Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/VZn9BMwR03tcU1kcg93kUplEgZY.roa
File: VZn9BMwR03tcU1kcg93kUplEgZY.roa (raw, json)
Hash identifier: zpXZkFXphd/QgQI0SZrg0RWW7gb6lvVGb+VK3XiyuBA=
Subject key identifier: 55:99:FD:04:CC:11:D3:7B:5C:53:59:1C:83:DD:E4:52:99:44:81:96
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0186CB6A18B0A4D735FBCDE9F886F862BA81
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/VZn9BMwR03tcU1kcg93kUplEgZY.roa
Signing time: Fri 10 Mar 2023 12:06:13 +0000
ROA not before: Fri 10 Mar 2023 12:06:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 64.137.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Mar 2023 10:03:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:6a:18:b0:a4:d7:35:fb:cd:e9:f8:86:f8:62:ba:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Mar 10 12:06:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5599fd04cc11d37b5c53591c83dde45299448196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:df:91:1a:e4:0b:fd:15:94:85:ae:cb:42:03:
2f:67:08:47:2b:45:f2:66:6f:a0:3d:10:09:5f:60:
6e:19:fd:72:58:4f:a9:9a:52:35:a8:77:05:fc:eb:
6c:b1:c0:5b:0c:12:bd:9f:95:88:e0:b9:bf:27:9c:
a5:c8:c3:8b:a1:fb:c4:ad:f8:a0:0a:07:46:67:18:
b6:27:65:4f:b2:a1:44:0d:65:c8:a6:af:ff:bb:ff:
e0:ad:cf:20:09:bb:4c:f7:2e:21:56:44:9a:a4:d7:
c3:95:c2:33:20:88:ea:0c:24:4a:48:2f:1d:0a:a3:
db:37:c0:2c:f9:9d:0f:60:ec:da:6b:ff:4b:71:61:
a5:e9:d5:c4:e5:e3:1b:31:66:fd:0b:7c:25:a8:a0:
7e:16:d1:7a:2f:c9:15:60:4e:d5:b7:74:bb:01:7f:
7e:50:22:1b:9c:65:c5:78:0a:7f:48:a3:c6:a7:e7:
e6:09:ef:fd:28:77:54:c8:68:f7:61:c7:e0:aa:71:
5c:d6:a7:5e:5b:06:53:cf:5d:35:96:e6:38:5b:b8:
2b:fa:dd:f3:a8:37:86:89:ea:eb:9c:ad:aa:14:82:
11:d6:ff:b4:21:db:c4:93:bb:de:15:cd:1f:3c:e5:
ea:47:9d:92:b1:01:a7:92:6f:af:7c:19:ad:04:8d:
b3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:99:FD:04:CC:11:D3:7B:5C:53:59:1C:83:DD:E4:52:99:44:81:96
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/VZn9BMwR03tcU1kcg93kUplEgZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.47.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:41:d5:e7:39:b9:6d:2d:40:9d:57:3e:f2:f4:5d:1f:77:9d:
29:6b:16:71:4a:1a:3c:c2:8a:ba:7a:68:94:90:b8:cb:c8:f9:
07:23:7e:0c:f3:4c:3d:ec:7b:7a:01:d7:28:9e:29:e1:8d:97:
c3:d9:3f:b8:18:93:87:fa:b2:57:06:d2:a5:7f:0c:df:dd:30:
28:be:3e:7f:ee:b2:c7:67:a7:35:d1:2a:15:53:25:83:2a:e7:
b7:53:e0:b4:60:4c:44:ee:86:b7:ec:ca:3f:0c:62:fb:03:88:
a2:03:45:78:78:8e:70:45:10:6c:e0:6a:7e:b2:14:dd:21:f4:
5b:14:41:d5:74:ee:b1:57:d9:4e:09:42:32:ec:81:a1:ef:ba:
fe:fc:11:7b:f3:fc:65:93:b9:6f:de:5a:2a:ed:bf:c1:bd:5e:
be:c9:7b:f0:f1:44:f3:e8:03:79:7e:f0:1f:8f:6a:9e:0b:71:
6f:2f:91:9f:32:ee:2c:fd:fc:46:f7:e8:22:c2:71:63:b0:77:
51:d7:ec:50:49:48:af:c5:cc:a2:71:2f:aa:ec:e7:55:4f:09:
0c:ba:50:d8:05:f4:72:24:d5:7d:a8:f8:c7:b0:8c:01:7a:d6:
48:67:50:72:53:50:91:e6:fa:5e:88:58:e6:9a:37:72:c3:1a:
30:84:08:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbLahiwpNc1+83p+Ib4YrqBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNTgxZTY3M2Q4MGY3NDc0OTM2YjIxMzM3ZWFmY2MxYmRj
Mzg1ZTkwHhcNMjMwMzEwMTIwNjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTk5ZmQwNGNjMTFkMzdiNWM1MzU5MWM4M2RkZTQ1Mjk5NDQ4MTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAld+RGuQL/RWUha7LQgMvZwhHK0Xy
Zm+gPRAJX2BuGf1yWE+pmlI1qHcF/OtsscBbDBK9n5WI4Lm/J5ylyMOLofvErfig
CgdGZxi2J2VPsqFEDWXIpq//u//grc8gCbtM9y4hVkSapNfDlcIzIIjqDCRKSC8d
CqPbN8As+Z0PYOzaa/9LcWGl6dXE5eMbMWb9C3wlqKB+FtF6L8kVYE7Vt3S7AX9+
UCIbnGXFeAp/SKPGp+fmCe/9KHdUyGj3YcfgqnFc1qdeWwZTz101luY4W7gr+t3z
qDeGierrnK2qFIIR1v+0IdvEk7veFc0fPOXqR52SsQGnkm+vfBmtBI2zUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFWZ/QTMEdN7XFNZHIPd5FKZRIGWMB8GA1UdIwQY
MBaAFGBYHmc9gPdHSTayEzfq/MG9w4XpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYt
ZmIwNzk1NWYzYWFhLzEvVlpuOUJNd1IwM3RjVTFrY2c5M2tVcGxFZ1pZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9mZGQ2MzMtYzY1OC00OWM1LTllOGYtZmIwNzk1NWYzYWFh
LzEvWUZnZVp6MkE5MGRKTnJJVE4tcjh3YjNEaGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAQIkvMA0G
CSqGSIb3DQEBCwUAA4IBAQBaQdXnObltLUCdVz7y9F0fd50paxZxSho8woq6emiU
kLjLyPkHI34M80w97Ht6AdconinhjZfD2T+4GJOH+rJXBtKlfwzf3TAovj5/7rLH
Z6c10SoVUyWDKue3U+C0YExE7oa37Mo/DGL7A4iiA0V4eI5wRRBs4Gp+shTdIfRb
FEHVdO6xV9lOCUIy7IGh77r+/BF78/xlk7lv3loq7b/BvV6+yXvw8UTz6AN5fvAf
j2qeC3FvL5GfMu4s/fxG9+giwnFjsHdR1+xQSUivxcyicS+q7OdVTwkMulDYBfRy
JNV9qPjHsIwBetZIZ1ByU1CR5vpeiFjmmjdywxowhAgy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:45 2024 by rpki-client on console-ams.rpki-client.org