Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/y4H7wzFT3GCGlE3Ih-aadOa2HWI.roa
File: y4H7wzFT3GCGlE3Ih-aadOa2HWI.roa (raw, json)
Hash identifier: Gi+PK6VWZp9F5/puonoNYEvWgGhnus1G8oYkUje+LM8=
Subject key identifier: CB:81:FB:C3:31:53:DC:60:86:94:4D:C8:87:E6:9A:74:E6:B6:1D:62
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0ACEC18C74AE89D42FFBE873D3E2F9
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/y4H7wzFT3GCGlE3Ih-aadOa2HWI.roa
Signing time: Sun 01 Jan 2023 11:15:02 +0000
ROA not before: Sun 01 Jan 2023 11:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29322
IP address blocks: 62.39.100.0/24 maxlen: 24
62.39.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:ce:c1:8c:74:ae:89:d4:2f:fb:e8:73:d3:e2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb81fbc33153dc6086944dc887e69a74e6b61d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4a:4f:5f:76:0c:22:19:86:29:b6:cc:a2:8f:
ba:05:78:fe:55:c2:cb:28:0a:c7:ca:28:ab:82:35:
c6:4c:dd:80:d7:0f:31:41:7e:e5:47:e2:77:dc:87:
85:83:23:ff:95:7a:d2:25:5f:0d:cc:a2:24:5b:3e:
f6:e2:26:e0:97:bd:e1:48:8a:e8:f1:73:74:3c:3c:
e1:74:eb:bc:73:74:8d:1d:6b:c8:cd:31:22:ec:1d:
9a:5f:14:df:b1:50:ff:8a:67:d3:72:7e:97:3c:52:
95:c1:40:f7:b8:f1:55:04:ac:20:cc:ab:e9:6a:92:
78:ef:ef:cf:c8:05:20:5d:1e:58:43:93:b5:ab:1e:
22:1a:7f:bf:de:44:de:f5:f5:89:7e:5c:44:1c:04:
4e:9a:81:a0:a3:a2:9a:c3:01:bc:7b:02:2c:bf:1e:
fe:e5:6f:00:aa:c3:cd:23:63:53:fd:09:60:b4:e9:
e5:bc:9a:07:bf:1f:9c:d8:ae:f2:3e:f0:d9:07:5a:
ce:7d:5a:02:cc:3c:5e:aa:9d:c0:ca:8a:43:70:f8:
8d:2e:9c:50:92:3e:4f:3f:dd:22:57:cb:d0:59:0d:
05:fc:41:2a:b6:ee:68:2b:8a:84:b6:eb:7b:86:20:
fc:fc:a4:0d:0b:97:ba:8a:6f:a0:61:e3:6f:96:90:
1f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:81:FB:C3:31:53:DC:60:86:94:4D:C8:87:E6:9A:74:E6:B6:1D:62
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/y4H7wzFT3GCGlE3Ih-aadOa2HWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.39.77.0/24
62.39.100.0/24
Signature Algorithm: sha256WithRSAEncryption
62:26:60:e5:49:2e:7d:78:c3:f3:c0:a2:f0:8f:a3:22:b7:a2:
fc:9b:99:ce:5e:7d:84:4b:b6:a4:81:fd:eb:55:58:78:74:f7:
f5:82:0a:b5:47:83:98:12:b9:39:ea:ce:99:19:62:a0:38:04:
76:6e:b0:d7:b3:76:31:21:be:73:a8:03:09:1c:e3:d6:44:37:
90:de:0a:bf:b1:2d:a0:fc:34:bd:1e:c6:2c:b5:54:79:0c:50:
97:77:d6:05:5f:2b:62:5c:7a:e6:f6:4e:ed:64:5c:85:51:a5:
fc:c7:ae:67:40:fa:ab:e4:d8:c7:16:d0:f0:bb:19:5e:58:e7:
bd:78:f3:4a:b9:e1:01:6e:ed:4e:54:07:35:70:a5:26:09:a1:
46:7b:73:d0:4b:cf:30:12:4a:7a:a3:20:68:7f:7d:8a:4b:b3:
df:3c:cb:df:2c:de:d9:1f:bb:b8:33:32:ff:cd:6a:c2:e8:6a:
fc:f9:c4:cc:42:99:0e:e7:94:3f:ad:40:fd:26:4b:9d:01:87:
2f:d8:11:30:25:39:6f:61:cf:23:5b:e3:62:a6:84:c0:d1:26:
54:c6:87:0f:fd:ca:b1:9d:26:28:a4:43:a6:c7:d6:c6:49:b0:
56:49:3c:cf:95:17:ff:55:2a:ba:e5:e2:62:2b:d3:d9:c1:7d:
00:c0:28:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org