Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/33689f-8e48-4bf3-89f5-c76f7b6b0eb6/1/oSYxX_QVqQ8fZCSGDMaaLRSo0W8.roa
File: oSYxX_QVqQ8fZCSGDMaaLRSo0W8.roa (raw, json)
Hash identifier: aVW1PIE5jOAwp2NqN21FVwkaP9Ph6cprKQ6MFIVi7AA=
Subject key identifier: A1:26:31:5F:F4:15:A9:0F:1F:64:24:86:0C:C6:9A:2D:14:A8:D1:6F
Certificate issuer: /CN=31ff6a22937ef1640d83188dfcd7abb30fcc721e
Certificate serial: 01882996940BE9A11C6337F1EF6C1A3E7668
Authority key identifier: 31:FF:6A:22:93:7E:F1:64:0D:83:18:8D:FC:D7:AB:B3:0F:CC:72:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mf9qIpN-8WQNgxiN_Nersw_Mch4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/33689f-8e48-4bf3-89f5-c76f7b6b0eb6/1/oSYxX_QVqQ8fZCSGDMaaLRSo0W8.roa
Signing time: Wed 17 May 2023 12:01:54 +0000
ROA not before: Wed 17 May 2023 12:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200146
IP address blocks: 62.3.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:96:94:0b:e9:a1:1c:63:37:f1:ef:6c:1a:3e:76:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31ff6a22937ef1640d83188dfcd7abb30fcc721e
Validity
Not Before: May 17 12:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a126315ff415a90f1f6424860cc69a2d14a8d16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ce:88:09:47:93:45:ee:a4:ea:21:57:22:04:
59:38:fd:21:34:61:71:c1:56:4a:8f:6d:6c:da:3a:
85:83:4e:47:47:80:61:a0:dd:a2:4d:72:e4:43:16:
e0:3a:aa:3a:08:17:be:b9:c2:77:c9:9c:bc:7b:af:
33:90:d1:ce:0b:31:36:53:58:d5:9a:5c:19:30:44:
7c:2b:e5:f1:6a:e2:d3:d7:8b:e1:ab:e9:59:4f:f2:
b3:cc:89:5f:db:60:89:2e:3d:24:d7:76:5b:5c:fa:
76:3d:b5:00:a9:57:ec:c4:d4:87:b4:8c:e5:15:da:
c1:31:d5:64:fa:4d:68:6b:d4:aa:57:61:ea:0d:fa:
c9:d8:66:52:5c:53:88:22:25:0d:ba:b5:59:30:ad:
bb:70:fd:36:08:3c:bf:f6:e1:ae:2a:70:c9:94:03:
0a:58:19:50:6f:71:29:1f:7f:f5:bb:e6:74:31:21:
5f:35:be:fa:02:28:b4:42:75:fb:d1:5f:4f:bb:23:
b0:9c:e6:84:95:76:ec:9f:a7:f3:43:6e:87:d6:aa:
b6:df:7b:40:89:1d:d4:40:9a:8c:fd:da:a4:df:52:
69:62:3d:ec:ec:9a:29:52:61:40:28:85:3c:ee:9f:
8a:c4:b5:23:4b:e4:44:71:78:dc:6a:aa:22:2c:ba:
1b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:26:31:5F:F4:15:A9:0F:1F:64:24:86:0C:C6:9A:2D:14:A8:D1:6F
X509v3 Authority Key Identifier:
keyid:31:FF:6A:22:93:7E:F1:64:0D:83:18:8D:FC:D7:AB:B3:0F:CC:72:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mf9qIpN-8WQNgxiN_Nersw_Mch4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/33689f-8e48-4bf3-89f5-c76f7b6b0eb6/1/oSYxX_QVqQ8fZCSGDMaaLRSo0W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/33689f-8e48-4bf3-89f5-c76f7b6b0eb6/1/Mf9qIpN-8WQNgxiN_Nersw_Mch4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.47.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:02:9b:c2:4c:8c:44:8a:aa:67:e8:77:cf:98:c8:75:e9:7f:
a6:fb:c1:4b:6c:b9:c4:d9:34:00:78:f8:d3:c6:06:ad:a6:25:
13:d5:38:c6:53:48:9f:0b:17:ff:c1:ab:ac:18:80:6c:88:4f:
ac:fc:da:87:6b:7f:ff:8d:46:70:be:5e:2a:6e:99:81:17:14:
1a:b1:11:ca:58:12:8f:f7:9f:67:2c:53:22:f8:fa:f7:dc:e1:
f3:bc:dc:30:8d:8f:3e:bf:73:3b:eb:f0:16:97:19:d9:e6:51:
3e:47:93:c1:2d:b2:6c:75:49:96:bd:47:57:31:8c:ea:ed:eb:
0a:fd:40:4e:95:c5:de:1f:7e:4e:a3:46:45:b7:b6:9d:7f:d1:
d9:6d:e3:fb:3c:3e:18:4a:bb:08:98:da:b1:87:03:03:86:63:
9a:35:a4:db:82:d4:92:3d:ac:1e:ed:e6:61:9f:43:13:c2:0e:
ca:b1:b9:5f:b9:32:f3:f5:64:3f:aa:e0:1f:41:c2:79:60:dc:
8a:22:a8:b3:61:ff:a9:ef:b0:13:54:9b:5f:fd:e1:62:b9:2e:
f2:10:78:54:da:4a:00:55:a9:5e:a1:33:7c:69:52:12:bd:e1:
ca:43:d2:f2:65:98:e1:e8:c0:f4:4e:2e:3f:b0:7e:b2:53:5d:
0f:3f:b3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:12 2024 by rpki-client on console-fra.rpki-client.org