Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Cp2YTJjVYkDasE22-QOTJzAvJP0.roa
File: Cp2YTJjVYkDasE22-QOTJzAvJP0.roa (raw, json)
Hash identifier: kX6z009gbAHjsh2MTlaUzxNQHoZKm84L62e/Y2O7378=
Subject key identifier: 0A:9D:98:4C:98:D5:62:40:DA:B0:4D:B6:F9:03:93:27:30:2F:24:FD
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0185725EBA790A2ECBD1136554820A904E7A
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Cp2YTJjVYkDasE22-QOTJzAvJP0.roa
Signing time: Mon 02 Jan 2023 12:04:48 +0000
ROA not before: Mon 02 Jan 2023 12:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 64.137.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 12:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:5e:ba:79:0a:2e:cb:d1:13:65:54:82:0a:90:4e:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 2 12:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a9d984c98d56240dab04db6f9039327302f24fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:71:7a:6d:92:0d:55:7f:73:31:b9:6e:5c:6b:
06:f9:cd:94:07:8f:44:a8:79:49:64:d7:b2:4b:96:
44:04:f7:ee:76:0e:53:08:c4:28:d3:cb:3b:42:dd:
30:13:1c:6e:7f:a7:0b:ed:e8:5f:83:b9:93:3a:81:
86:bf:e2:7c:e7:79:8e:d0:21:c0:43:1a:d8:92:86:
46:66:cc:3a:41:a0:fa:40:6f:54:49:4a:ff:fd:85:
dc:00:b4:59:03:79:82:03:08:8a:06:34:46:00:19:
d6:9b:ec:78:38:bd:6a:ea:20:f5:25:c1:75:19:ef:
f5:e7:52:e9:9f:5a:13:5d:cd:16:bd:11:4e:69:1a:
ae:f6:38:6c:87:3f:dd:39:60:60:2f:cc:dc:de:d1:
af:96:24:48:41:c4:93:e3:0d:57:62:c5:15:14:15:
89:43:b4:0e:f0:aa:55:c7:58:73:e5:05:74:a6:d2:
01:80:06:d5:b4:44:7b:dd:c3:a1:93:4d:6e:c0:7d:
13:9f:ac:76:5c:b8:5c:1f:0c:d8:82:71:db:31:ce:
b2:7b:31:ed:57:49:9a:f9:50:ab:6b:1c:c1:d4:d7:
39:59:b9:2f:1d:a8:bf:f1:9b:30:d6:e1:3b:a6:ea:
bc:85:f4:15:5e:09:e4:9c:22:03:b3:93:3b:16:00:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9D:98:4C:98:D5:62:40:DA:B0:4D:B6:F9:03:93:27:30:2F:24:FD
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/Cp2YTJjVYkDasE22-QOTJzAvJP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.114.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f8:cc:77:27:b7:10:93:29:b1:29:12:01:d4:d2:a2:b4:46:
19:e9:03:6f:e6:d5:ab:fe:59:80:ea:0b:0b:d3:bc:f7:0c:d8:
6a:5a:38:91:a0:f4:0b:6a:34:70:d9:e1:11:42:36:dc:52:2a:
85:5f:e9:94:a0:97:9e:69:75:ab:39:d6:65:a6:0f:fc:04:68:
77:12:7b:92:48:a1:24:57:0e:77:60:98:4c:da:42:99:1a:07:
b3:2d:bb:ed:7c:77:e3:64:8d:85:2b:3b:9e:ea:55:ba:a7:6e:
7e:42:b2:b3:ed:92:f5:f5:85:44:c4:1d:8b:1e:91:36:38:62:
23:e3:7f:05:d2:3b:9b:56:18:22:6c:84:c8:f6:9b:3e:91:6c:
74:4d:cd:07:20:83:9b:68:8e:64:30:3c:b8:df:ce:9e:b8:2b:
ad:0b:76:36:c1:15:df:8e:d0:b3:3c:8a:40:f5:f4:b5:1b:3a:
db:0c:cb:01:ad:70:33:b6:52:85:4b:84:82:92:ea:38:51:be:
91:97:37:95:f5:e7:88:db:01:32:4d:ff:2d:20:64:9f:be:9b:
90:f0:ef:20:b1:3d:97:c8:40:cf:b1:74:71:d9:c4:88:83:40:
bb:2b:05:85:21:95:bf:5d:18:6d:be:1b:ba:59:2c:7f:41:b6:
9a:19:6d:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyXrp5Ci7L0RNlVIIKkE56MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj
Mzg1ZTkwHhcNMjMwMTAyMTIwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTlkOTg0Yzk4ZDU2MjQwZGFiMDRkYjZmOTAzOTMyNzMwMmYyNGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhXF6bZINVX9zMbluXGsG+c2UB49E
qHlJZNeyS5ZEBPfudg5TCMQo08s7Qt0wExxuf6cL7ehfg7mTOoGGv+J853mO0CHA
QxrYkoZGZsw6QaD6QG9USUr//YXcALRZA3mCAwiKBjRGABnWm+x4OL1q6iD1JcF1
Ge/151Lpn1oTXc0WvRFOaRqu9jhshz/dOWBgL8zc3tGvliRIQcST4w1XYsUVFBWJ
Q7QO8KpVx1hz5QV0ptIBgAbVtER73cOhk01uwH0Tn6x2XLhcHwzYgnHbMc6yezHt
V0ma+VCraxzB1Nc5WbkvHai/8Zsw1uE7puq8hfQVXgnknCIDs5M7FgDycQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAqdmEyY1WJA2rBNtvkDkycwLyT9MB8GA1UdIwQY
MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt
ZmIwNzk1NWYzYWFhLzEvQ3AyWVRKalZZa0Rhc0UyMi1RT1RKekF2SlAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh
LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAQIlyMA0G
CSqGSIb3DQEBCwUAA4IBAQBb+Mx3J7cQkymxKRIB1NKitEYZ6QNv5tWr/lmA6gsL
07z3DNhqWjiRoPQLajRw2eERQjbcUiqFX+mUoJeeaXWrOdZlpg/8BGh3EnuSSKEk
Vw53YJhM2kKZGgezLbvtfHfjZI2FKzue6lW6p25+QrKz7ZL19YVExB2LHpE2OGIj
438F0jubVhgibITI9ps+kWx0Tc0HIIObaI5kMDy4386euCutC3Y2wRXfjtCzPIpA
9fS1GzrbDMsBrXAztlKFS4SCkuo4Ub6RlzeV9eeI2wEyTf8tIGSfvpuQ8O8gsT2X
yEDPsXRx2cSIg0C7KwWFIZW/XRhtvhu6WSx/QbaaGW35
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:44 2024 by rpki-client on console-ams.rpki-client.org