Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/LgYzhNuRytTdcMeOHRaUvRSHleY.roa
File: LgYzhNuRytTdcMeOHRaUvRSHleY.roa (raw, json)
Hash identifier: o+5rfCRO/Z6vcsFSPtTsP1Ndx1ve5DbsUs44i93UduQ=
Subject key identifier: 2E:06:33:84:DB:91:CA:D4:DD:70:C7:8E:1D:16:94:BD:14:87:95:E6
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 01856C784376D95163D0F06565AEEA554A59
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/LgYzhNuRytTdcMeOHRaUvRSHleY.roa
Signing time: Sun 01 Jan 2023 08:34:59 +0000
ROA not before: Sun 01 Jan 2023 08:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201494
IP address blocks: 31.177.60.64/27 maxlen: 27
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:43:76:d9:51:63:d0:f0:65:65:ae:ea:55:4a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jan 1 08:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e063384db91cad4dd70c78e1d1694bd148795e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:14:3e:0d:16:c1:26:26:ee:3c:e2:a8:8b:fc:
76:c5:c1:f4:89:a1:7e:70:ab:e5:2a:1c:95:ee:3f:
75:e5:41:b1:1b:95:9c:ce:3f:e5:ca:d4:36:ca:23:
51:8f:a4:2a:98:b8:35:31:13:71:84:7b:ae:62:e3:
cc:a9:41:b3:3f:62:3c:59:fe:87:19:40:76:e7:0c:
ff:20:2a:86:63:ce:99:ae:92:53:57:bf:6f:f7:3c:
c8:56:31:9b:85:c3:ce:bd:4e:aa:00:64:75:a0:f1:
95:70:43:92:80:d7:0b:12:80:9f:8a:d9:4a:f7:f4:
61:57:37:ac:33:c3:c7:bc:06:4b:0f:b7:a3:4a:bf:
f1:31:37:60:97:e3:9d:d0:b3:89:0b:20:55:59:3d:
24:ec:aa:4d:04:f2:63:13:e9:25:42:f3:d7:52:43:
59:32:df:4d:f6:e9:2d:6d:4a:a2:d5:c9:9a:28:e3:
b7:5d:0f:5e:e1:3a:dd:49:39:f5:4e:c7:2d:56:10:
a8:a1:f9:dd:c6:eb:4a:79:bb:8a:6a:93:a8:a8:5c:
d6:b8:0d:a0:b2:31:3b:00:6c:9f:fd:19:9d:93:b4:
67:cf:c4:91:cc:30:99:3e:b4:5a:21:c7:3d:f4:9e:
44:5e:0e:7f:8b:e8:5b:2c:08:d6:af:f6:dd:21:39:
7e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:06:33:84:DB:91:CA:D4:DD:70:C7:8E:1D:16:94:BD:14:87:95:E6
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/LgYzhNuRytTdcMeOHRaUvRSHleY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.60.64/27
Signature Algorithm: sha256WithRSAEncryption
9b:0b:51:85:f9:0e:23:4e:03:2e:e5:1a:5b:ee:99:50:54:73:
1e:a2:79:f8:d9:a3:cf:f5:56:8a:ac:1f:15:87:9d:da:0c:4d:
97:bc:56:a1:79:2a:e1:5d:e3:cc:47:83:6b:65:71:f5:83:59:
c0:16:c3:83:2a:ad:90:c5:de:ee:1b:ad:09:5f:e0:71:10:44:
dd:6b:6c:cc:a6:be:c1:63:ba:1f:fc:d2:18:56:24:51:7a:da:
c1:2e:c0:26:85:5f:3c:a7:54:c1:97:be:f2:38:ba:08:f0:0b:
32:65:15:87:12:d6:9b:d5:24:54:eb:5c:2d:f2:f6:39:7e:89:
5c:2e:93:85:bb:eb:1d:86:cf:9c:b0:e4:bc:14:6e:22:57:99:
1e:c5:f6:96:e9:a5:99:52:bb:59:a9:d5:3c:8d:2f:42:e7:30:
05:9b:7d:75:e7:53:58:a7:5d:f1:b3:6d:71:a2:fc:a0:8a:0d:
c1:60:4b:86:7d:c6:13:c4:0c:d0:eb:f2:8b:18:62:0f:3d:9a:
9f:3e:be:8d:51:7c:b0:28:5c:60:23:19:d1:fd:34:4d:94:09:
41:07:dd:18:eb:2a:10:b6:23:42:8c:ef:b5:16:82:e8:18:df:
6f:9f:24:8f:29:15:09:f7:2f:8a:92:d9:8d:48:f6:bd:ac:e0:
df:cd:0d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org