Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mKxYwCT1Rt19f06U1ie5_F_YDPg.roa
File: mKxYwCT1Rt19f06U1ie5_F_YDPg.roa (raw, json)
Hash identifier: YzXTxJSv0NgFXuEjBLUv8LGzBbKnr4Cnzj0btcyBlw4=
Subject key identifier: 98:AC:58:C0:24:F5:46:DD:7D:7F:4E:94:D6:27:B9:FC:5F:D8:0C:F8
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E8FE3D88E99BEF9EB16FB3FF25E12
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mKxYwCT1Rt19f06U1ie5_F_YDPg.roa
Signing time: Mon 02 Jan 2023 08:34:54 +0000
ROA not before: Mon 02 Jan 2023 08:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211078
IP address blocks: 62.76.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:8f:e3:d8:8e:99:be:f9:eb:16:fb:3f:f2:5e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98ac58c024f546dd7d7f4e94d627b9fc5fd80cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:17:20:c9:40:4f:c9:58:d4:f9:22:af:ab:
d0:57:67:0e:b6:f3:e9:a0:5a:66:95:cf:a9:66:0f:
68:d3:d8:bb:f4:8c:27:40:67:6f:14:0a:ff:f5:7e:
af:42:47:b1:b0:8f:12:51:83:cc:61:c1:23:e2:24:
4a:73:e8:e3:b8:0e:79:46:1a:c3:f6:b0:4e:e6:1b:
d1:95:85:a0:2f:e7:b5:8a:fd:96:b0:f3:15:7c:be:
f7:ec:7b:2e:26:0e:ab:3e:5c:9e:5e:31:1f:b6:5c:
d6:10:6b:3e:e5:d1:98:9d:a5:e4:da:5e:47:ea:c6:
77:58:ec:d8:0e:77:60:02:55:e5:a8:a0:34:95:b7:
ef:ce:59:f1:1c:7c:7d:2e:4d:1c:32:b7:17:9e:21:
a3:95:60:2f:4e:6d:9b:02:00:8a:8f:5f:c4:77:86:
06:80:ef:14:e5:9d:24:ca:a0:41:ce:e0:cd:ca:c6:
0b:26:5e:a2:5c:77:36:ec:03:0a:fd:cf:b2:5c:24:
65:3c:c7:70:5c:c3:4b:8f:d7:16:8d:6e:e5:79:92:
af:79:ec:06:89:8e:27:8c:4d:d8:69:0d:8a:12:61:
5c:e2:d7:d6:3f:69:b8:f5:e2:fe:a7:86:15:57:04:
a3:09:6b:d8:bb:e9:c7:17:05:7a:05:0f:e2:6d:1d:
8a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AC:58:C0:24:F5:46:DD:7D:7F:4E:94:D6:27:B9:FC:5F:D8:0C:F8
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/mKxYwCT1Rt19f06U1ie5_F_YDPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.14.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:63:86:0d:56:d8:c6:8d:08:6a:ca:4e:f5:94:a8:de:b1:25:
f7:39:83:24:fd:c6:16:30:4a:43:70:a5:19:7e:56:e7:20:7a:
83:1a:f5:12:ae:b8:a6:1a:fb:19:89:61:6d:25:22:81:fc:83:
bc:88:c2:b6:7d:9d:be:66:11:03:82:f4:d0:08:17:77:0c:03:
e2:e6:af:ba:4f:05:c3:b4:dd:20:a7:44:1a:d7:ac:56:4e:d6:
3e:a9:54:02:5c:0e:de:d3:62:75:4c:46:ba:52:46:44:55:1c:
e0:fe:e4:c7:0e:24:ed:70:f1:79:05:82:de:e4:ce:14:9c:36:
1a:75:8c:e6:16:2f:8d:26:44:e7:13:6d:ee:39:a8:69:fc:90:
0b:dc:74:9c:93:08:a6:da:e3:91:6b:4c:d4:9d:cb:29:97:de:
b3:be:76:7d:f3:20:8f:57:91:28:74:43:33:78:53:53:53:53:
be:7a:12:08:88:3c:0d:d4:0c:be:33:04:f3:89:30:c5:89:4e:
e8:1d:3a:43:b1:64:f1:7a:b7:a8:6f:8f:18:98:f2:6e:72:71:
c7:06:01:b2:96:dc:dd:64:b7:2c:8d:9c:a2:30:83:ef:4f:91:
9a:e1:47:48:32:4b:25:7e:dd:1f:bc:cb:1c:cf:37:63:a2:1c:
3f:c6:52:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org