Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS60721.roa
File: AS60721.roa (raw, json)
Hash identifier: /qBFFn/SgA7tTJMJKz7jynTt7ykJn/fXn8hEWcARoTU=
Subject key identifier: 8C:B0:A5:41:C7:3D:E3:6A:7C:8A:D7:E7:78:09:8A:E1:12:39:E9:37
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 141377151106BB7E6BC0E719CF83A8E73429575D
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS60721.roa
Signing time: Thu 09 Feb 2023 09:30:04 +0000
ROA not before: Thu 09 Feb 2023 09:25:04 +0000
ROA not after: Thu 08 Feb 2024 09:30:04 +0000
asID: 60721
IP address blocks: 147.78.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:13:77:15:11:06:bb:7e:6b:c0:e7:19:cf:83:a8:e7:34:29:57:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Feb 9 09:25:04 2023 GMT
Not After : Feb 8 09:30:04 2024 GMT
Subject: CN=8CB0A541C73DE36A7C8AD7E778098AE11239E937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:50:93:b2:6a:e6:2c:61:92:27:70:6c:90:67:
6d:4b:14:38:f2:dd:44:03:17:1f:6b:4e:db:cc:61:
90:d0:bd:ce:e7:01:c2:25:5e:cf:72:ea:8c:ed:07:
5f:34:86:b4:bc:2e:31:92:93:cc:6e:63:fc:98:e4:
4d:bb:13:19:44:2d:84:c8:f7:38:d4:db:fb:34:12:
cf:a4:1d:64:dd:79:a3:98:cf:e9:9b:76:e0:f8:7d:
27:06:23:42:0e:4e:96:66:e8:7f:94:bf:49:b1:f1:
1e:1b:0a:f1:df:ae:f2:7a:64:be:f4:6c:51:1a:0e:
25:a4:70:65:1f:36:40:cd:f8:26:3b:a3:95:65:e6:
17:45:45:e4:2f:da:0d:54:53:96:6e:95:53:fe:6e:
98:63:ab:dd:73:da:c1:be:14:73:e9:0b:10:9d:37:
14:7c:65:ef:48:3f:66:5c:d2:86:32:ab:d9:12:21:
51:b6:12:55:a0:c3:c6:83:3d:14:21:a5:96:0b:1e:
32:62:8e:76:17:b7:0d:e5:41:5d:cc:1e:12:57:4c:
84:c8:c4:93:cb:13:a0:1f:b4:af:d0:a4:2f:59:75:
1f:56:37:d0:7a:ea:89:ad:04:ce:ce:09:e6:17:49:
60:51:d7:c7:bc:9c:ef:df:fc:63:20:ad:8e:ca:fc:
80:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B0:A5:41:C7:3D:E3:6A:7C:8A:D7:E7:78:09:8A:E1:12:39:E9:37
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS60721.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:3d:4a:fe:21:20:d5:eb:2a:76:f0:fe:db:df:18:1a:e5:96:
7e:c7:25:f0:7f:7b:f5:74:60:c9:cd:2a:7b:36:31:db:2b:fd:
6a:f1:66:47:dc:3d:c9:0a:a2:82:c3:55:ed:62:96:19:58:5e:
ba:d6:23:70:02:59:39:29:72:cf:47:bf:27:ff:7b:56:55:75:
42:37:c7:db:e3:64:b1:6a:3c:2d:e9:c4:ab:86:d4:db:8b:83:
77:b5:a5:47:8c:4d:fa:37:71:75:35:b4:d9:14:d6:17:a2:4d:
45:97:79:e0:10:5d:ac:fd:7f:6a:5b:57:f4:a2:9c:fb:68:9a:
8a:82:2e:ae:6e:86:77:af:fc:b8:fd:7a:52:62:98:18:4b:34:
f6:dc:a9:5a:11:c3:7b:5d:fe:41:ce:cc:e7:50:35:91:ba:63:
e9:39:5d:1b:90:ce:be:07:21:f0:dc:2a:f2:9e:14:55:51:a8:
ee:bd:2c:7a:2a:4a:a0:a9:80:a8:d6:fa:e3:50:50:d9:97:26:
9a:c0:da:82:34:ba:1f:27:14:3a:26:bd:35:51:ad:f7:ee:53:
fd:c7:96:24:f8:a1:b2:02:85:94:aa:75:06:db:85:c2:c5:f7:
3d:7d:bc:d9:24:cc:99:95:f1:2c:76:44:af:f4:4a:79:1c:23:
b3:b2:c2:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:48 2023 by rpki-client on console-ams.rpki-client.org