Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/eHqTtol5jVV-CIgpDcydmggwqLs.roa
File: eHqTtol5jVV-CIgpDcydmggwqLs.roa (raw, json)
Hash identifier: bctAr6sy+eGK617RD0x6tD+T0oHvtwBpi3Ysh8pmVB4=
Subject key identifier: 78:7A:93:B6:89:79:8D:55:7E:08:88:29:0D:CC:9D:9A:08:30:A8:BB
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0187FBC9A85D50D5C7BFB0FC03A17F7A7217
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/eHqTtol5jVV-CIgpDcydmggwqLs.roa
Signing time: Mon 08 May 2023 14:35:09 +0000
ROA not before: Mon 08 May 2023 14:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 64.137.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 16:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:c9:a8:5d:50:d5:c7:bf:b0:fc:03:a1:7f:7a:72:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: May 8 14:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=787a93b689798d557e0888290dcc9d9a0830a8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bb:42:66:5d:4f:7d:51:19:81:e3:9d:cc:37:
85:2d:3a:05:aa:d4:ab:95:b0:17:af:98:4b:1c:32:
24:f2:9d:1c:e1:8b:c9:51:47:2d:95:d5:4d:7d:74:
63:35:4e:df:e2:b5:41:2d:19:8f:ec:cd:1f:92:57:
a8:d4:69:8a:17:c3:c1:3b:27:81:4a:89:93:81:37:
79:aa:5c:1c:37:38:17:7c:b7:ee:05:73:05:35:7d:
23:07:c0:43:5d:5b:ee:8d:5d:4c:0c:cf:ca:13:4a:
ac:d7:16:cb:87:97:8e:b7:fc:b6:db:1a:48:ff:4f:
50:ab:82:53:64:ba:39:19:ab:f8:6d:6e:1f:fb:c8:
2e:8b:87:b1:94:92:9f:9a:bd:ec:5a:ef:bb:8d:92:
93:d4:2f:0f:0a:80:47:66:49:49:cc:12:a2:4c:d7:
c8:c0:e8:be:33:d4:7c:cb:53:80:fc:6a:6d:4c:d7:
f6:0e:de:1c:32:c9:8e:f8:aa:21:9b:a8:4f:d0:54:
d6:66:05:8e:db:d8:93:1c:c2:37:da:6b:b7:32:18:
85:e5:a6:64:15:2d:f1:69:c4:67:92:de:f7:44:39:
fc:7c:27:06:6a:30:9b:18:a4:99:31:9b:82:65:d1:
9a:ca:9b:24:81:17:52:25:0b:aa:aa:77:14:0c:66:
95:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:7A:93:B6:89:79:8D:55:7E:08:88:29:0D:CC:9D:9A:08:30:A8:BB
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/eHqTtol5jVV-CIgpDcydmggwqLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.76.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6d:1b:20:78:73:89:10:0c:a7:91:12:84:2f:65:e1:db:b1:
fa:fb:bb:dc:c7:6c:79:51:1b:32:68:54:2b:d4:85:5e:5d:60:
28:da:49:28:26:34:c8:25:72:98:cd:6a:6b:20:6f:3d:50:89:
30:80:c6:04:80:03:8d:93:de:11:95:7c:53:94:a3:42:14:a4:
e9:5d:81:7e:2c:9b:c2:43:4f:fd:53:03:9a:1a:da:6d:37:ba:
7f:80:be:64:25:b1:a6:a5:de:87:b8:78:2b:3d:64:d6:80:d9:
9e:ec:93:46:0d:bf:ba:d9:8e:1d:18:10:94:c7:8a:6d:0f:63:
52:6c:63:d2:eb:af:f1:34:83:5f:18:ea:cb:ef:41:1f:1f:3a:
b4:3c:38:84:c6:2c:de:38:5f:91:d2:91:a5:a4:77:68:a6:b6:
59:6f:6c:db:42:d1:1d:2d:a6:41:ea:56:68:d9:5f:55:90:c6:
f9:1f:b2:ea:7c:af:87:26:db:66:7c:89:b9:43:c0:53:e9:c5:
84:30:09:1b:62:1c:57:cb:87:b7:96:37:b2:bb:62:da:2b:e1:
2b:63:ed:96:db:76:9b:80:0c:68:6a:da:0d:5e:ea:c7:ad:08:
7b:58:e9:5e:59:d0:39:18:a9:15:b5:c0:6f:03:4c:e3:df:df:
23:3f:5f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:45 2024 by rpki-client on console-ams.rpki-client.org