Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Dz5ThWGIWBOE-lxEKNhSO5CpfGE.roa
File: Dz5ThWGIWBOE-lxEKNhSO5CpfGE.roa (raw, json)
Hash identifier: esr0VoITZdEYslN8pWXAKls7OGl90SvxJ2qLrX6gGEo=
Subject key identifier: 0F:3E:53:85:61:88:58:13:84:FA:5C:44:28:D8:52:3B:90:A9:7C:61
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E8C2EEC80D6DA795AA9D978B0AC6F
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Dz5ThWGIWBOE-lxEKNhSO5CpfGE.roa
Signing time: Mon 02 Jan 2023 08:34:53 +0000
ROA not before: Mon 02 Jan 2023 08:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60915
IP address blocks: 62.76.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:8c:2e:ec:80:d6:da:79:5a:a9:d9:78:b0:ac:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f3e53856188581384fa5c4428d8523b90a97c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:07:86:75:96:aa:97:83:89:36:0e:81:6c:98:
23:8f:b4:65:84:14:11:6b:dc:61:27:78:d1:86:f3:
45:90:a7:08:62:84:9f:c9:31:df:e1:c8:f3:06:cc:
1d:68:14:42:3e:1a:6c:5d:8d:e3:93:3e:2d:23:3b:
4c:83:c6:4d:1a:96:89:36:27:79:c3:0e:32:a4:11:
bd:6c:33:5f:08:3d:1b:c9:4b:9a:0d:29:2f:a1:d3:
25:f1:a8:21:bf:d8:fd:1b:2a:b9:d2:90:59:fb:d8:
9d:24:f4:a9:5d:c3:73:2a:f0:0d:c8:e3:53:7c:54:
e5:2f:92:76:8a:91:e2:c4:81:67:22:03:a5:f5:89:
55:29:63:24:50:e6:18:82:02:f2:cf:e5:64:37:34:
6b:6a:6e:87:0e:d9:72:64:b5:79:00:28:cf:3e:32:
3d:a7:c8:44:8d:0b:de:eb:10:d3:91:2c:68:21:ee:
65:99:20:c9:ab:59:d7:d2:8c:7a:93:41:28:a9:d2:
41:ee:84:2a:42:26:9e:5c:30:b0:cc:e5:47:f1:5f:
ab:af:24:88:45:70:97:f3:9f:8a:14:30:e2:6d:38:
0d:a9:75:ed:d8:bf:be:20:60:db:45:83:68:50:d2:
33:a5:71:ee:0f:17:df:3d:b4:ae:2b:12:e6:5c:fe:
14:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:3E:53:85:61:88:58:13:84:FA:5C:44:28:D8:52:3B:90:A9:7C:61
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Dz5ThWGIWBOE-lxEKNhSO5CpfGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.9.0/24
Signature Algorithm: sha256WithRSAEncryption
36:b2:00:bf:80:3e:d8:cc:13:81:5e:24:6c:ea:89:ff:61:99:
40:a7:65:37:e2:5f:9f:16:4a:5c:b3:18:a9:c6:21:fe:f3:8c:
69:e4:6d:33:b3:58:3b:58:28:8c:4e:fc:97:85:e4:2c:d2:1b:
4d:33:b9:96:ca:4a:a7:87:f7:3a:e3:0f:5a:bc:38:73:56:7e:
7e:ec:82:75:e4:8f:c0:06:ff:67:05:d1:67:9d:cc:15:f0:6c:
84:da:49:e1:89:73:2c:8c:de:57:ce:08:57:aa:bd:e6:79:f3:
7e:1e:a4:08:42:17:4e:e2:02:2c:39:82:b8:9c:75:a1:dd:93:
22:98:bc:cf:a5:dc:9d:f0:fe:42:59:59:3f:09:05:af:b3:08:
13:78:35:28:f6:25:29:2c:4d:db:ca:f4:b8:14:bb:c2:0a:16:
22:48:1b:ba:d6:af:78:59:8a:32:29:71:cf:52:29:bc:70:ea:
ca:44:dd:d2:bd:fc:59:1f:17:52:4b:67:4f:84:08:4d:8f:23:
98:2a:f6:e6:d1:ec:d8:b7:4a:7b:d1:66:be:19:15:e0:aa:5f:
a3:d0:82:fc:e1:36:97:16:d5:50:9c:ea:7a:d2:30:18:c0:6e:
5c:41:4b:a9:16:85:80:9b:33:71:a6:d3:7f:15:e9:a4:38:5d:
42:48:d5:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org