Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/zL7l6NCq6tVj85OScv-39MuHj-A.roa
File: zL7l6NCq6tVj85OScv-39MuHj-A.roa (raw, json)
Hash identifier: PWoKgQJp/oz1B0aWV53cT4/xMgD2D7uwxfI23+yovj0=
Subject key identifier: CC:BE:E5:E8:D0:AA:EA:D5:63:F3:93:92:72:FF:B7:F4:CB:87:8F:E0
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189E646FFA52273F033CC45B9B4A4FF4754
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/zL7l6NCq6tVj85OScv-39MuHj-A.roa
Signing time: Fri 11 Aug 2023 20:25:59 +0000
ROA not before: Fri 11 Aug 2023 20:25:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 176.57.58.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e6:46:ff:a5:22:73:f0:33:cc:45:b9:b4:a4:ff:47:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 11 20:25:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccbee5e8d0aaead563f3939272ffb7f4cb878fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f8:4a:14:20:6f:06:2a:d3:9a:ca:e1:ce:a4:
ec:92:15:f9:59:81:31:a7:af:ec:d9:c5:15:e8:33:
93:e6:eb:7f:65:28:5d:71:8c:ac:d0:c7:79:78:eb:
a2:22:77:ef:c7:62:a5:c4:23:a7:72:b9:31:ef:7c:
77:69:64:b3:ab:1a:08:f1:1b:3b:5a:09:e4:8c:5f:
6a:40:ea:f9:43:db:25:70:0c:78:f3:1e:96:d1:3b:
42:d3:27:56:ae:c3:38:b6:2d:6e:a4:00:b1:90:ae:
5a:c6:b5:6c:f9:ad:ed:56:7a:19:90:04:ab:e7:2a:
99:3b:01:37:85:b1:dd:3a:d9:74:e5:bf:bd:58:4b:
c3:ce:c2:61:aa:54:77:0d:ef:14:f0:8c:fb:6c:9f:
32:25:f3:df:1e:2c:2a:39:16:37:67:32:35:47:05:
d4:3a:70:7a:0d:4d:5c:ba:56:6b:58:c8:ad:ea:c8:
18:2d:5b:52:75:89:35:76:fe:0f:3e:03:71:48:8d:
d3:7a:a9:9f:4b:93:53:21:4d:8b:92:d3:e7:9a:12:
42:25:ae:e7:41:be:2b:b5:38:bf:5f:73:01:33:f2:
a8:d2:6c:37:8d:5d:a9:97:30:a3:e7:2a:43:d0:cd:
35:24:4b:76:69:9d:52:bf:24:62:f1:fa:cd:36:71:
25:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BE:E5:E8:D0:AA:EA:D5:63:F3:93:92:72:FF:B7:F4:CB:87:8F:E0
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/zL7l6NCq6tVj85OScv-39MuHj-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.58.0/23
Signature Algorithm: sha256WithRSAEncryption
30:07:d0:a5:62:54:ad:4a:96:aa:c5:ad:cf:51:94:35:f2:66:
5a:df:49:6c:ce:8b:11:a3:f5:2f:ce:d0:b5:5c:ae:47:a8:b0:
73:5a:37:0c:64:0d:d8:19:30:21:81:ac:da:bb:26:b0:ed:b1:
29:2c:c0:c9:ed:94:96:96:bd:47:9c:37:4a:fd:3d:70:b0:65:
63:cb:ba:3e:e7:10:0b:66:64:89:16:23:c3:ec:3d:7a:f6:98:
e2:12:06:02:63:71:5a:84:22:f4:0f:93:d9:32:bb:d9:3f:ad:
bb:78:ed:2f:88:e1:fb:92:6b:b2:67:46:5d:b4:b1:e3:43:0f:
20:1c:0e:66:8f:4c:b8:89:87:1f:14:dd:11:a6:0e:ea:0c:2f:
f0:93:af:a6:82:4b:49:53:e0:34:a4:9b:69:1c:20:d2:c4:66:
14:b1:40:74:ae:53:1f:57:d1:2d:e3:44:16:26:0e:7a:66:1d:
85:51:5b:9f:cc:3a:a4:84:34:f6:61:b5:73:78:af:42:8d:0d:
bf:af:57:1f:dd:47:77:54:46:91:c2:bf:66:60:8e:cb:7b:b0:
a3:11:cb:08:ca:cd:0a:9a:2b:01:1b:9e:6b:99:e2:19:b5:5f:
c3:7b:b1:83:f2:d9:c3:f3:0c:fc:dc:89:3d:5f:9b:81:b4:47:
0a:99:b6:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org