Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/BpF9eu2c_vTYeUv_zSNr7ko2jHE.roa
File: BpF9eu2c_vTYeUv_zSNr7ko2jHE.roa (raw, json)
Hash identifier: iezDbK2ILretBc+rgRgdikGX0wN71suvDKlroFn4rko=
Subject key identifier: 06:91:7D:7A:ED:9C:FE:F4:D8:79:4B:FF:CD:23:6B:EE:4A:36:8C:71
Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Certificate serial: 0186DE65BBCE9D390A3D5CAF6C08865EEB8C
Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/BpF9eu2c_vTYeUv_zSNr7ko2jHE.roa
Signing time: Tue 14 Mar 2023 04:34:14 +0000
ROA not before: Tue 14 Mar 2023 04:34:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44709
IP address blocks: 62.219.83.0/24 maxlen: 24
62.219.197.0/24 maxlen: 24
62.219.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 03:46:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:de:65:bb:ce:9d:39:0a:3d:5c:af:6c:08:86:5e:eb:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb
Validity
Not Before: Mar 14 04:34:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06917d7aed9cfef4d8794bffcd236bee4a368c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bc:f1:b5:b9:33:11:1d:f8:77:2a:67:d3:fb:
3d:e5:40:b3:54:3e:e6:37:29:41:0e:96:6b:45:84:
5a:2c:63:76:53:3a:36:8b:40:df:4b:ca:1c:74:01:
88:13:13:0e:8e:1b:90:ac:ff:af:c7:d3:de:41:e8:
9d:27:3f:98:4d:87:d6:09:ec:74:1e:a6:cb:9f:de:
b7:eb:75:64:51:bc:9c:03:58:61:af:6c:6e:ac:51:
47:bb:e5:22:13:44:a9:c6:07:3c:02:17:3d:c2:ce:
ef:a3:d8:d4:02:66:68:16:c3:0c:4d:0d:de:33:93:
2f:ed:a5:d3:f1:eb:4c:57:82:f9:93:22:05:98:f8:
64:0d:c3:a4:90:60:b2:03:4f:6b:32:ec:dc:59:24:
00:a9:e5:2b:de:50:92:68:35:fa:f3:0b:fd:9d:2f:
7f:06:df:44:2c:eb:0a:82:81:21:1c:98:6d:1b:c4:
c9:17:65:35:db:ef:65:a4:22:4e:8c:b8:5c:c5:bd:
d3:50:2a:9b:3c:d1:aa:6c:d9:a1:99:d1:ab:16:58:
7b:3b:fe:d8:f6:2b:75:d2:6a:92:05:1d:1d:7f:15:
49:72:8f:db:2e:dc:9c:1d:5c:ba:96:ae:92:11:cc:
ce:04:77:c3:31:ee:4e:20:bc:d3:90:5a:f8:20:84:
a3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:91:7D:7A:ED:9C:FE:F4:D8:79:4B:FF:CD:23:6B:EE:4A:36:8C:71
X509v3 Authority Key Identifier:
keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/BpF9eu2c_vTYeUv_zSNr7ko2jHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.219.14.0/24
62.219.83.0/24
62.219.197.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:b4:87:2a:67:ce:52:ff:a7:6c:ea:80:e3:07:f5:94:af:76:
3e:dd:ad:09:f7:3d:1e:1f:38:56:ca:c2:6c:c8:a7:bf:39:0e:
27:2d:ec:4d:1f:4d:92:8d:4c:6d:c8:14:45:d8:63:32:59:ec:
04:39:e5:ad:06:49:65:0e:96:54:d2:d8:01:2a:ee:61:87:5b:
7d:ac:b8:87:0c:e3:92:8e:51:e5:a5:fb:c9:69:28:19:2a:46:
26:b0:1a:c2:2d:65:70:90:24:dd:06:ee:b7:74:25:bd:fe:5f:
08:0a:02:00:bd:14:ae:5d:cf:9e:97:5d:20:e2:df:4e:ab:4d:
bc:25:68:fa:b8:c7:d3:32:b2:12:77:82:40:0a:38:1d:33:e0:
ae:52:bd:90:51:ba:66:61:e9:b6:91:0c:98:2a:a9:0d:52:2a:
fb:b8:e8:7f:ae:77:9a:3c:b8:23:52:06:33:54:8e:d5:43:97:
fe:68:30:9d:2a:1e:95:c9:0e:9c:ef:fd:f2:a1:f9:a8:72:f3:
82:fe:f6:23:58:64:10:00:59:74:ef:60:55:e6:0d:81:78:b2:
f7:74:1f:82:30:40:56:74:10:c8:8f:6d:29:65:63:4c:57:18:
f6:e8:c4:cd:8f:d7:54:4f:b5:ed:b4:77:b3:75:ef:47:cb:de:
ca:d5:b8:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:16 2024 by rpki-client on console-ams.rpki-client.org