Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/laXuBIY3xOjgXrJ9RX0F8zR8R14.roa
File: laXuBIY3xOjgXrJ9RX0F8zR8R14.roa (raw, json)
Hash identifier: /O1/kSPub5dpkpU9AYd+/HMfit6pX9vLthr0aQCcj3U=
Subject key identifier: 95:A5:EE:04:86:37:C4:E8:E0:5E:B2:7D:45:7D:05:F3:34:7C:47:5E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F66E7B6D2C9928EE576A8B74D901A40
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/laXuBIY3xOjgXrJ9RX0F8zR8R14.roa
Signing time: Sun 01 Jan 2023 22:14:53 +0000
ROA not before: Sun 01 Jan 2023 22:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 62.76.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 11:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:e7:b6:d2:c9:92:8e:e5:76:a8:b7:4d:90:1a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95a5ee048637c4e8e05eb27d457d05f3347c475e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:54:34:d6:86:60:7f:e1:df:74:0b:14:86:d6:
d9:ec:3c:dc:80:0c:40:f9:58:f9:90:c7:f7:9a:88:
5c:4f:84:99:db:60:9d:5f:89:03:17:99:2b:f3:dc:
2f:57:7d:45:ad:fe:05:ab:4b:cc:d7:33:b6:85:fb:
f1:7b:80:a5:c6:96:4e:d0:f1:de:18:70:00:9f:c7:
7d:8a:b3:69:2f:26:99:75:64:01:5f:9d:cd:02:a8:
dd:d3:f2:64:ea:5b:81:4c:34:14:af:8a:18:2d:c6:
0e:67:98:be:5c:e3:00:7c:ea:32:2d:3a:a2:81:4c:
b0:93:c2:3f:55:5c:f7:0d:85:a9:6a:6e:59:a1:7f:
36:fb:87:cf:6c:ce:35:38:2a:30:cc:92:a1:1b:ca:
98:b8:39:33:84:92:4f:0c:d7:65:8c:b8:cd:4b:c6:
9b:2d:6b:4c:00:55:70:d7:3c:bc:18:7c:d0:00:e4:
6f:1c:64:3e:2a:f4:90:ff:db:72:82:af:fe:84:c5:
9e:c7:71:4d:55:69:9b:a8:8f:d4:bb:6a:47:de:f8:
7f:30:f4:81:ef:20:4c:ab:de:ed:cb:4d:67:5c:7b:
92:cb:9f:1f:08:57:36:22:38:ae:af:49:1f:3b:91:
c9:4c:01:b7:e9:c0:ae:27:63:eb:3b:f7:de:ba:8e:
b4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A5:EE:04:86:37:C4:E8:E0:5E:B2:7D:45:7D:05:F3:34:7C:47:5E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/laXuBIY3xOjgXrJ9RX0F8zR8R14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.229.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:5e:5d:a2:5d:31:42:09:2a:0c:bc:c9:f1:2a:0d:35:ff:b3:
3d:67:11:f6:1e:03:14:e7:40:12:54:c1:81:d5:31:b8:e6:3f:
a5:9a:20:21:81:02:61:3a:72:23:82:2e:2a:87:e1:1b:34:74:
8a:7a:fa:94:8f:91:20:1e:a5:63:29:1b:78:52:89:7e:d7:cd:
3e:81:cc:f0:ec:61:c3:45:87:61:95:59:f6:65:4a:1c:63:78:
71:eb:16:c6:b0:97:49:63:cd:3a:94:96:38:eb:1c:51:cb:97:
e6:2d:e6:55:65:8d:70:ad:da:04:5a:33:c8:37:35:7d:bf:e2:
a0:f3:1a:3e:53:73:f7:fd:44:ac:0a:dd:2f:b4:74:b5:e9:9d:
aa:9a:88:38:6c:4c:4c:27:e0:4a:fb:f4:d7:c7:b0:87:22:f8:
94:17:7e:b4:7e:55:6f:0f:1e:b3:1f:a6:5e:4e:5b:3b:49:41:
c7:6d:43:01:96:59:98:cb:28:dc:cd:9e:fb:d3:a7:64:75:27:
8e:95:a0:50:b7:51:ef:1c:8a:55:94:a9:b5:4e:ba:74:e8:1e:
96:c0:ec:72:b1:80:7c:cf:6f:69:f8:9b:44:02:45:e7:45:a4:
51:8a:05:86:15:5f:3d:23:26:ff:66:ea:d3:28:21:13:89:9b:
e3:17:7c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org