Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/qmF2J-Ik86vQG4YMs6xhpl_Dc2w.roa
File: qmF2J-Ik86vQG4YMs6xhpl_Dc2w.roa (raw, json)
Hash identifier: ZdoVBEPjS9r+tNNwKWDg9p2jYf+E/qEGpmtuwU0zLyc=
Subject key identifier: AA:61:76:27:E2:24:F3:AB:D0:1B:86:0C:B3:AC:61:A6:5F:C3:73:6C
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0AD9875F61E80954CBB94FC1824A1C
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/qmF2J-Ik86vQG4YMs6xhpl_Dc2w.roa
Signing time: Sun 01 Jan 2023 11:15:05 +0000
ROA not before: Sun 01 Jan 2023 11:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48179
IP address blocks: 62.85.128.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 17 Jul 2023 14:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:d9:87:5f:61:e8:09:54:cb:b9:4f:c1:82:4a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa617627e224f3abd01b860cb3ac61a65fc3736c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:47:03:80:94:aa:d8:c9:0d:2c:51:16:06:c6:
e9:f2:d2:6d:da:70:ce:c4:d2:e5:9c:11:02:b2:6a:
0e:a4:49:a2:ee:65:46:aa:7d:17:9f:a8:17:d6:0e:
db:39:34:0b:59:e6:bc:c2:c0:55:cd:84:da:32:ba:
b9:67:30:51:59:2d:ef:a2:2a:db:26:76:a0:2d:22:
c8:3e:ba:f0:f3:4c:9f:ff:21:20:70:23:c5:f5:7e:
e4:63:be:cd:e9:16:43:87:42:68:3e:31:b2:7a:7e:
f1:77:7a:bf:13:64:0a:b6:80:a9:37:8c:78:25:9b:
16:58:72:f3:e2:ce:47:0f:56:45:c8:16:f3:8f:2a:
da:92:63:a4:90:a7:d8:57:19:19:78:0f:19:f7:12:
cb:33:f3:98:8c:a0:9e:47:8c:79:7e:c1:4e:c9:ab:
a2:02:68:55:15:c8:c3:36:19:49:0e:9e:50:77:70:
5c:ff:eb:03:c2:87:01:08:43:20:1d:bc:ed:15:f5:
81:d4:cb:e7:fd:43:6b:dd:d1:7e:54:b3:42:41:5e:
6b:a1:94:8e:a4:61:f6:90:ee:ff:41:f6:58:cc:e6:
26:6d:79:b1:60:94:93:92:a1:ec:b8:65:4d:cd:41:
a0:7d:f2:73:03:17:8c:c0:df:99:88:8a:80:4d:11:
d4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:61:76:27:E2:24:F3:AB:D0:1B:86:0C:B3:AC:61:A6:5F:C3:73:6C
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/qmF2J-Ik86vQG4YMs6xhpl_Dc2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.85.128.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:2d:b1:52:32:f4:7e:bb:45:1d:f5:b9:6d:1b:0d:43:68:e1:
24:f1:09:bd:df:b6:83:c8:67:e0:08:87:c1:82:3c:c2:d2:b3:
a7:40:ff:07:ea:1a:b5:38:61:fd:90:03:35:20:0c:aa:55:3a:
10:78:5e:c0:b3:fa:da:c3:53:be:72:b1:28:6d:be:65:7e:48:
02:68:0d:f1:e6:74:8a:85:89:5b:f1:ed:8c:6e:1a:c4:02:a9:
98:dd:10:56:bf:0e:71:83:94:0e:1d:67:00:d4:91:5e:71:2b:
55:6f:75:53:81:ed:4f:f5:5d:a5:85:52:29:6c:a7:65:ea:c3:
15:c4:34:f0:72:a3:95:ab:15:44:29:df:1b:2f:a2:4a:a7:01:
f7:ca:1d:54:aa:07:ba:10:cb:eb:47:75:b8:f0:28:41:ec:10:
d6:26:f5:d0:b0:41:47:7f:20:b3:30:55:82:03:43:a7:cd:92:
17:8b:91:88:cb:99:c0:73:4e:1f:ff:63:16:d5:2b:9a:b7:03:
23:2a:3d:ac:15:d6:87:b7:98:c2:da:ef:69:90:18:e3:38:c7:
f1:5c:11:fe:ce:3e:e8:47:0c:76:4e:ba:08:69:d9:f8:92:6e:
5b:30:13:a2:a0:e5:80:d2:eb:3b:c4:81:6f:cf:3e:c5:d5:a6:
54:08:23:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org