Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1RWITTwYCA1ncBB0zrSEIJIXnXU.roa
File: 1RWITTwYCA1ncBB0zrSEIJIXnXU.roa (raw, json)
Hash identifier: sTA3E30s7CbVSXJbC+jgZbcmNOkxBHngLRg1YgjOsNI=
Subject key identifier: D5:15:88:4D:3C:18:08:0D:67:70:10:74:CE:B4:84:20:92:17:9D:75
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01856F4B7C21E07D25E22DDB52BAE48C4158
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1RWITTwYCA1ncBB0zrSEIJIXnXU.roa
Signing time: Sun 01 Jan 2023 21:44:55 +0000
ROA not before: Sun 01 Jan 2023 21:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 176.57.58.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:7c:21:e0:7d:25:e2:2d:db:52:ba:e4:8c:41:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 21:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d515884d3c18080d67701074ceb4842092179d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:fb:8b:f0:38:79:9e:21:8d:30:92:7f:fb:
77:6f:40:45:b4:c2:1d:15:5d:85:dc:51:89:b7:62:
a9:b4:da:f1:06:cb:9d:be:42:3f:1e:0a:3d:7a:21:
54:69:91:67:4c:b7:ea:db:25:3a:de:5b:00:d1:f9:
2c:9c:09:77:d1:60:2f:b0:2f:d0:63:25:29:df:1a:
03:66:43:5a:61:5b:b2:b0:67:9b:9a:9d:61:03:9c:
8c:9b:f2:79:c1:d5:48:59:10:46:2f:df:20:8d:87:
f3:27:fb:fe:9d:1c:d8:da:96:83:43:69:cf:05:30:
6f:8b:6d:da:1d:b5:01:c5:d6:f3:94:63:5a:07:93:
f5:63:d9:17:ff:fe:47:32:50:57:22:d7:4d:01:dd:
e0:1b:d6:32:1e:cf:c5:58:f6:b6:c5:80:d5:ae:67:
54:2e:44:8c:38:e7:58:bc:0c:bf:2b:fb:6d:d2:cb:
03:35:c9:1d:0a:c1:a5:9b:32:83:a3:3b:07:16:e0:
7c:ef:52:ba:d2:ae:84:68:d9:e8:7d:29:38:45:0a:
d1:40:77:1a:d0:fb:92:1b:f9:0e:2b:f8:5c:4c:43:
ce:b6:ba:9a:a0:c1:47:d0:56:40:46:07:cf:e8:98:
75:03:ce:14:e2:ea:39:a4:72:e0:d3:45:34:41:2e:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:15:88:4D:3C:18:08:0D:67:70:10:74:CE:B4:84:20:92:17:9D:75
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1RWITTwYCA1ncBB0zrSEIJIXnXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.58.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:0c:66:5a:47:ca:1b:88:90:0c:61:6d:e2:34:3b:59:be:46:
af:72:fb:86:34:23:35:f7:45:00:95:b7:b5:dd:b0:56:43:cf:
71:29:9f:11:76:7e:22:38:33:0c:66:61:1e:6b:01:9f:eb:29:
3a:fc:ad:4d:43:67:da:b4:ce:f0:7d:64:e2:7a:97:d9:cd:4e:
eb:7b:0e:64:b9:67:a5:12:ef:73:72:94:3e:68:58:ca:4c:bc:
41:f7:ec:d8:d5:6c:39:0a:4e:66:38:86:d7:e0:70:16:fc:08:
1a:06:72:1c:8c:db:db:36:13:2f:f8:d5:31:de:65:7e:a1:43:
7a:0b:9d:41:fe:df:bd:13:a4:67:fb:39:76:27:65:62:f4:11:
9d:28:13:7b:37:c7:09:21:64:e4:8e:33:08:9c:c5:0a:66:95:
a1:13:2a:de:f1:43:e4:00:c8:1e:35:75:68:13:34:82:16:70:
cf:7c:31:99:64:4f:b3:32:7e:38:e0:85:b5:fe:a1:c4:1a:22:
33:bf:9f:52:70:64:8b:1f:11:5b:36:d0:01:f0:25:7f:39:b3:
a6:93:74:3f:e9:bf:30:33:b5:81:90:b6:69:f3:5a:36:fa:0b:
cb:b8:72:e5:a0:18:6a:31:e7:84:3f:7d:8d:2f:d8:e5:8a:b6:
ed:12:f2:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:49 2023 by rpki-client on console-ams.rpki-client.org