Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/izUTMCvK0qkl3J9-9FpTY-WZVTs.roa
File: izUTMCvK0qkl3J9-9FpTY-WZVTs.roa (raw, json)
Hash identifier: 3xnQDWf2jcGkvpiPx8GS845jN/sZf/EM5DFJ7VNo15k=
Subject key identifier: 8B:35:13:30:2B:CA:D2:A9:25:DC:9F:7E:F4:5A:53:63:E5:99:55:3B
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018570027AC590B20D2089C2E02AC2FB6F79
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/izUTMCvK0qkl3J9-9FpTY-WZVTs.roa
Signing time: Mon 02 Jan 2023 01:04:48 +0000
ROA not before: Mon 02 Jan 2023 01:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30734
IP address blocks: 62.244.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:7a:c5:90:b2:0d:20:89:c2:e0:2a:c2:fb:6f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b3513302bcad2a925dc9f7ef45a5363e599553b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1d:bf:f7:51:c1:a4:39:e0:2e:26:d9:59:99:
00:a5:e4:61:f4:8d:24:ba:d5:63:f7:9e:48:30:92:
08:7f:1f:5d:87:0b:33:03:fe:d2:51:78:3c:6a:21:
5b:97:74:dc:45:92:2c:ba:d7:8a:c8:24:e8:3a:b3:
35:49:44:b0:8b:60:b8:6e:25:e8:b4:fa:71:b6:b4:
ea:99:11:c3:7c:f4:ff:f7:5e:eb:9a:6b:c5:89:58:
48:e1:fe:90:46:d0:b3:f7:91:f8:c3:2e:d2:fb:fe:
58:b8:3d:30:13:56:9f:8a:85:c9:ab:c5:8e:7d:18:
f0:31:8d:e4:8c:47:07:a3:f3:a0:65:7f:28:7e:6b:
24:03:9f:0c:3e:e0:64:cd:32:c3:5a:44:b6:63:30:
b1:72:80:78:33:3d:9d:e5:b5:06:a8:f7:28:23:91:
b1:c3:33:25:6e:85:6b:31:d9:e5:1c:5b:e4:98:62:
19:e2:4c:e7:c9:32:cb:e1:66:b2:9d:6e:0e:33:e0:
b9:1c:20:9e:df:e7:d7:cc:9f:1f:c0:53:04:d6:c7:
67:e5:d3:56:37:36:0c:e3:c8:16:20:ae:15:fc:41:
24:34:09:46:74:9d:ce:61:0e:10:83:6b:77:7b:be:
54:69:9f:89:e3:26:d6:c3:af:e6:a0:62:62:9e:1e:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:13:30:2B:CA:D2:A9:25:DC:9F:7E:F4:5A:53:63:E5:99:55:3B
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/izUTMCvK0qkl3J9-9FpTY-WZVTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.244.221.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:e5:37:9b:61:8a:73:b1:6d:1a:f0:2a:b7:eb:d5:33:1d:03:
d1:78:6a:7c:b6:e9:fb:fe:ea:e2:3f:7f:6b:de:f3:dc:2c:ad:
d9:5b:3e:0e:7d:ce:8b:ba:e7:7a:35:b9:b0:83:c4:90:a4:c7:
01:c9:ce:bd:d4:af:3d:d0:4b:e6:28:28:c4:3f:49:ef:f2:36:
b8:68:1e:26:1e:61:0e:15:7f:17:79:e1:6b:d9:df:98:dc:d5:
18:fb:2f:e4:77:84:c6:9b:4f:a2:b5:e6:b0:29:08:e1:33:98:
dd:8c:6c:81:8c:a8:d1:32:09:ac:33:7d:8b:47:da:af:9d:cb:
5b:18:4a:ee:c3:9b:69:23:90:61:ec:81:5a:ce:7e:aa:f5:92:
d1:39:d5:9f:7d:a5:72:41:46:1e:ed:d8:62:85:8a:ea:48:60:
3d:af:3a:93:90:04:78:3f:ef:c4:01:18:cd:42:a0:bd:9c:42:
da:eb:05:a0:12:f2:4c:70:4e:7c:be:2b:3e:56:14:ee:46:5b:
75:89:39:58:2b:36:b0:10:31:67:66:e7:c1:a3:87:1c:d2:f3:
35:ec:6d:67:85:7e:62:df:e3:5e:22:ea:52:9f:0d:e5:67:5e:
1a:ec:60:df:18:cf:65:35:c2:e8:d5:21:1f:56:59:08:93:57:
d5:56:ca:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org