Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/23dKPYSpY0rBnZHAqMNLGTIGVVo.roa
File: 23dKPYSpY0rBnZHAqMNLGTIGVVo.roa (raw, json)
Hash identifier: 9i0uSFYYJm+Qq1TT+J38Y17gjPZjM7Kllo9RFBcadxo=
Subject key identifier: DB:77:4A:3D:84:A9:63:4A:C1:9D:91:C0:A8:C3:4B:19:32:06:55:5A
Certificate issuer: /CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Certificate serial: 019422FBF5E1858781750183ECF0BF284629
Authority key identifier: 16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/23dKPYSpY0rBnZHAqMNLGTIGVVo.roa
Signing time: Wed 01 Jan 2025 17:48:44 +0000
ROA not before: Wed 01 Jan 2025 17:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 54339
IP address blocks: 62.112.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Feb 2025 08:13:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:f5:e1:85:87:81:75:01:83:ec:f0:bf:28:46:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Validity
Not Before: Jan 1 17:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db774a3d84a9634ac19d91c0a8c34b193206555a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ee:52:85:1b:7b:7d:78:5a:86:6b:dd:3e:ea:
bd:a3:d4:8b:19:75:22:40:f6:b4:ba:55:34:5c:51:
cf:32:7b:c4:03:4a:6a:df:46:8e:d0:89:b7:5d:c5:
76:9a:c9:34:11:a2:92:cd:3a:b7:f9:8c:17:59:c8:
ac:d3:f6:22:37:56:1e:94:5b:77:79:22:27:5f:a4:
24:71:5d:d4:18:f3:31:8c:a1:16:52:ce:c9:aa:a4:
6d:e6:1a:8c:72:46:13:f8:8d:fe:6c:0b:15:03:1f:
a5:86:c2:3c:5f:94:1a:82:e6:62:8e:bd:20:5f:c6:
a9:13:8f:d8:c9:af:14:aa:7d:0f:4a:c6:48:2c:9b:
2b:c6:41:29:96:82:39:bc:f8:6f:46:52:b8:c2:4c:
fb:31:31:80:db:b4:b8:e3:ff:1b:68:9d:2e:7e:71:
46:9e:7f:ad:39:62:6e:38:d7:ec:5c:51:cc:01:34:
79:cd:79:60:d6:ee:96:11:97:d5:97:94:38:69:a2:
c5:e0:27:cc:0a:06:5a:09:de:1c:c7:a9:3d:6a:19:
3f:a4:fc:09:be:79:04:b0:2b:07:fc:e0:91:74:d8:
7b:76:5d:4b:43:df:de:17:4d:0f:5f:95:dc:ee:d0:
3b:83:c2:70:fa:f7:1c:16:a6:e6:a1:25:c0:e8:da:
da:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:77:4A:3D:84:A9:63:4A:C1:9D:91:C0:A8:C3:4B:19:32:06:55:5A
X509v3 Authority Key Identifier:
keyid:16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/23dKPYSpY0rBnZHAqMNLGTIGVVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.206.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:cb:b7:cd:f3:96:e2:97:a9:41:c5:aa:dd:1d:d1:45:cf:e9:
11:f5:00:4f:d2:31:69:70:be:a4:e8:e9:ff:54:15:13:47:51:
f5:af:d1:ff:ee:83:c2:7b:3d:be:b4:38:75:f1:10:65:f9:ad:
39:e7:6f:54:69:dc:2c:bc:82:da:bd:60:52:32:8b:de:17:ab:
5e:c6:f4:ec:47:cf:d7:e3:60:2f:03:42:0c:cc:ab:72:bf:ea:
fd:fb:cf:78:b8:bc:53:9c:e2:54:0b:aa:d8:03:be:12:fc:63:
cb:6d:bc:18:75:a0:b6:a3:42:b3:88:0b:30:9c:97:2e:ae:24:
11:fe:46:b3:42:cc:b5:1e:b7:17:ea:33:0f:f6:69:33:ef:bc:
81:2a:a9:f2:a5:4c:61:82:8b:30:1b:64:22:00:b0:38:86:ff:
26:2e:3e:c5:e7:52:97:9f:24:b0:3a:ef:46:aa:3e:83:52:a8:
9c:b0:f8:48:ec:75:9c:dc:10:84:54:72:22:09:64:97:3b:a5:
5c:c8:86:89:21:e9:b5:40:4d:fd:49:97:26:bb:b3:4d:31:25:
39:0f:7f:b7:73:ac:48:03:47:bc:12:41:ea:16:4c:92:28:d8:
28:a8:76:87:41:a1:d5:f9:4b:4b:e2:d4:f3:44:a4:7a:70:8d:
08:0f:4f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:58:55 2025 by rpki-client