Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/wRmNa2Ts9lM93ZYrE6u0L30Cikw.roa
File: wRmNa2Ts9lM93ZYrE6u0L30Cikw.roa (raw, json)
Hash identifier: 7OtWleZjHpnUdZzg7dMqpt+/M4xczcnFB3K+jdA+03o=
Subject key identifier: C1:19:8D:6B:64:EC:F6:53:3D:DD:96:2B:13:AB:B4:2F:7D:02:8A:4C
Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Certificate serial: 01856C1C8EA9C0B1D088CA4C46F2F6A3426C
Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/wRmNa2Ts9lM93ZYrE6u0L30Cikw.roa
Signing time: Sun 01 Jan 2023 06:54:48 +0000
ROA not before: Sun 01 Jan 2023 06:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25466
IP address blocks: 62.101.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:8e:a9:c0:b1:d0:88:ca:4c:46:f2:f6:a3:42:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Validity
Not Before: Jan 1 06:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1198d6b64ecf6533ddd962b13abb42f7d028a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:83:60:69:3f:af:ca:b2:9f:c3:fb:d4:e9:
77:50:03:e2:0b:e8:96:5b:c1:1a:87:df:f6:a0:3f:
69:c0:8d:dc:af:fa:c3:45:5e:91:0a:96:20:8e:90:
cb:99:92:2a:2d:a6:34:61:4c:97:ba:98:c1:e1:c1:
9e:0d:44:fe:ce:fc:86:fe:5b:79:a2:71:11:b3:df:
c8:aa:72:54:a3:59:9b:e1:5c:b9:d0:76:e6:bb:0e:
ae:bb:45:49:94:6c:e6:b2:be:d5:56:c8:f3:c6:f8:
e1:34:d1:0f:55:46:7f:96:8d:4d:cb:a8:d5:c4:bf:
9f:f6:02:f5:bc:92:cd:41:3e:b2:8e:13:e4:f5:eb:
4c:d2:07:58:b4:b4:73:4a:2c:b0:e9:58:51:00:46:
26:17:1f:f1:49:ae:1c:88:b0:c9:92:ac:d2:1b:d7:
78:0b:e4:d3:aa:17:32:2d:6d:15:1b:c9:7d:4e:66:
b3:00:bc:0e:b4:05:db:79:e1:48:46:98:71:8a:92:
38:3a:fc:c3:11:d3:74:c6:8f:b7:38:fd:92:b6:01:
d5:17:e2:b7:5c:92:ec:49:7d:b4:bc:6a:0a:fd:94:
56:d9:e4:03:55:14:76:3d:28:33:b6:b3:e3:da:4b:
c7:8e:b7:a6:53:8d:fb:48:b4:34:2e:3d:03:d0:57:
00:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:19:8D:6B:64:EC:F6:53:3D:DD:96:2B:13:AB:B4:2F:7D:02:8A:4C
X509v3 Authority Key Identifier:
keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/wRmNa2Ts9lM93ZYrE6u0L30Cikw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.101.52.0/22
Signature Algorithm: sha256WithRSAEncryption
51:b1:b2:ae:72:75:90:26:1d:97:f2:8d:e9:48:85:c3:d6:13:
8d:86:31:8d:22:25:a6:ac:91:24:84:a4:60:75:39:15:7c:40:
4b:12:d1:e3:b4:93:06:77:3e:56:6c:fb:16:44:62:bc:be:e2:
f9:57:8a:13:92:12:4b:7c:e6:3e:b3:b4:3c:73:93:d1:34:54:
e0:04:a7:58:b6:0e:e5:a1:28:7b:4a:49:f1:e2:fc:f9:a2:b2:
16:25:4d:0b:09:f4:78:8d:d7:42:83:ff:fc:43:e4:f0:4a:58:
7d:59:7e:52:8c:92:26:e0:28:f9:65:1c:0b:bb:8f:1d:4c:83:
d3:c6:60:fd:4f:e8:95:fd:5b:be:f1:3a:ff:85:67:c2:f7:51:
13:d1:3e:0f:99:cd:7d:fa:21:7a:79:a7:28:da:81:b6:93:33:
93:89:8e:cf:2c:63:17:8f:47:0b:2a:f7:e7:6d:8d:85:b0:35:
44:ab:76:3d:3a:6c:3b:51:59:83:ca:77:a9:7f:63:45:8e:30:
75:54:a1:c9:26:7b:5b:11:c3:12:2e:ca:17:94:dc:5b:84:4d:
42:48:c0:cd:98:3a:ba:76:ce:3e:63:76:25:39:0e:e9:f7:eb:
17:3c:4c:8d:8d:de:4a:a9:71:8c:3f:ea:40:95:6d:bc:30:aa:
36:9b:cf:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:22 2024 by rpki-client on console-ams.rpki-client.org