Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/vXGzpDpUhP9aVB2Kkh2dPva5HK0.roa
File: vXGzpDpUhP9aVB2Kkh2dPva5HK0.roa (raw, json)
Hash identifier: QaNzOCP7s5PREw60+DDTXSq78zQ+1HKaRy8vsGdgOe8=
Subject key identifier: BD:71:B3:A4:3A:54:84:FF:5A:54:1D:8A:92:1D:9D:3E:F6:B9:1C:AD
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0185700280C6BB8E424AF244F5D7075C9A06
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/vXGzpDpUhP9aVB2Kkh2dPva5HK0.roa
Signing time: Mon 02 Jan 2023 01:04:50 +0000
ROA not before: Mon 02 Jan 2023 01:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39253
IP address blocks: 62.244.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:80:c6:bb:8e:42:4a:f2:44:f5:d7:07:5c:9a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd71b3a43a5484ff5a541d8a921d9d3ef6b91cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:de:45:9a:e7:f9:e0:ad:61:05:33:50:92:57:
bd:5f:a3:44:ce:be:b6:5c:93:93:05:0e:c4:3c:0e:
53:75:d6:34:65:11:6e:94:fc:69:64:65:d8:3c:1d:
d3:a1:8a:e2:e2:25:95:49:ae:49:30:b6:26:75:86:
81:45:61:66:1d:d5:ac:8b:47:bb:75:a4:18:ba:6d:
af:18:1b:01:10:bd:0d:10:f4:c3:79:9d:90:e4:18:
49:02:05:41:9f:70:27:e4:4b:46:5e:10:50:af:08:
82:28:4d:11:c3:8e:fc:43:cf:42:0f:10:6d:fa:1f:
c4:ef:cb:25:7f:44:1d:59:b2:2b:40:f7:95:65:cc:
13:7a:7a:55:3f:ff:bd:96:af:de:96:e8:f3:72:f2:
07:26:37:1c:7d:1e:71:6d:96:59:5c:87:28:75:db:
f2:f2:37:00:84:be:7b:39:a2:ad:84:3f:4b:17:88:
a4:fa:a8:ad:d0:5f:86:cf:0f:51:6c:79:88:8a:24:
e1:fe:8e:8c:f7:6c:e2:c7:3f:5c:92:64:ee:9b:e9:
c0:22:a0:48:d3:17:0f:1e:17:d0:7f:eb:34:47:a6:
3e:ee:7b:b1:5f:ee:04:6c:c6:ba:99:ff:7d:c1:db:
91:53:30:c2:ed:ce:f6:1c:07:89:cb:d9:33:49:9d:
c4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:71:B3:A4:3A:54:84:FF:5A:54:1D:8A:92:1D:9D:3E:F6:B9:1C:AD
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/vXGzpDpUhP9aVB2Kkh2dPva5HK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.244.243.0/24
Signature Algorithm: sha256WithRSAEncryption
72:83:0c:66:7c:50:8f:0f:a9:a8:b0:cf:7c:45:46:ef:59:51:
a2:74:24:d7:e1:7e:e7:25:b2:d6:92:1d:68:15:68:2c:52:d2:
75:34:2d:50:41:91:d8:e8:aa:b2:22:1c:a6:7c:8f:01:10:53:
6d:6b:8f:cb:bc:ed:d3:77:ee:c7:11:06:78:b1:8b:13:73:23:
6e:1a:19:1d:3b:ba:f7:a2:54:13:a2:30:65:70:32:cc:c4:99:
b6:26:e4:b1:c6:10:ed:a4:c2:db:21:d4:ee:0e:9a:89:ba:db:
de:6c:98:de:99:23:85:15:2a:bd:13:fd:eb:c6:70:3c:c8:ec:
17:31:8a:a6:e2:cb:43:19:45:13:58:86:b8:dc:1c:e1:60:f1:
5a:63:fc:d9:b0:d7:74:6a:44:f1:a1:e9:7a:3a:fb:6d:8e:10:
52:b9:8c:79:d9:42:22:cc:c2:72:bb:a9:a1:8b:b0:9f:b0:e2:
7e:94:af:2f:ef:65:8f:80:70:d8:07:e9:a5:21:5e:f6:7b:5f:
2f:e7:cc:73:a0:06:42:8b:ff:ab:28:a9:74:db:8e:d9:b4:0a:
e6:84:b3:0f:de:31:60:34:11:bd:bd:be:51:25:be:9e:6b:8a:
e1:bc:1e:77:00:d2:f7:79:fd:0f:56:d0:3b:62:38:1c:87:14:
67:04:97:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org