Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/9fM-km1Rv4IxcSP-pCGgcrGw-2w.roa
File: 9fM-km1Rv4IxcSP-pCGgcrGw-2w.roa (raw, json)
Hash identifier: BymGwpL5TK8r7ftN2xx6LRGEEclY4sJMO1no+CWYUNc=
Subject key identifier: F5:F3:3E:92:6D:51:BF:82:31:71:23:FE:A4:21:A0:72:B1:B0:FB:6C
Certificate issuer: /CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Certificate serial: 01856EC2230A28163B0F13BFB2E2994051B1
Authority key identifier: 11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/9fM-km1Rv4IxcSP-pCGgcrGw-2w.roa
Signing time: Sun 01 Jan 2023 19:14:54 +0000
ROA not before: Sun 01 Jan 2023 19:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 62.68.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:23:0a:28:16:3b:0f:13:bf:b2:e2:99:40:51:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Validity
Not Before: Jan 1 19:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5f33e926d51bf82317123fea421a072b1b0fb6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:60:0a:13:e6:c6:19:13:fe:d1:6d:44:0a:79:
15:27:ad:94:18:f7:64:76:e0:51:5f:88:8d:93:c9:
b7:3c:81:16:14:21:34:40:da:36:35:e5:a4:26:86:
f4:27:29:2d:35:cb:d1:a5:9f:ca:54:7d:8f:81:0d:
aa:7b:67:d3:0c:0a:49:00:82:63:93:fd:a4:8f:d8:
ad:3d:f3:c6:e1:22:01:2a:0d:2c:f4:d1:f9:31:15:
20:8f:a0:24:6a:51:fa:3d:5c:f4:98:c7:8e:ce:d0:
5c:2e:94:67:f5:30:28:26:90:a4:7d:91:ac:7c:5f:
1f:20:ae:e9:bf:a5:48:92:cb:ea:a6:3a:4e:b7:2c:
9f:b4:8c:9c:37:df:13:bc:34:d5:d8:2b:d5:b4:f0:
4b:6e:be:24:a3:16:99:33:68:bc:fb:98:df:0e:7d:
5b:2c:39:1a:d8:92:28:34:98:93:00:2e:c7:ec:2a:
a0:62:07:23:5f:62:c6:55:8a:d0:44:39:69:f1:5e:
a6:26:83:75:51:7a:67:46:54:32:b0:55:0e:e7:f2:
57:cd:ee:24:11:c9:f7:38:41:10:53:ba:21:45:4d:
12:2c:d6:03:09:d6:51:88:6f:90:3c:b0:52:6b:94:
c9:9a:4d:0d:7e:1a:53:bd:bc:9a:fe:97:70:25:30:
e7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F3:3E:92:6D:51:BF:82:31:71:23:FE:A4:21:A0:72:B1:B0:FB:6C
X509v3 Authority Key Identifier:
keyid:11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/9fM-km1Rv4IxcSP-pCGgcrGw-2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.88.0/24
Signature Algorithm: sha256WithRSAEncryption
49:7d:f9:88:57:b2:fe:54:aa:4b:1a:a7:b2:77:88:1a:b7:e2:
27:23:26:98:eb:b1:02:cf:a3:00:5a:6f:4d:f1:84:f4:1d:7c:
91:99:f1:1c:e7:89:cb:0b:83:5f:2d:57:8a:aa:62:25:03:f7:
48:8c:df:b9:bb:13:5a:14:c1:c1:b2:56:e4:1e:12:ff:71:40:
df:70:ee:7d:f8:b3:04:a7:d1:e6:7a:ac:21:93:92:85:74:20:
32:15:69:5a:7a:41:20:c5:f2:c7:05:ab:0d:8e:e0:a8:ed:76:
3c:97:1a:2c:39:eb:35:0f:d7:60:4f:7f:df:3a:a1:a0:f7:a5:
5f:11:2b:57:bf:df:34:57:74:5a:56:90:39:4b:c5:e2:a4:43:
0d:2f:5d:6f:77:60:c5:1a:ca:fc:8b:42:c4:64:f4:12:97:d4:
9f:29:90:ce:87:29:88:af:cf:3d:8b:e5:92:a0:04:8f:63:d2:
d6:74:bf:fe:96:5d:90:dd:f9:67:f6:4b:20:9a:af:87:d2:18:
01:cc:85:9e:26:da:3c:b5:32:b3:9e:79:ae:a1:42:67:60:1e:
78:b4:1f:01:b6:c5:b7:1f:3c:52:0d:92:91:38:5a:0c:08:03:
7f:b0:c1:ec:95:25:5e:1a:bb:5f:a2:ca:93:91:0b:c6:a9:b0:
ef:96:8e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org