Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/3Qn-DVmpHDMs6nyJrkWScYWLfWM.roa
File: 3Qn-DVmpHDMs6nyJrkWScYWLfWM.roa (raw, json)
Hash identifier: WTNI2qHeA29IUjRbedAXC+pdlpZJs5dG9Ut+XSZVv5w=
Subject key identifier: DD:09:FE:0D:59:A9:1C:33:2C:EA:7C:89:AE:45:92:71:85:8B:7D:63
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01901ADA06D67740402CBDF13B84C92C5C88
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/3Qn-DVmpHDMs6nyJrkWScYWLfWM.roa
Signing time: Sat 15 Jun 2024 07:43:34 +0000
ROA not before: Sat 15 Jun 2024 07:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40940
IP address blocks: 62.60.216.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 06:56:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1a:da:06:d6:77:40:40:2c:bd:f1:3b:84:c9:2c:5c:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 15 07:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd09fe0d59a91c332cea7c89ae459271858b7d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:01:61:34:54:6d:0d:bf:bf:b4:1e:4c:86:e6:
48:10:ce:c5:77:c8:9c:a8:7f:03:6b:8f:f6:00:43:
bc:a4:3c:7a:e4:91:7c:d4:56:b2:dd:09:56:60:f0:
a9:64:ba:87:38:a6:f7:b4:b8:2e:0c:de:42:c2:98:
1e:6a:d4:7b:9b:03:18:36:03:ba:54:99:b9:3a:6f:
5a:a4:8b:ab:90:39:16:d5:a9:d4:ed:4a:25:4a:90:
ed:c7:2a:c9:e8:69:31:4f:d5:a2:f3:4a:cd:45:7e:
cf:65:41:6e:cd:df:ee:52:62:da:e8:db:65:07:96:
a0:33:fc:9b:69:be:62:ca:4a:21:42:4d:c1:5a:fe:
82:f6:fb:fb:fb:b2:02:12:37:61:a9:bf:8d:e9:a3:
60:95:88:f7:94:fc:c5:d8:0d:6c:a9:c0:f5:69:13:
bc:5b:ef:d2:e2:01:35:b0:fa:e8:0b:27:a8:c5:79:
e3:15:f4:d6:af:32:53:78:b5:45:a9:f5:bb:2c:62:
d0:79:59:cd:67:e2:11:dc:41:c0:02:06:57:93:07:
af:f9:9c:d4:a5:b0:44:0e:49:2e:d5:cc:38:de:f7:
7a:aa:1f:d2:a1:de:b2:b4:ec:75:41:04:58:f4:6b:
de:e8:55:f1:4d:70:df:99:45:f3:5d:a9:26:6b:5b:
a3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:09:FE:0D:59:A9:1C:33:2C:EA:7C:89:AE:45:92:71:85:8B:7D:63
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/3Qn-DVmpHDMs6nyJrkWScYWLfWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.216.0/23
Signature Algorithm: sha256WithRSAEncryption
43:f9:ba:d2:a4:a9:e0:c2:20:b3:4c:38:ac:b4:92:b6:a5:a6:
d6:b2:0e:4a:87:7c:0d:7f:83:92:72:69:04:9b:09:39:e2:1c:
98:2e:cb:8b:2e:f9:09:c4:23:82:94:cb:f2:75:f9:44:2e:a9:
fc:30:7a:5a:64:10:de:6b:74:48:43:f8:eb:ad:bb:41:f9:64:
26:35:98:75:2e:e7:46:e7:31:df:07:7c:dc:d0:0d:8b:82:cb:
52:47:6d:0e:eb:41:14:2d:83:ea:9d:e1:8c:e9:e2:0a:0f:2a:
6b:b7:32:fd:c0:ee:13:f2:af:ae:a2:5b:3b:c6:5a:55:f6:10:
0a:17:69:c6:09:bd:87:8d:39:ab:b1:93:26:2d:b3:15:f6:74:
fc:21:24:15:98:88:93:8b:b8:60:f5:ee:1f:22:32:cc:92:3d:
07:24:16:37:d6:2d:a7:eb:be:db:c7:19:14:53:41:9a:84:6b:
d3:6b:ba:7e:e5:96:b3:5a:0d:39:36:8f:0e:bc:bc:8b:c0:90:
cb:8e:8b:96:ee:db:9e:e2:56:0c:d1:c4:07:f9:86:0b:2c:8d:
5b:a0:3a:ca:45:19:1f:08:60:3f:7b:2e:43:29:9d:1e:82:03:
84:0c:63:bb:57:00:0f:49:a3:d6:90:8e:32:af:ad:3d:a1:a7:
a3:11:57:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 12:53:24 2024 by rpki-client on console-ams.rpki-client.org