Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/60vZFy96-c4f8dh2SM8qaYpz2Aw.roa
File: 60vZFy96-c4f8dh2SM8qaYpz2Aw.roa (raw, json)
Hash identifier: 8Wi0HrboC+nVSlPvDZW8BVX3RG9vIvwmtM0C9h42T2o=
Subject key identifier: EB:4B:D9:17:2F:7A:F9:CE:1F:F1:D8:76:48:CF:2A:69:8A:73:D8:0C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018E2DFF8990A4E9181347618061B9A4637F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/60vZFy96-c4f8dh2SM8qaYpz2Aw.roa
Signing time: Mon 11 Mar 2024 14:51:45 +0000
ROA not before: Mon 11 Mar 2024 14:51:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 270353
IP address blocks: 94.241.160.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 18:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:ff:89:90:a4:e9:18:13:47:61:80:61:b9:a4:63:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 11 14:51:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb4bd9172f7af9ce1ff1d87648cf2a698a73d80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:69:f2:e5:8a:6a:7e:6a:b8:fa:4d:64:39:
e4:66:cb:92:90:a9:9e:15:e7:8a:78:46:07:a3:24:
21:72:eb:57:bc:51:74:a2:46:81:93:3b:ab:2d:36:
33:c6:c8:fc:0d:aa:49:ac:7b:ae:97:bb:d3:6c:b7:
f4:5a:b3:2c:f4:27:fb:ea:3b:68:04:02:de:bf:23:
25:19:54:6b:03:42:80:54:7b:0d:d3:95:5c:9b:b4:
86:e2:5d:e7:00:9e:6e:44:a1:66:7a:4f:41:0b:de:
7d:bc:d8:ab:da:8e:27:a2:67:2c:2a:11:e9:90:50:
75:51:04:02:c1:7d:2a:d1:84:22:dd:f5:0f:2c:cc:
3a:f0:f2:e1:8c:77:fb:97:f7:5d:19:5b:49:b0:79:
d8:b6:12:db:9e:f7:8f:fd:43:bc:2a:5a:8d:42:ea:
7d:e4:89:67:2d:50:e6:31:fd:0f:8e:63:92:19:b1:
fc:fb:40:d4:d9:5a:d7:b6:2e:85:cd:8d:6f:63:c1:
bc:bf:19:82:9d:9a:8c:98:b4:c3:e3:53:7a:95:8a:
ed:0c:e5:ba:45:a4:6e:8f:d6:0f:50:8e:db:12:e6:
fe:d1:ef:6d:33:b2:4c:09:35:2b:42:e2:de:de:a8:
aa:22:18:63:68:b2:68:1d:18:0c:4e:3c:59:03:39:
53:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4B:D9:17:2F:7A:F9:CE:1F:F1:D8:76:48:CF:2A:69:8A:73:D8:0C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/60vZFy96-c4f8dh2SM8qaYpz2Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.160.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:a3:37:26:fb:fe:d2:b4:8c:5a:79:dc:ab:81:9c:aa:e5:54:
41:d6:0b:71:f3:31:1b:59:d6:93:e5:d8:82:eb:9a:6d:57:10:
fd:16:33:39:b6:23:70:36:19:51:71:c1:51:c2:ad:35:f4:0f:
ee:ff:a0:05:6a:27:15:13:94:f4:04:9b:be:7d:b1:9a:ea:01:
94:40:47:f7:dd:5c:62:94:b5:a8:0d:d8:ea:96:4f:d2:90:46:
7c:7f:0d:a2:f1:12:8d:e9:4c:54:7c:f9:5a:0f:62:a0:bd:16:
64:90:dd:08:f2:41:02:28:8b:79:cf:3b:0f:8d:53:5c:ab:e6:
b3:9b:b3:33:73:a6:7f:73:84:41:53:d1:b8:9a:15:bf:af:f9:
c2:8a:4f:14:24:34:11:3f:7a:e9:b8:fc:97:63:37:6d:10:c0:
20:e1:4c:d2:13:9c:c5:4c:ec:ab:c0:bd:c0:30:95:6c:74:a5:
87:4b:c6:81:e4:e1:1d:ae:55:19:b7:56:35:38:d4:f1:df:7f:
e9:87:a3:52:f2:e3:03:71:82:e9:34:47:6e:c1:9d:36:db:fd:
76:91:28:3f:1c:26:97:10:ed:91:0d:a1:4b:3d:f8:e0:36:c4:
7b:aa:2b:fb:54:c8:64:9d:58:a9:32:8b:23:fe:20:02:a9:10:
e7:09:da:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org