Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/Q401jI_PwrxTB-gAg7QYbRLr0OE.roa
File: Q401jI_PwrxTB-gAg7QYbRLr0OE.roa (raw, json)
Hash identifier: UCg+oSUXi6yLGe9w2E6ZEb9lmBAxcV/hb31sUDiGWjI=
Subject key identifier: 43:8D:35:8C:8F:CF:C2:BC:53:07:E8:00:83:B4:18:6D:12:EB:D0:E1
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 018E8459DB12BC5B4408062C7D778EE55C1C
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/Q401jI_PwrxTB-gAg7QYbRLr0OE.roa
Signing time: Thu 28 Mar 2024 09:17:45 +0000
ROA not before: Thu 28 Mar 2024 09:17:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 62.100.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 19:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:59:db:12:bc:5b:44:08:06:2c:7d:77:8e:e5:5c:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Mar 28 09:17:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=438d358c8fcfc2bc5307e80083b4186d12ebd0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a1:32:12:66:73:98:6d:cb:86:fd:5c:d1:2c:
44:6f:4b:44:f6:e7:d4:03:05:34:ec:fa:f8:32:86:
f4:46:57:63:4e:a6:7e:b2:e9:86:08:cf:d1:2c:ea:
bb:7f:7b:d9:8f:3b:aa:2e:1b:70:68:69:cf:cc:e0:
0d:43:4f:b1:e3:3d:49:29:07:4a:b6:6d:d1:7b:de:
9f:5c:d4:62:5c:3d:92:c4:3a:45:98:f3:82:82:09:
9b:f6:9b:25:ab:ee:62:9c:88:80:69:65:5d:53:45:
22:53:3b:53:08:50:f3:84:da:32:ad:ad:04:e7:cb:
d1:ff:2f:05:f8:e1:09:75:48:b3:d9:ea:90:12:33:
40:47:20:e7:19:71:ca:76:7b:f6:56:59:15:4b:4a:
92:f3:e2:64:ae:77:0b:7e:6f:d5:9a:55:c5:85:88:
6a:ae:ce:76:d7:40:da:cc:a3:68:71:50:d4:fb:44:
71:96:c6:c5:c6:0b:71:77:f6:a9:a6:49:ed:81:d6:
54:ef:a7:89:d0:98:ae:4d:4a:c3:c5:80:73:b0:c0:
44:4a:7a:ce:61:00:97:0d:54:54:3a:23:72:e5:94:
64:a3:4b:cf:8e:92:e6:9f:57:72:8a:6b:ee:f9:99:
cd:97:11:44:c2:17:54:0c:46:6b:77:e1:b9:0f:bb:
14:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8D:35:8C:8F:CF:C2:BC:53:07:E8:00:83:B4:18:6D:12:EB:D0:E1
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/Q401jI_PwrxTB-gAg7QYbRLr0OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.211.0/24
Signature Algorithm: sha256WithRSAEncryption
70:57:89:22:57:4f:c2:2f:5a:7b:54:5c:fd:55:c0:ae:12:53:
81:64:da:c0:81:ed:bf:80:f0:cf:f3:4d:fe:ff:89:b1:04:b5:
44:10:99:5d:e4:ed:68:06:10:15:a9:fe:fa:52:00:b8:97:4c:
69:ed:93:2a:f1:8d:94:88:7d:4e:da:3e:ed:c9:c1:a1:3e:70:
9e:10:45:b5:73:b0:7f:96:70:cf:0e:2f:2a:03:31:ac:5b:9b:
b4:9c:24:d0:7f:f1:c2:f1:3c:7d:7a:89:ab:ce:51:89:4d:40:
9a:cf:75:4d:89:ce:b4:ec:19:a2:98:b8:6e:40:14:35:35:6f:
51:38:2c:3c:54:ef:49:3a:e9:ba:0a:3a:cf:d7:2e:0f:34:22:
15:cd:a8:37:fc:3d:12:9b:33:08:55:31:0e:68:bc:66:ee:77:
01:b8:35:2e:52:07:b6:65:9b:7a:c2:e9:97:02:03:4d:b2:7a:
82:49:db:d4:18:5d:2f:15:4e:29:cc:73:b3:d0:69:21:e9:e2:
58:80:4f:ab:34:18:c7:87:d4:04:d5:66:d9:dd:ad:23:3f:2e:
6d:9a:fa:53:d0:18:96:5d:61:54:4e:e2:05:f2:11:26:32:42:
92:10:e3:0a:03:07:72:1a:eb:e2:43:d4:5c:08:60:ec:c7:a3:
3a:73:e7:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:00 2024 by rpki-client on console-ams.rpki-client.org