Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/aSYNwK5CdPsLf-9_S4-DOhlnbzU.roa
File: aSYNwK5CdPsLf-9_S4-DOhlnbzU.roa (raw, json)
Hash identifier: 2RoKA/LXF80M7KkvlV7Qk1TkhNwzxdJGRb0E2hvAK1g=
Subject key identifier: 69:26:0D:C0:AE:42:74:FB:0B:7F:EF:7F:4B:8F:83:3A:19:67:6F:35
Certificate issuer: /CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Certificate serial: 01856EC223FB88148414EDFE6B22B648F790
Authority key identifier: 11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/aSYNwK5CdPsLf-9_S4-DOhlnbzU.roa
Signing time: Sun 01 Jan 2023 19:14:54 +0000
ROA not before: Sun 01 Jan 2023 19:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209438
IP address blocks: 62.68.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:23:fb:88:14:84:14:ed:fe:6b:22:b6:48:f7:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11f2e35b3c559b6d843667cad5dac674e01b96c3
Validity
Not Before: Jan 1 19:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69260dc0ae4274fb0b7fef7f4b8f833a19676f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ce:df:33:8e:67:0a:7f:8a:e4:c6:ea:37:aa:
2f:6a:8d:92:b8:f7:a3:83:34:e7:d6:c0:19:30:01:
06:c1:96:75:03:01:a1:fa:7f:5a:d0:b8:27:95:dd:
13:1b:29:42:7d:23:57:7a:af:5c:5e:c5:86:0d:25:
34:1d:06:70:dd:10:f2:d7:c6:46:cb:f2:ed:26:f8:
13:98:4d:2f:03:9f:9f:19:7f:c5:13:c2:25:6f:d3:
aa:f7:aa:d3:cf:67:29:95:24:92:87:ee:fd:41:c4:
f8:dd:6c:9b:ea:f4:f1:1a:c1:78:6c:8a:e0:e8:2f:
ef:2a:5b:f9:55:45:81:84:e3:6b:a8:d9:6d:10:c6:
77:a1:c4:f6:10:57:5b:26:ad:68:3f:23:ed:df:2a:
37:6b:2b:02:fc:cc:ec:68:5f:d9:ae:99:d2:25:90:
89:99:47:07:ab:cd:b5:72:17:2e:9a:d4:1a:08:fb:
7f:29:0a:3a:a7:a3:0c:8b:3f:aa:4d:87:38:ef:51:
d1:89:5d:15:9c:36:c5:0f:c8:e8:57:ec:cb:21:2a:
32:de:a0:1f:4a:e6:53:30:91:9d:1e:8e:c5:e5:00:
6b:33:ef:6d:1d:e9:ce:92:c2:2f:b5:19:f7:dd:11:
69:b1:54:25:27:44:21:f0:b1:b7:ce:81:57:76:7f:
da:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:26:0D:C0:AE:42:74:FB:0B:7F:EF:7F:4B:8F:83:3A:19:67:6F:35
X509v3 Authority Key Identifier:
keyid:11:F2:E3:5B:3C:55:9B:6D:84:36:67:CA:D5:DA:C6:74:E0:1B:96:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EfLjWzxVm22ENmfK1drGdOAblsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/aSYNwK5CdPsLf-9_S4-DOhlnbzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/99d68e-27c3-4b2d-95f5-250a9e6708d0/1/EfLjWzxVm22ENmfK1drGdOAblsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.88.0/24
Signature Algorithm: sha256WithRSAEncryption
15:56:cd:bf:08:a6:93:bc:c7:bf:79:bb:02:24:3f:99:7d:a6:
cb:f8:55:5e:6f:7a:37:88:f1:27:da:b8:a9:16:08:b6:12:dd:
64:5b:46:44:9c:6f:27:8e:d6:23:dc:a9:ce:0c:85:54:30:6e:
51:0f:a9:b8:de:6b:35:c4:1c:14:70:b7:4d:63:29:26:5f:52:
49:3f:93:d0:b1:8d:75:f4:fb:52:f9:17:ec:0c:35:61:dc:1c:
08:a0:f3:c0:0c:c4:60:bb:a3:1d:a8:8b:49:5d:20:b6:43:4f:
fe:76:40:f4:b9:52:5f:d7:af:9a:79:f3:8a:ba:f2:a9:84:20:
b7:1e:87:7a:e7:2b:fe:81:72:32:03:d1:f8:e8:b3:47:90:f6:
43:6c:6d:f0:0a:d0:68:68:fb:36:9d:9f:43:50:99:46:03:09:
24:31:7a:23:e7:21:b3:90:3f:f4:92:c7:46:36:f5:9d:f2:b0:
68:27:46:21:31:df:8c:1f:6d:ad:72:84:1e:77:63:3b:c4:f7:
ba:c6:62:23:8d:b7:b1:89:dd:99:ec:b9:5d:da:7b:17:d5:31:
11:24:ef:f1:af:dd:da:32:4c:49:8b:12:66:6e:26:6f:52:c4:
34:fa:3c:81:fc:e0:e1:85:26:41:7a:80:8f:a0:2b:b6:88:9e:
34:6d:d8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:57 2024 by rpki-client on console-ams.rpki-client.org