:5e:12:7e:84:db:16:5b:a8:eb:60:69:eb:
73:8b:3a:12:c4:b8:b3:9e:5b:cf:dd:f9:74:6d:4e:fe:eb:ba:
d9:e0:61:13:62:50:e9:c1:df:a7:5f:f8:de:3d:be:3c:ca:5d:
e4:d0:dc:e5:06:01:e0:48:e3:09:3d:4f:ce:5e:fc:4c:a4:0a:
d9:94:18:c2:3f:f7:f6:2e:2a:52:f7:e9:21:f0:3a:50:31:f1:
71:1c:db:f8:2e:00:c2:98:7b:d3:18:5a:b2:ba:7f:65:34:f5:
82:91:1b:6a:58:03:31:78:fc:49:b5:1e:6a:84:df:f3:ba:f7:
02:86:ad:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:44 2024 by rpki-client on console-ams.rpki-client.org