Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/y7MqQCrGxDlaklyhYklkeFgv_7M.roa
File: y7MqQCrGxDlaklyhYklkeFgv_7M.roa (raw, json)
Hash identifier: +vADYs2O2j0NUi4dROp+bO1cbg4imYA0HEMXJOa2vak=
Subject key identifier: CB:B3:2A:40:2A:C6:C4:39:5A:92:5C:A1:62:49:64:78:58:2F:FF:B3
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 0185735892F46A2E3B63B77A0BECBD59E76F
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/y7MqQCrGxDlaklyhYklkeFgv_7M.roa
Signing time: Mon 02 Jan 2023 16:37:42 +0000
ROA not before: Mon 02 Jan 2023 16:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64417
IP address blocks: 62.3.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 13:58:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:58:92:f4:6a:2e:3b:63:b7:7a:0b:ec:bd:59:e7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Jan 2 16:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbb32a402ac6c4395a925ca162496478582fffb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d3:87:59:e4:df:4e:e5:eb:28:52:5a:a7:d4:
e5:55:10:5a:57:97:d3:77:d2:5b:6a:77:50:54:0a:
86:30:95:3a:83:f7:b2:3a:86:07:c5:a3:3a:b5:c3:
78:71:af:0b:25:fd:f7:3c:93:a3:41:41:67:2f:6a:
1a:43:00:37:f9:34:1d:0a:02:04:71:1d:4b:dc:d6:
b1:ce:51:8e:b3:70:36:7e:a4:4c:c0:d5:3e:88:7b:
07:31:3d:88:e3:9e:d8:ed:41:5e:ae:a6:89:7a:d6:
0c:ab:c6:4a:d9:c1:5d:e9:d9:87:55:3f:c3:6b:ff:
5b:bb:0b:6f:6a:a8:08:9e:49:98:cc:c3:6c:df:f3:
de:1d:ab:57:b7:f6:f1:a3:c7:fd:90:38:39:ac:da:
d0:ca:6f:3c:68:14:e5:7a:73:7f:68:83:63:f1:6c:
f3:7f:11:da:0f:60:86:93:aa:4b:4d:2c:78:24:e0:
55:6e:4e:44:90:e0:08:35:36:09:c3:cd:e5:87:cb:
3d:82:bb:47:ef:49:be:a7:52:e2:72:96:ea:4d:79:
8b:2f:50:4b:47:24:3f:fc:a9:ea:cf:39:17:f3:60:
43:56:06:9a:db:10:2d:0e:2e:ba:bd:fa:08:25:a1:
c7:05:58:5e:ab:85:55:e5:f3:17:5f:a0:a4:d1:6e:
07:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B3:2A:40:2A:C6:C4:39:5A:92:5C:A1:62:49:64:78:58:2F:FF:B3
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/y7MqQCrGxDlaklyhYklkeFgv_7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.28.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e3:35:f6:f6:bb:09:4f:cf:b7:35:59:72:40:00:29:30:9c:
2a:89:5d:17:55:93:0b:c1:e4:da:6c:bf:c5:fe:46:7f:76:1f:
c0:e1:31:27:c8:9e:ff:e2:3a:fe:bf:34:a7:9f:d4:85:31:bc:
53:11:5b:a2:43:d9:ce:6d:0e:88:db:4b:6b:5d:8f:97:29:35:
21:56:40:e5:48:ca:e4:71:01:a4:73:14:f5:7a:c0:8a:77:3e:
8a:23:51:f0:67:58:05:13:0d:85:29:2e:e5:bb:a0:55:61:27:
6d:13:11:25:38:b1:08:40:d7:62:b0:99:86:72:c8:1a:39:25:
60:bd:8a:eb:3d:94:44:07:72:10:d0:d3:97:73:11:49:9a:61:
4c:83:15:4b:e4:2b:ed:67:0d:dd:4e:2a:64:b5:41:a9:27:e2:
1c:ff:5c:98:62:18:7a:cb:ee:9b:79:c7:a2:da:67:a1:22:c1:
68:fd:24:18:99:ae:57:6b:02:21:80:83:d8:a0:31:59:8f:f4:
47:ab:a0:11:f0:e7:01:94:4f:5b:25:24:12:44:97:95:1b:c9:
aa:8d:58:79:f9:d0:1e:77:03:8d:10:62:14:f4:ca:eb:71:1c:
81:7f:72:17:0a:fc:ce:6f:f0:d5:7a:47:79:8f:d8:ec:02:12:
d2:ff:c0:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzWJL0ai47Y7d6C+y9WedvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4
NWZmOGMwHhcNMjMwMTAyMTYzNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmIzMmE0MDJhYzZjNDM5NWE5MjVjYTE2MjQ5NjQ3ODU4MmZmZmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9OHWeTfTuXrKFJap9TlVRBaV5fT
d9JbandQVAqGMJU6g/eyOoYHxaM6tcN4ca8LJf33PJOjQUFnL2oaQwA3+TQdCgIE
cR1L3NaxzlGOs3A2fqRMwNU+iHsHMT2I457Y7UFerqaJetYMq8ZK2cFd6dmHVT/D
a/9buwtvaqgInkmYzMNs3/PeHatXt/bxo8f9kDg5rNrQym88aBTlenN/aINj8Wzz
fxHaD2CGk6pLTSx4JOBVbk5EkOAINTYJw83lh8s9grtH70m+p1LicpbqTXmLL1BL
RyQ//KnqzzkX82BDVgaa2xAtDi66vfoIJaHHBVheq4VV5fMXX6Ck0W4H2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMuzKkAqxsQ5WpJcoWJJZHhYL/+zMB8GA1UdIwQY
MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt
MjVkYmY0MzgwNGM1LzEveTdNcVFDckd4RGxha2x5aFlrbGtlRmd2XzdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1
LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgMcMA0G
CSqGSIb3DQEBCwUAA4IBAQCb4zX29rsJT8+3NVlyQAApMJwqiV0XVZMLweTabL/F
/kZ/dh/A4TEnyJ7/4jr+vzSnn9SFMbxTEVuiQ9nObQ6I20trXY+XKTUhVkDlSMrk
cQGkcxT1esCKdz6KI1HwZ1gFEw2FKS7lu6BVYSdtExElOLEIQNdisJmGcsgaOSVg
vYrrPZREB3IQ0NOXcxFJmmFMgxVL5CvtZw3dTipktUGpJ+Ic/1yYYhh6y+6becei
2mehIsFo/SQYma5XawIhgIPYoDFZj/RHq6AR8OcBlE9bJSQSRJeVG8mqjVh5+dAe
dwONEGIU9MrrcRyBf3IXCvzOb/DVekd5j9jsAhLS/8Dn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:40 2024 by rpki-client on console-ams.rpki-client.org