Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LwsyvKRo9LEnK7iLmgYy2vOLbsg.roa
File: LwsyvKRo9LEnK7iLmgYy2vOLbsg.roa (raw, json)
Hash identifier: BPOJyIrW3vYnasS3VIwd4ux2RjyMP5uqNkU5bBffcVQ=
Subject key identifier: 2F:0B:32:BC:A4:68:F4:B1:27:2B:B8:8B:9A:06:32:DA:F3:8B:6E:C8
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0186268053F74B3D7A738F82F5915BC305B4
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LwsyvKRo9LEnK7iLmgYy2vOLbsg.roa
Signing time: Mon 06 Feb 2023 11:33:09 +0000
ROA not before: Mon 06 Feb 2023 11:33:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 64.137.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 10:20:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:80:53:f7:4b:3d:7a:73:8f:82:f5:91:5b:c3:05:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Feb 6 11:33:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f0b32bca468f4b1272bb88b9a0632daf38b6ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:32:46:97:a0:87:41:55:9e:c3:c1:a3:95:67:
4a:0d:3d:48:4e:e1:7b:7b:b8:10:f3:5a:d1:0e:19:
37:31:6b:f9:92:0d:ff:de:7f:14:2e:b8:ce:93:8a:
44:14:6b:1b:f8:4b:81:39:ed:bc:a9:b7:e1:34:8d:
f9:95:8c:16:b9:fc:18:78:0b:20:bf:0a:c2:5e:3a:
28:cd:10:0a:30:7f:92:a3:36:52:ac:4c:fc:80:8b:
69:a5:8a:ec:32:e0:a7:14:f7:11:60:08:d6:23:a3:
b4:4d:62:d1:87:f6:c1:47:a3:1c:9f:80:65:f4:20:
ae:cf:bf:59:a3:8c:a9:f6:03:d8:ee:5c:4f:db:fe:
99:ed:4b:7a:56:ed:c3:3d:3d:e9:28:91:3d:65:f9:
0a:35:dc:1f:ac:43:36:be:31:9c:e7:7a:03:47:d7:
32:3d:bd:85:05:4b:82:20:92:b4:d1:15:74:84:c7:
e5:ef:dd:62:0a:31:e0:03:0d:be:ee:90:eb:0b:d4:
4e:3e:a8:47:7a:cc:e1:c8:25:4d:9f:f1:b1:8e:22:
8d:d6:10:dc:c4:b0:a0:fe:0d:b3:b6:6c:b1:56:79:
42:9e:fb:80:1e:09:18:85:32:9d:e8:f0:29:a5:b6:
f6:a6:56:8c:0a:2c:50:2d:0b:75:96:ec:6e:5c:9d:
44:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:0B:32:BC:A4:68:F4:B1:27:2B:B8:8B:9A:06:32:DA:F3:8B:6E:C8
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/LwsyvKRo9LEnK7iLmgYy2vOLbsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.116.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:c1:16:50:7f:a8:2c:2f:7f:86:2b:ce:cc:72:f4:48:bb:19:
e2:6d:ea:70:72:27:23:e8:5d:21:36:26:0a:1a:44:2e:ea:1f:
c3:c1:7c:2e:49:4a:40:3e:ca:77:95:08:43:15:c2:5d:b8:f8:
09:c9:80:ec:4b:bc:77:ee:5e:4c:44:86:45:9e:2e:aa:04:4b:
be:8a:db:19:16:27:9f:45:38:3c:f2:30:09:83:39:6b:9f:ea:
95:37:e8:6f:75:f3:14:fc:c4:b6:90:df:29:e7:5d:94:b1:ed:
bf:ec:78:6e:d2:19:6c:5a:b8:a4:15:d5:b5:52:0a:38:1e:78:
3f:94:07:ff:d2:ea:59:e4:38:75:84:25:f8:79:67:30:5b:79:
03:c9:0a:97:00:3a:02:4e:c9:c2:4d:e2:f8:b2:8c:3c:d8:7f:
66:d3:63:a8:01:55:8f:c1:59:b9:83:ab:23:bc:3d:a4:00:4a:
ea:ff:ca:0a:78:dd:ac:8d:60:19:79:1a:a7:94:4b:1d:99:98:
24:09:6d:bc:6b:5c:96:1c:e3:d6:91:b8:05:df:c7:4c:8b:82:
3d:ad:01:28:9d:bb:ed:91:c0:68:c3:06:e8:ea:ef:0c:e5:bd:
1e:08:d0:a1:4c:cb:ca:68:f3:95:41:eb:17:47:ca:bb:65:74:
6c:15:3b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org