Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/dZucxo0ywCtWEFbi8ZX-ruA5GYE.roa
File: dZucxo0ywCtWEFbi8ZX-ruA5GYE.roa (raw, json)
Hash identifier: P9yeJORUs6mV7IzxiC+fMr2PkZMrs7+xrVdgPecsMqQ=
Subject key identifier: 75:9B:9C:C6:8D:32:C0:2B:56:10:56:E2:F1:95:FE:AE:E0:39:19:81
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0187372F3A1BF563CFB220AAF1EF1C1E6CA5
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/dZucxo0ywCtWEFbi8ZX-ruA5GYE.roa
Signing time: Fri 31 Mar 2023 10:20:54 +0000
ROA not before: Fri 31 Mar 2023 10:20:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 64.137.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 11:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:2f:3a:1b:f5:63:cf:b2:20:aa:f1:ef:1c:1e:6c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Mar 31 10:20:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=759b9cc68d32c02b561056e2f195feaee0391981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d5:0d:f1:72:15:e8:a7:b0:dd:e3:50:01:c0:
a9:95:29:82:8a:ed:3e:87:30:81:3a:10:e2:2f:be:
53:3b:fc:df:a4:40:e6:c7:78:69:78:3f:61:a5:1e:
27:c1:d3:fc:d1:fe:78:4a:4a:45:a8:09:cf:83:be:
94:35:77:95:bd:4e:eb:42:7a:7c:53:84:97:b4:b5:
b8:5c:b4:64:38:47:9e:a6:6a:a6:28:b8:8a:25:62:
08:9c:95:c8:c9:97:d0:e6:05:c6:af:bf:05:0f:5a:
64:3e:99:7f:d6:3b:f4:62:2f:7a:48:34:19:b9:a4:
26:17:94:e8:00:f6:50:76:33:74:1d:e8:5f:c3:28:
8f:0b:37:42:50:98:b1:64:57:b2:f6:58:3a:83:e0:
3a:75:63:5a:cc:d5:51:3e:2f:c5:b7:61:51:61:b0:
98:07:87:b2:fb:f4:0f:6f:ab:07:f6:0f:ee:4b:d6:
bd:cb:d2:d7:22:e5:35:84:4b:a2:b9:20:49:a3:76:
96:e9:82:05:d6:0e:66:e9:e0:55:51:5c:8a:7d:da:
0f:d5:59:24:69:74:2e:3d:77:e4:ed:dc:a4:31:02:
96:ee:d4:f0:97:7c:4c:fb:6a:5c:24:15:da:38:17:
02:28:de:dc:01:59:40:a9:e7:c0:fe:d0:49:1e:79:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9B:9C:C6:8D:32:C0:2B:56:10:56:E2:F1:95:FE:AE:E0:39:19:81
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/dZucxo0ywCtWEFbi8ZX-ruA5GYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.116.0/24
Signature Algorithm: sha256WithRSAEncryption
08:0b:df:9f:2c:ba:cb:b9:d9:51:d1:39:83:24:32:80:58:1d:
bf:2f:7b:a5:a4:36:60:41:19:5d:94:7e:ff:77:a7:ed:fa:d4:
19:28:da:61:8e:46:f8:55:44:a7:86:a0:ab:10:da:ae:61:fb:
4a:b3:f1:99:b5:d0:3a:78:dc:7e:7a:64:76:fe:63:e7:6c:f1:
1f:ef:1c:3e:a0:72:f3:cf:1d:b4:3c:54:27:03:ba:75:95:e8:
12:73:71:fc:2d:14:03:8a:60:96:a0:22:9d:22:a5:09:22:e3:
fb:fe:02:a3:56:5d:40:e9:46:b8:2d:4f:2b:b3:4b:7e:b4:0a:
1f:5c:d4:ab:99:f1:ea:d8:30:87:3a:de:b5:8a:81:d7:8f:4d:
29:d1:93:96:21:ed:18:3a:40:52:45:55:20:ab:53:6a:26:51:
6c:e8:b4:55:51:91:82:c8:f5:80:cc:88:f0:82:6e:5c:8d:1e:
bb:e9:75:99:de:61:db:d5:01:a8:4c:cf:bc:12:d5:54:a4:1b:
6c:d8:fd:b6:32:1e:b3:e4:ef:69:2b:69:c4:78:48:fe:2a:68:
8b:78:bf:1d:63:6c:cd:d6:19:86:40:76:c4:2e:a5:9b:9c:0d:
69:5d:ac:1d:ec:96:be:82:51:e0:78:b2:59:6d:9e:fb:6a:df:
8e:5d:e2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org