Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/d-so81ONRuVEdj6y3n1qbS6Ok4E.roa
File: d-so81ONRuVEdj6y3n1qbS6Ok4E.roa (raw, json)
Hash identifier: qy3FaqjU/ZGqGuv0SYC3LwS177L9/aTiN7ddRRI8uNw=
Subject key identifier: 77:EB:28:F3:53:8D:46:E5:44:76:3E:B2:DE:7D:6A:6D:2E:8E:93:81
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 018CB03208E2A9013FB9375823EA60CAA503
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/d-so81ONRuVEdj6y3n1qbS6Ok4E.roa
Signing time: Thu 28 Dec 2023 11:31:58 +0000
ROA not before: Thu 28 Dec 2023 11:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 64.137.52.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:32:08:e2:a9:01:3f:b9:37:58:23:ea:60:ca:a5:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Dec 28 11:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77eb28f3538d46e544763eb2de7d6a6d2e8e9381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:84:f5:a3:e8:8b:e2:e9:26:6c:47:ee:8e:0b:
0f:cb:b4:29:53:9b:f9:78:29:62:ec:85:e7:9e:e3:
48:2f:de:dc:b4:0a:e0:6a:cc:1d:59:a1:c0:dd:54:
34:e7:55:d3:e5:52:95:b2:66:e0:25:29:33:0f:cf:
81:d0:0e:2c:3a:5e:6d:60:f0:7a:b5:bc:2c:e4:6e:
99:cd:f8:5f:a4:3b:61:fa:69:1e:1e:93:67:9a:5d:
73:b4:0e:02:3a:e1:fd:30:6f:44:16:9f:2f:28:cb:
7a:b0:91:ac:b2:d0:fa:74:63:45:51:68:3b:36:fa:
49:90:51:9b:06:ae:1f:bc:1a:0b:72:ec:46:c5:c1:
64:a9:0c:5e:4a:d1:03:95:f0:3f:1b:86:20:6b:cd:
ed:15:7a:cf:e8:47:69:df:f3:77:2a:ba:94:61:7e:
4b:6f:63:8e:98:4c:e7:58:4b:48:44:bc:af:65:1c:
8b:38:43:32:33:fb:fe:73:37:a3:50:ea:b2:28:a9:
2d:e9:53:1e:1e:1c:8f:d1:6b:27:b5:e9:79:1b:1f:
4e:84:7a:c6:4d:f8:19:6f:cb:e8:08:1f:8a:82:97:
d3:ec:fa:a7:d7:0a:58:05:e2:c5:96:40:0d:6f:c2:
56:f5:13:73:c4:16:a6:88:7e:9e:c0:1f:da:dd:ff:
6a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EB:28:F3:53:8D:46:E5:44:76:3E:B2:DE:7D:6A:6D:2E:8E:93:81
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/d-so81ONRuVEdj6y3n1qbS6Ok4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.52.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:23:ed:69:7d:8f:05:e1:d2:3d:26:ac:cf:77:23:9f:26:39:
d7:3b:be:6a:f4:12:c2:4f:0b:16:b3:51:e6:56:71:ab:8d:97:
66:2c:98:0d:c5:5c:df:60:d6:26:b6:e2:80:13:78:0f:5a:d6:
e3:bc:67:a9:0e:5a:a6:5f:9a:06:ba:94:d2:ae:19:f0:83:c2:
76:58:61:e9:01:a5:e2:2f:47:3e:aa:68:bf:d4:3b:8c:d9:89:
c6:19:7a:c9:40:a2:23:2e:94:9b:ed:10:80:e2:3b:c7:d4:40:
c4:51:6b:cc:43:38:e3:be:2a:9e:d2:b3:30:97:84:9c:35:68:
5b:cf:ef:d3:18:e4:0a:04:8d:bc:da:ae:25:da:1f:74:83:6c:
d9:14:52:ee:3f:6e:eb:ba:9a:b3:be:ce:bc:f1:d3:8e:39:87:
4b:bd:da:d9:41:7b:63:9c:ab:93:55:f9:9e:11:05:f6:c7:54:
fe:f5:34:a1:a3:a5:46:24:42:89:ba:72:57:51:eb:41:8d:09:
ae:24:82:3f:93:20:aa:38:ab:03:63:30:ce:f3:a5:24:10:9f:
84:18:c6:69:8e:26:fd:ed:3b:cf:33:9c:64:75:bf:ff:f7:b3:
a3:02:2f:af:a7:30:75:2c:1d:90:2a:4c:3a:c1:2f:a1:d1:5e:
bf:2e:3d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:40 2024 by rpki-client on console-fra.rpki-client.org