Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/UGdfoMd5knG94q4az-PIL09NyA8.roa
File: UGdfoMd5knG94q4az-PIL09NyA8.roa (raw, json)
Hash identifier: BmmKlDUtHxFQ1mpnLKx0/Im4brhBZDpct/LTZ0Ou12Q=
Subject key identifier: 50:67:5F:A0:C7:79:92:71:BD:E2:AE:1A:CF:E3:C8:2F:4F:4D:C8:0F
Certificate issuer: /CN=41274f2c5beb9999b8673c760743c7e7d31cd673
Certificate serial: 01856D81CF7B0FD5A4725A55E871AE6122A4
Authority key identifier: 41:27:4F:2C:5B:EB:99:99:B8:67:3C:76:07:43:C7:E7:D3:1C:D6:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSdPLFvrmZm4Zzx2B0PH59Mc1nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/UGdfoMd5knG94q4az-PIL09NyA8.roa
Signing time: Sun 01 Jan 2023 13:25:01 +0000
ROA not before: Sun 01 Jan 2023 13:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210520
IP address blocks: 62.3.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:cf:7b:0f:d5:a4:72:5a:55:e8:71:ae:61:22:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41274f2c5beb9999b8673c760743c7e7d31cd673
Validity
Not Before: Jan 1 13:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50675fa0c7799271bde2ae1acfe3c82f4f4dc80f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:86:7a:c7:7b:c7:ab:7b:11:02:3f:4a:76:4d:
0a:d1:5d:bb:43:77:90:f7:db:95:5a:1b:e3:c0:f7:
14:d1:64:d1:6a:20:92:3c:11:80:47:b6:c2:8b:46:
e9:63:d1:da:04:a6:f0:0d:af:9a:44:83:16:c0:e0:
14:0f:b6:3c:8e:34:c8:1e:16:f2:fd:ad:79:a8:e9:
df:24:01:9c:bb:1d:25:4b:d8:37:62:5b:b0:15:3f:
13:7b:3a:fe:b6:33:65:94:16:65:5b:82:c4:30:24:
06:3f:de:80:65:3f:46:46:3e:79:ca:c5:9a:c5:93:
2a:31:c9:20:34:e9:25:57:f6:2d:41:a6:a5:b1:7d:
c3:e6:d8:d5:5f:71:a9:a9:ad:34:50:e8:0d:bf:9a:
16:28:3e:3f:a8:02:55:06:5f:ee:97:59:8f:1c:07:
26:63:fd:01:14:9a:74:6c:0e:ea:fb:56:7f:e6:bf:
06:a3:d9:26:2b:20:f7:20:c6:43:2b:94:56:f7:d3:
44:f2:13:88:35:c5:31:9c:90:6c:09:1a:b4:ed:d7:
eb:7a:da:fc:c2:f5:8b:26:72:08:ca:eb:32:88:de:
82:d9:22:5b:60:05:bb:97:fe:aa:c0:26:d5:26:45:
72:c6:b6:e2:d1:03:17:5c:84:bd:83:ce:f6:1c:ea:
cc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:67:5F:A0:C7:79:92:71:BD:E2:AE:1A:CF:E3:C8:2F:4F:4D:C8:0F
X509v3 Authority Key Identifier:
keyid:41:27:4F:2C:5B:EB:99:99:B8:67:3C:76:07:43:C7:E7:D3:1C:D6:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSdPLFvrmZm4Zzx2B0PH59Mc1nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/UGdfoMd5knG94q4az-PIL09NyA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faff5-629a-4d2f-b102-a48752b804c7/1/QSdPLFvrmZm4Zzx2B0PH59Mc1nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:1e:cc:34:04:10:f5:74:de:f6:9c:37:99:41:16:99:bc:d8:
50:fa:29:26:65:b8:04:d4:3d:36:18:1a:18:d6:b1:30:e4:fe:
c1:33:5a:8f:0f:1b:46:c9:de:6f:62:4a:da:90:ce:a4:09:3d:
b5:60:63:82:a5:0e:03:3c:4f:1e:3e:73:c6:db:d0:c1:eb:37:
e1:30:40:99:ae:33:3c:59:26:fb:81:4a:6a:81:22:cc:0a:2e:
da:31:bc:21:dd:d5:56:38:11:12:f3:36:43:6e:c7:07:0a:c8:
b1:83:3f:71:05:3c:5a:fe:cb:37:33:37:f5:ff:f4:e6:38:d3:
35:85:06:c9:03:33:31:fb:97:93:74:ea:13:9b:0a:42:44:73:
03:c0:c4:1d:a3:ee:0c:29:f6:64:c4:05:1a:c6:ec:86:48:55:
54:38:01:4f:24:80:0d:4d:83:47:b0:90:a0:59:f2:bd:fa:a9:
ff:bf:5d:c3:49:a5:84:24:06:4f:b0:cc:b8:b8:48:a6:cf:d0:
88:8a:84:73:e1:63:4c:70:d3:c4:49:d5:81:93:6e:6f:11:92:
ec:88:35:26:3a:bd:7f:c3:85:fc:fd:67:c8:83:65:68:f6:94:
81:f8:97:f1:7f:ef:1c:93:b6:d0:59:9d:ad:50:09:7f:40:2b:
47:88:d7:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org