Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/I1RvJrsDn0plhwEtSMDhW5OowaQ.roa
File: I1RvJrsDn0plhwEtSMDhW5OowaQ.roa (raw, json)
Hash identifier: JfbuMpZOZAsLAnLYP6j1grr21l8d1XNRMBBowH7Jg+k=
Subject key identifier: 23:54:6F:26:BB:03:9F:4A:65:87:01:2D:48:C0:E1:5B:93:A8:C1:A4
Certificate issuer: /CN=d0438c15bc192368b10720a66a79410ae787724b
Certificate serial: 0185711E3B9330D7F9DDECF99685B341C2B9
Authority key identifier: D0:43:8C:15:BC:19:23:68:B1:07:20:A6:6A:79:41:0A:E7:87:72:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EOMFbwZI2ixByCmanlBCueHcks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/I1RvJrsDn0plhwEtSMDhW5OowaQ.roa
Signing time: Mon 02 Jan 2023 06:14:44 +0000
ROA not before: Mon 02 Jan 2023 06:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 62.68.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:3b:93:30:d7:f9:dd:ec:f9:96:85:b3:41:c2:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0438c15bc192368b10720a66a79410ae787724b
Validity
Not Before: Jan 2 06:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23546f26bb039f4a6587012d48c0e15b93a8c1a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:17:8d:7d:ca:82:7a:08:ad:7d:ec:f7:cf:82:
09:cf:c0:63:94:ac:fc:3b:6e:b0:8b:50:bf:cb:cd:
4e:61:74:98:46:87:3a:1e:7c:60:f9:8b:fc:27:1c:
15:84:11:53:6c:0a:12:b8:e1:83:b3:7f:cf:d8:72:
d8:07:d2:16:c6:6c:8b:61:39:d4:ec:69:de:ad:ab:
4c:e3:1f:ba:d0:1a:d6:bf:32:dc:46:b7:f4:c5:3e:
5d:52:df:e2:75:94:cc:b5:34:dc:11:e3:d3:5f:19:
ab:0e:9d:ce:3e:26:b9:4a:89:1c:78:07:34:43:da:
71:3b:45:a0:15:f7:34:e0:7e:d1:a4:5e:8a:59:28:
56:52:9b:17:43:92:fe:9d:c4:2b:93:52:85:e9:49:
59:63:a3:1b:47:04:e7:2f:74:a2:1c:bf:97:b6:a1:
25:c2:34:5e:36:80:b3:cf:ce:a7:87:f9:f3:6b:64:
33:26:12:a9:d1:1c:f1:fd:a1:07:4f:70:e1:bc:96:
8b:fc:84:54:c7:0a:af:1b:e0:c0:a5:28:0c:78:f5:
a6:20:77:34:ca:19:78:2b:46:01:b0:26:0f:e0:c5:
53:fa:8a:4b:63:90:ea:5d:be:c1:ac:63:e7:7e:b9:
a3:a4:18:cc:87:24:4f:38:81:a3:23:25:ad:d7:ed:
d0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:54:6F:26:BB:03:9F:4A:65:87:01:2D:48:C0:E1:5B:93:A8:C1:A4
X509v3 Authority Key Identifier:
keyid:D0:43:8C:15:BC:19:23:68:B1:07:20:A6:6A:79:41:0A:E7:87:72:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EOMFbwZI2ixByCmanlBCueHcks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/I1RvJrsDn0plhwEtSMDhW5OowaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5a7353-c72f-417f-ac90-665a98347ac5/1/0EOMFbwZI2ixByCmanlBCueHcks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.72.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:3c:90:97:94:f1:64:9f:a9:56:75:5b:a6:0a:bc:6f:5d:87:
4d:aa:fa:6a:83:5b:e3:62:cf:d7:9d:4a:3c:fe:b8:dd:03:13:
38:4b:a6:c7:ec:d5:8d:78:c4:47:c4:0d:c6:54:35:f3:7f:ef:
25:b4:73:0f:73:74:0e:72:85:bd:e8:a6:27:c7:9d:2a:b6:30:
74:07:3b:82:90:17:af:d1:46:22:90:02:37:f7:b4:8d:08:c8:
82:c8:ca:da:43:29:77:2b:9e:cd:a8:c2:27:aa:82:1f:da:f1:
91:42:77:32:76:a3:f2:9d:8f:f8:4f:e0:1d:ad:30:c5:b0:2b:
38:0b:e2:4c:71:1b:f0:d8:b0:a6:6c:c3:94:7e:1f:6d:e7:54:
89:d3:63:bf:df:e9:4f:2c:1d:3b:ad:ab:9f:2e:81:e7:30:77:
03:1c:bd:15:6d:66:cb:d7:0d:27:f8:78:f3:67:6a:f3:69:c7:
96:e5:46:fe:20:5f:74:76:31:e0:35:9c:63:0e:46:5b:5b:87:
ef:1e:b4:34:87:f4:30:d5:f3:cb:a5:ef:b5:1f:60:bb:2f:cd:
15:db:06:34:cc:97:8f:5b:7b:28:1e:2e:96:3a:c7:c5:c0:e8:
10:0f:c5:24:07:8e:fd:b8:33:bf:17:f1:02:ea:31:a4:ef:5a:
e8:95:f8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:59 2024 by rpki-client on console-ams.rpki-client.org