Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/1-At-qzLdHtMt6jPCA4e5GrpiqGk.roa
File: 1-At-qzLdHtMt6jPCA4e5GrpiqGk.roa (raw, json)
Hash identifier: Vdrj8CJcRMUY5FqccdWYvNwnmGEcVzhwXwC6WqVRDos=
Subject key identifier: F8:0B:7E:AB:32:DD:1E:D3:2D:EA:33:C2:03:87:B9:1A:BA:62:A8:69
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018DEF97A278E434E2D20558BA5D686F73A8
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/1-At-qzLdHtMt6jPCA4e5GrpiqGk.roa
Signing time: Wed 28 Feb 2024 12:01:48 +0000
ROA not before: Wed 28 Feb 2024 12:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 62.60.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 12:25:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:97:a2:78:e4:34:e2:d2:05:58:ba:5d:68:6f:73:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Feb 28 12:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f80b7eab32dd1ed32dea33c20387b91aba62a869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:9f:47:f5:6f:e2:62:25:fe:f0:54:9c:63:e4:
02:f8:53:59:94:e4:e3:9e:84:3f:9b:3a:5a:a6:02:
42:3b:09:7a:89:9f:97:97:a9:ce:34:f3:c5:23:41:
70:e1:92:6a:9c:03:1e:c7:25:ee:8f:e9:c2:5a:2a:
4a:63:da:66:21:29:b2:05:a2:99:31:d1:23:0b:88:
85:c5:82:b0:a3:19:e4:d7:a9:d3:19:47:a3:8b:52:
ca:3c:5d:6b:3d:6e:c5:34:64:31:c2:d5:1d:37:85:
65:ff:37:83:2a:99:17:31:75:d5:85:da:ed:a4:0d:
ed:be:b4:f3:a5:d7:f4:a1:0f:aa:34:61:04:49:e1:
5e:34:37:7b:ba:bc:e9:54:39:75:03:9e:58:d3:c2:
c2:bc:12:2f:0a:31:82:f5:25:71:b5:ac:03:6d:f3:
da:db:6e:95:5c:9c:c3:1a:bb:13:e5:54:9c:12:27:
c7:f1:3f:b0:0b:38:77:5d:2b:33:de:31:4c:8c:2e:
63:9b:82:d2:96:af:a4:69:4c:46:f9:57:b9:8c:0a:
9b:7d:99:68:a4:da:8b:ff:25:bd:48:ce:1c:2b:9b:
99:91:a6:5d:92:30:ce:d7:9d:26:a1:23:80:2f:86:
b0:76:c7:57:fb:ae:c1:ed:8f:90:c1:99:38:de:68:
43:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0B:7E:AB:32:DD:1E:D3:2D:EA:33:C2:03:87:B9:1A:BA:62:A8:69
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/1-At-qzLdHtMt6jPCA4e5GrpiqGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.220.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:66:c1:07:8e:68:85:e8:c5:93:eb:bf:11:bf:1a:6a:40:fc:
a1:63:34:4b:83:0f:a1:85:92:47:3c:12:44:d8:8e:66:79:71:
92:75:3f:92:94:41:cc:7a:49:5f:38:fa:fd:77:1c:cc:6d:cd:
5e:07:39:d4:6f:d3:db:52:4c:61:18:05:51:01:ba:0d:ce:1a:
c4:b7:45:32:56:5b:28:36:0a:ee:70:b6:c9:2c:c5:12:7a:ab:
3f:9a:d5:e5:0f:0e:2d:7e:9b:c6:95:7e:8e:da:93:8e:4b:26:
d9:52:db:4e:4f:ab:d8:13:31:b0:a3:46:7e:8d:f3:f3:30:b8:
f2:e9:f6:9a:bb:6e:21:5d:fa:ad:15:55:09:ad:f7:70:52:5a:
bb:3b:15:4d:b9:3c:db:49:e5:16:60:5d:f5:f2:6d:95:dd:87:
c8:b6:fb:51:16:87:40:99:43:1c:30:6e:26:14:ae:28:aa:4e:
81:00:ac:b7:cd:b6:97:0b:1b:a0:d9:87:88:a5:dd:5a:c3:73:
03:33:25:e8:83:d1:41:99:9d:e1:27:8a:6d:5a:5a:96:07:7c:
05:8e:9f:f1:d4:f5:4d:1a:af:f8:f5:fc:be:a9:5a:f4:73:41:
0a:04:63:b1:32:0a:8e:c5:42:a8:6a:c8:26:4a:e2:79:38:cc:
d9:1f:d2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:28 2024 by rpki-client on console-ams.rpki-client.org