Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/CN7Bc1Q7wM4tY1TG9smoAvHQuts.roa
File: CN7Bc1Q7wM4tY1TG9smoAvHQuts.roa (raw, json)
Hash identifier: xvpct0R0SScj70UzpyfDwvDclNWCav3bILK6pmn3lQg=
Subject key identifier: 08:DE:C1:73:54:3B:C0:CE:2D:63:54:C6:F6:C9:A8:02:F1:D0:BA:DB
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019227FE477875287142D205557C44958952
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/CN7Bc1Q7wM4tY1TG9smoAvHQuts.roa
Signing time: Wed 25 Sep 2024 07:03:48 +0000
ROA not before: Wed 25 Sep 2024 07:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40940
IP address blocks: 62.60.216.0/23 maxlen: 24
213.176.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Oct 2024 07:17:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:27:fe:47:78:75:28:71:42:d2:05:55:7c:44:95:89:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 25 07:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08dec173543bc0ce2d6354c6f6c9a802f1d0badb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:63:15:51:6c:fd:3f:67:72:f0:fe:41:c1:76:
f6:a3:07:f5:2b:e8:b1:e2:ee:65:cd:66:d6:ef:7a:
e5:1d:b0:10:57:fc:67:cd:e7:30:ed:d3:1b:01:da:
f2:b7:2e:61:24:b1:f0:ef:f7:34:14:9e:3d:56:95:
cd:6c:99:be:9c:66:87:20:77:99:4c:00:3d:b8:6b:
75:58:c0:97:0a:a2:96:9b:2b:64:67:19:cf:b4:1d:
8c:be:da:bc:ac:4f:76:cc:8d:f9:aa:97:5d:88:76:
ea:fd:82:6f:5b:ce:07:64:8b:e4:4b:79:aa:ab:27:
14:df:e5:89:fc:f8:4d:34:9a:7a:47:b6:a2:64:94:
2d:05:1a:46:fb:50:de:cb:13:1d:a1:4f:e0:5c:e8:
d9:0e:b3:35:d5:c5:34:5d:2d:3d:70:2a:f5:0a:74:
ab:50:3e:35:d5:4a:ec:90:ce:7e:c4:30:02:29:f2:
e6:e3:21:24:5e:ee:d5:82:31:2a:a9:45:fd:d4:6b:
24:d0:5b:f6:78:48:c9:b6:46:97:aa:db:cc:9b:f5:
70:08:88:30:96:24:3c:f7:36:51:36:a0:19:39:e2:
0c:23:98:f4:ad:e4:30:df:e3:0d:c1:90:db:1e:f3:
e7:69:1f:48:ff:f5:31:38:79:e4:9f:ff:6c:64:5e:
36:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:DE:C1:73:54:3B:C0:CE:2D:63:54:C6:F6:C9:A8:02:F1:D0:BA:DB
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/CN7Bc1Q7wM4tY1TG9smoAvHQuts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.216.0/23
213.176.73.0/24
Signature Algorithm: sha256WithRSAEncryption
73:11:9d:7d:63:58:6a:44:16:a7:eb:58:af:cb:e6:f2:84:57:
61:d5:b3:8d:91:5d:bc:40:1b:c6:d2:8b:15:6c:7c:16:8c:e8:
3e:01:40:7d:08:ef:48:3b:f1:68:62:1f:30:ab:be:6b:1e:7d:
ff:ca:ba:31:8d:f2:5a:70:36:cf:c8:b6:11:90:70:9a:21:93:
4e:07:b8:63:22:76:e8:e3:58:d9:dd:41:7f:79:04:3c:1e:ce:
ab:6e:d0:20:2f:56:70:3b:04:df:4a:b2:58:91:de:78:d4:39:
ad:a7:f3:7c:c7:19:f3:c1:d0:0e:a6:70:de:04:7e:95:03:7f:
da:f9:dd:67:a8:10:0f:62:6c:05:50:98:c2:67:5f:83:03:a7:
24:26:e2:e6:37:51:85:aa:e9:47:bf:13:c4:ae:03:84:c3:bb:
e3:8c:00:c5:74:18:c8:a4:ca:3f:22:95:93:86:ce:b9:b4:99:
ab:e5:51:ff:4a:bd:e9:c8:d2:6d:52:d1:96:1b:70:fb:bd:ec:
e7:f6:ff:e2:8d:2e:5e:57:76:c1:af:83:2e:9d:12:d2:fa:20:
fb:c2:0a:6a:7c:ee:2f:af:65:a7:a8:f4:99:cc:40:ab:fa:16:
3f:0b:8b:31:46:5c:72:38:a8:7a:3b:b7:4e:f9:53:74:42:91:
6e:d2:3b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 08:56:40 2024 by rpki-client on console-fra.rpki-client.org