Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/16WS4cFfWuNd4uVvZJihGEu2Rqw.roa
File: 16WS4cFfWuNd4uVvZJihGEu2Rqw.roa (raw, json)
Hash identifier: fCO3nycCoFofkFz53335ayKiJTtKpZYos5FvIUdd6nk=
Subject key identifier: D7:A5:92:E1:C1:5F:5A:E3:5D:E2:E5:6F:64:98:A1:18:4B:B6:46:AC
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 018CC500E04AAC9F4BD44245D72781F17DA4
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/16WS4cFfWuNd4uVvZJihGEu2Rqw.roa
Signing time: Mon 01 Jan 2024 12:30:18 +0000
ROA not before: Mon 01 Jan 2024 12:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42831
IP address blocks: 62.100.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 19:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:e0:4a:ac:9f:4b:d4:42:45:d7:27:81:f1:7d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 12:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7a592e1c15f5ae35de2e56f6498a1184bb646ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:6d:11:29:a5:48:d2:f2:e1:11:0d:15:b7:
c1:13:3b:a4:8b:f5:29:4c:11:65:a5:27:bc:7d:3b:
5b:98:02:4e:6a:a8:b2:80:50:9f:98:b3:85:33:44:
31:77:36:57:3b:fb:71:d6:92:9e:f3:79:23:fe:5e:
32:d6:8c:3c:17:6b:71:89:92:6d:c6:bd:d5:35:cb:
60:bd:9b:1c:c0:2b:a1:98:f1:68:62:5d:f6:7a:e9:
31:c6:dc:71:6a:06:78:dc:a6:63:ef:83:1e:ee:9a:
08:f4:38:74:73:7c:00:2d:9d:1f:43:d6:91:59:fd:
0a:09:b3:6b:61:e8:bd:5c:91:a0:21:ef:4f:a6:99:
ff:1a:55:6b:dd:ef:ec:bc:4d:02:4f:64:22:1b:1d:
01:9a:ed:a3:84:ca:ec:14:0c:05:8d:9a:22:68:c9:
8c:db:79:6a:e3:e5:df:44:51:9c:fb:56:1e:0e:b9:
49:f4:b8:82:2b:6f:9d:ba:bf:69:05:22:22:f8:9e:
7f:53:51:b7:7b:df:fa:73:f9:ff:b8:77:54:7f:93:
90:ed:eb:4f:47:49:41:05:a2:52:97:99:27:0a:e3:
6f:63:d5:bc:5b:78:2b:4a:12:d8:48:f7:30:51:ae:
d5:90:b8:29:03:7b:8c:89:b9:98:d9:bd:e0:71:e8:
6c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A5:92:E1:C1:5F:5A:E3:5D:E2:E5:6F:64:98:A1:18:4B:B6:46:AC
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/16WS4cFfWuNd4uVvZJihGEu2Rqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.211.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ee:00:93:f0:c3:ee:7a:5c:3a:92:f5:b2:d4:93:7c:29:de:
aa:c9:a8:c2:0e:0d:81:6b:5d:87:46:9c:03:f5:70:88:91:ea:
12:cb:48:58:dd:4e:1d:38:61:4f:98:3f:9d:3d:98:c3:ef:03:
c1:94:e9:50:37:cc:aa:e1:43:86:5c:6c:7b:b2:73:2d:42:7d:
e7:3b:ff:50:f1:ba:18:4a:64:f4:9e:86:03:75:8c:ec:ab:3c:
0b:e1:e0:29:69:5b:4c:7e:b2:74:b4:79:57:ad:d6:32:25:4e:
11:83:ad:0e:9a:0b:11:85:b0:d8:9b:20:51:5b:f1:c9:e0:32:
7d:e3:b6:ee:80:61:2e:fa:d9:c5:fd:bd:aa:88:48:8d:f6:87:
0c:53:4b:7f:0f:25:82:78:49:f2:e6:60:fe:4b:9d:7a:57:c1:
e3:18:a4:93:16:e2:cb:a7:18:b4:0c:28:76:f1:16:35:0b:42:
44:3b:9b:81:73:f0:62:cc:a1:e0:15:43:0a:49:6c:0c:eb:2c:
a9:1f:d5:a1:5a:56:67:41:3d:e5:35:3a:c7:0e:8b:57:3a:52:
0a:3e:6c:e5:db:93:23:53:3e:77:53:e8:85:33:da:9e:90:4e:
8e:cf:c2:a2:8a:4a:93:38:0f:ce:21:c0:72:ba:ea:b0:5d:43:
15:6e:3d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 22:36:57 2024 by rpki-client on console-fra.rpki-client.org