Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/aF2eE7IgTWI-zoe-Itb9ps_Oics.roa
File: aF2eE7IgTWI-zoe-Itb9ps_Oics.roa (raw, json)
Hash identifier: eoRH6Bd08eVHhpwmTFRUitek/dagzHyaO1NI70R0Urs=
Subject key identifier: 68:5D:9E:13:B2:20:4D:62:3E:CE:87:BE:22:D6:FD:A6:CF:CE:89:CB
Certificate issuer: /CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Certificate serial: 01922EC7F3400488F9186AAADE510A22F4DB
Authority key identifier: 6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/aF2eE7IgTWI-zoe-Itb9ps_Oics.roa
Signing time: Thu 26 Sep 2024 14:41:48 +0000
ROA not before: Thu 26 Sep 2024 14:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 62.171.228.0/23 maxlen: 23
62.171.230.0/23 maxlen: 23
62.171.248.0/23 maxlen: 23
62.171.250.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 13 Oct 2024 19:18:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:c7:f3:40:04:88:f9:18:6a:aa:de:51:0a:22:f4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5836dde9b9daef35a8a7f74d6326f6b42da74d
Validity
Not Before: Sep 26 14:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=685d9e13b2204d623ece87be22d6fda6cfce89cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:52:59:c9:b4:99:4a:f7:67:6f:ba:01:d9:4b:
5b:b5:18:0a:e4:9d:a4:e6:55:e3:a6:e0:bf:28:b1:
86:6f:3e:23:55:da:08:4e:f8:b8:f2:47:30:ea:1d:
9f:60:b0:90:7c:53:39:b7:0a:d1:01:54:fb:35:5e:
49:89:55:b6:d0:5e:f6:cf:a6:0b:5c:78:80:f4:6a:
6d:41:ce:16:f8:31:83:a2:39:ec:1b:47:09:c6:8a:
82:54:4a:1b:90:0a:0a:63:9e:1d:34:ce:f8:15:f2:
5e:d3:20:6f:6d:f4:20:41:7a:3b:f0:d7:97:f0:af:
2e:99:b7:34:29:1f:8a:0e:0d:3d:ce:01:69:c4:9f:
d7:46:25:6a:0a:f4:0a:b5:da:fe:63:19:3a:d4:69:
4d:66:29:fd:4f:c8:72:3c:0b:b7:90:73:63:58:26:
18:d0:6d:5d:b7:29:06:9a:c7:39:a9:28:d0:7e:be:
6f:15:93:16:f1:73:11:f3:45:f0:8c:3a:2b:d1:15:
a0:34:a8:4b:4c:84:bf:fe:5e:ad:5c:3d:bd:a7:b3:
e9:43:72:71:27:11:fe:15:8e:ef:cf:4a:74:46:de:
83:d4:c7:51:d3:3e:15:8f:7a:15:2d:7b:e6:b4:38:
71:93:c3:aa:f9:3a:45:36:f4:5d:bf:ac:c7:39:a4:
d1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5D:9E:13:B2:20:4D:62:3E:CE:87:BE:22:D6:FD:A6:CF:CE:89:CB
X509v3 Authority Key Identifier:
keyid:6A:58:36:DD:E9:B9:DA:EF:35:A8:A7:F7:4D:63:26:F6:B4:2D:A7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/alg23em52u81qKf3TWMm9rQtp00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/aF2eE7IgTWI-zoe-Itb9ps_Oics.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/838032-db97-497f-8c95-c19942737e6d/1/alg23em52u81qKf3TWMm9rQtp00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.171.228.0/22
62.171.248.0/22
Signature Algorithm: sha256WithRSAEncryption
44:54:b6:15:60:0a:34:a8:fe:7f:7c:2a:ab:69:8b:a5:a7:6e:
c9:21:c0:b1:37:72:03:7d:85:87:d8:43:94:36:68:94:af:82:
1b:69:16:b8:6f:03:0e:bc:29:2c:7f:34:cd:9a:0c:4f:35:c9:
cb:cf:0b:7b:e8:5a:84:35:c5:36:1f:8c:96:34:93:61:fb:4f:
62:10:ee:f8:72:99:04:b9:4a:3d:31:2c:de:9a:61:9a:5e:ff:
da:11:91:bd:02:39:99:43:ea:70:49:2f:34:8b:5d:38:17:5f:
b5:aa:74:d5:04:95:42:20:84:ed:9a:a8:c4:55:72:55:af:db:
81:d3:15:02:27:8e:f2:2a:bd:90:0a:ae:a2:ce:56:70:ed:b2:
95:0c:a2:bf:4a:34:fd:23:5f:e6:e5:3b:aa:c6:16:42:89:d0:
08:02:a9:c9:24:78:4d:04:a7:c6:aa:50:f9:f8:3c:ee:ef:98:
7f:c9:76:59:5f:b2:d4:dc:9a:46:01:92:d0:80:c8:54:46:16:
58:2b:bd:18:95:5b:cd:e7:c2:58:b8:9b:27:a4:5b:cf:7f:bd:
3e:31:5a:5b:65:28:c9:37:9e:67:30:4a:5c:74:b1:5d:75:4b:
7a:45:e2:a3:24:dd:b9:cd:ce:f6:57:ff:25:a3:d6:12:7e:9e:
a2:5c:ba:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 13 22:30:29 2024 by rpki-client on console-ams.rpki-client.org