Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/dbulz7jBZHwOQFWFCQeUD1bZbi0.roa
File: dbulz7jBZHwOQFWFCQeUD1bZbi0.roa (raw, json)
Hash identifier: VU9OWIsfW+5KEPQJyK1s3HVTwx2lcUptnkRoFtsdMxo=
Subject key identifier: 75:BB:A5:CF:B8:C1:64:7C:0E:40:55:85:09:07:94:0F:56:D9:6E:2D
Certificate issuer: /CN=587d8b0e7546351176cc0c6e51ed4520abe04ef1
Certificate serial: 0189B5D452B77129A116BC591074DCA715BA
Authority key identifier: 58:7D:8B:0E:75:46:35:11:76:CC:0C:6E:51:ED:45:20:AB:E0:4E:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/dbulz7jBZHwOQFWFCQeUD1bZbi0.roa
Signing time: Wed 02 Aug 2023 10:38:58 +0000
ROA not before: Wed 02 Aug 2023 10:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 185.71.60.0/22 maxlen: 22
2a03:38a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b5:d4:52:b7:71:29:a1:16:bc:59:10:74:dc:a7:15:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=587d8b0e7546351176cc0c6e51ed4520abe04ef1
Validity
Not Before: Aug 2 10:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75bba5cfb8c1647c0e4055850907940f56d96e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:45:37:67:f4:49:d5:74:19:29:8c:d6:5b:c5:
76:dd:6c:db:48:e8:a7:0a:e3:1c:ce:c3:95:8c:50:
d1:83:ed:2e:8e:51:02:02:94:ee:79:61:90:34:1c:
22:aa:51:1e:68:96:32:7e:fc:29:91:41:61:48:49:
26:bd:28:3a:90:a5:21:bb:8a:59:18:13:f2:1e:b1:
eb:e0:09:e1:e6:68:6c:93:7a:39:63:b7:f9:c5:00:
33:a8:52:e9:88:61:9d:f7:9d:0f:be:d2:b3:c4:97:
9e:17:f3:41:bd:f6:0f:ce:3e:92:bc:3e:b1:2a:d4:
f9:4a:b0:2e:94:56:d2:3f:65:80:48:44:6d:94:5f:
35:3a:9b:0a:cd:76:be:8f:3f:03:60:e2:24:f2:2b:
ee:2c:d2:9d:c8:17:87:c2:64:8e:b0:bc:ff:2f:ec:
40:13:34:d1:c6:8a:6f:ad:41:36:04:f6:3f:1e:51:
6a:08:96:88:30:2d:04:1e:a3:fc:35:4a:fe:22:3d:
c2:b7:a3:af:b8:bf:5b:37:20:9e:f8:78:68:d2:d8:
2a:82:08:21:89:37:44:4e:54:9a:57:da:cb:1a:16:
6d:b1:5a:81:29:1e:cc:25:73:24:d2:fd:da:41:2e:
ab:01:e5:db:67:5d:5a:55:61:4d:45:7d:29:f5:39:
27:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BB:A5:CF:B8:C1:64:7C:0E:40:55:85:09:07:94:0F:56:D9:6E:2D
X509v3 Authority Key Identifier:
keyid:58:7D:8B:0E:75:46:35:11:76:CC:0C:6E:51:ED:45:20:AB:E0:4E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WH2LDnVGNRF2zAxuUe1FIKvgTvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/dbulz7jBZHwOQFWFCQeUD1bZbi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/81dc62-b3cc-4f99-aa42-c10f782fb07f/1/WH2LDnVGNRF2zAxuUe1FIKvgTvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.60.0/22
IPv6:
2a03:38a0::/32
Signature Algorithm: sha256WithRSAEncryption
61:e6:ec:ad:36:4e:2a:6a:dc:e3:95:ff:5f:8c:f2:83:e5:ae:
ad:93:d0:a3:63:5e:70:80:74:42:51:79:b1:89:e1:ff:fc:89:
9f:03:ba:d9:d8:5e:51:e9:27:78:e2:9b:c5:89:a9:16:67:3d:
30:2d:e3:17:c2:ee:8e:6c:ca:96:bf:0e:b8:ed:63:07:b5:a2:
a8:9d:d9:1b:4a:2b:e1:bd:15:cd:9c:c1:8b:a3:42:2d:c2:24:
f7:0e:89:a3:5f:c1:8b:45:a2:08:9a:ef:87:a0:61:f9:71:39:
af:ca:31:15:a2:a9:6f:40:71:ba:71:20:29:82:46:7d:63:e0:
eb:67:ea:d4:b4:be:32:e7:05:d4:a9:9a:13:89:e0:be:40:45:
45:e2:a0:f4:d2:7b:02:09:1b:a4:c0:74:58:2b:8d:1c:f6:2a:
b6:27:ef:9b:ce:89:8e:f3:22:c4:8b:13:73:b5:4d:aa:0d:37:
f6:2d:38:06:ee:b0:42:3a:fb:9b:3b:50:62:45:f5:75:71:62:
a8:7b:13:45:c3:9f:30:e2:cb:4f:ac:f1:f5:e6:18:ba:02:3e:
4c:d6:00:fc:43:f7:94:53:55:93:4e:40:73:2c:06:f1:5e:4f:
cf:b9:a4:95:a2:60:24:6f:c9:3d:a8:9c:45:66:b6:f7:59:c9:
f7:d6:5f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org