Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Ha7oKMCtr30g1X3EzuUB4eJPQpI.roa
File: Ha7oKMCtr30g1X3EzuUB4eJPQpI.roa (raw, json)
Hash identifier: 5bQXUMNq9zCR4bn+6lCF5dFvrjH++aile1rUEYiB04I=
Subject key identifier: 1D:AE:E8:28:C0:AD:AF:7D:20:D5:7D:C4:CE:E5:01:E1:E2:4F:42:92
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018A545581E16E0660BC4E1B25570B7B2D73
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Ha7oKMCtr30g1X3EzuUB4eJPQpI.roa
Signing time: Sat 02 Sep 2023 05:20:04 +0000
ROA not before: Sat 02 Sep 2023 05:20:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204765
IP address blocks: 62.60.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 10:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:54:55:81:e1:6e:06:60:bc:4e:1b:25:57:0b:7b:2d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 2 05:20:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1daee828c0adaf7d20d57dc4cee501e1e24f4292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:99:d3:75:0f:15:98:e9:cf:5f:6b:b6:53:6d:
53:0b:fc:70:93:6e:9c:a7:ea:ae:f1:b6:a4:07:ae:
55:37:72:12:54:35:4e:a6:ff:1f:d7:04:ec:49:58:
52:ba:cd:e2:9e:d8:27:07:ea:7f:d5:e3:87:4a:35:
ef:81:52:7d:97:08:80:e5:b4:cc:99:32:6c:07:ef:
6a:50:ad:49:15:13:31:3c:5b:bb:91:ee:3a:07:23:
2e:c0:3a:64:d2:c1:27:df:7c:d5:e0:74:c3:bf:6f:
ea:23:7e:ea:40:1a:5f:3c:e5:d1:c1:f3:59:45:d8:
34:8f:cb:84:d4:74:e5:80:9a:5c:7b:f7:79:94:0b:
e0:8d:1c:0b:a6:de:36:4d:3b:8a:05:fe:e8:a2:9b:
22:78:cf:16:af:eb:6f:bd:51:e4:a1:0a:bb:52:84:
48:7f:41:f0:33:3b:ac:5c:87:f5:03:87:b7:62:04:
25:4d:7a:ec:24:b6:50:67:ad:94:d3:28:27:f8:3f:
71:ca:c2:ad:98:80:6b:e7:3b:db:2e:84:e5:58:1b:
05:f8:ac:b7:78:a3:74:04:b6:0c:63:4c:2b:ff:94:
16:4c:58:29:00:7b:60:72:96:e2:d5:33:62:1c:ff:
1d:2e:ba:df:42:bc:68:9f:36:ca:ab:d0:ae:7b:31:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AE:E8:28:C0:AD:AF:7D:20:D5:7D:C4:CE:E5:01:E1:E2:4F:42:92
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/Ha7oKMCtr30g1X3EzuUB4eJPQpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.148.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:bf:b9:94:73:fc:50:8e:d4:9b:c2:b3:70:5d:f8:d4:a8:a9:
0c:54:99:b6:81:aa:51:b5:33:b3:0f:99:be:db:5b:14:31:5f:
da:8d:82:a0:8e:fb:e9:8e:7c:51:e4:2c:d0:61:2b:c3:b6:36:
14:2a:35:5c:75:75:50:32:98:2a:5a:2f:a5:bb:63:25:ea:e8:
58:b0:78:4a:f9:be:1f:4e:36:29:92:91:84:db:d9:f6:95:ce:
87:8a:61:0b:46:b8:3b:fb:a5:1b:8a:3f:a7:95:a8:26:bb:9c:
c2:24:cf:07:58:fc:a0:b9:95:73:f9:6e:44:14:7b:12:3e:36:
15:7c:f5:6a:5f:da:59:f1:76:97:6a:43:70:d0:a5:99:5f:d7:
cd:3a:45:d3:98:2a:fc:85:b8:b6:76:84:c9:7a:c0:63:ce:b6:
23:61:1e:98:ff:76:31:69:ed:ef:85:f9:fa:4d:c2:a0:c9:df:
b9:43:df:5f:41:7d:e5:a7:60:21:97:9a:1f:87:b8:1d:75:4a:
ed:32:fc:fd:7f:1a:3b:b8:24:64:4c:07:72:6a:44:4e:98:92:
ec:bd:70:21:61:9e:f9:b4:4e:65:a7:eb:16:d1:67:4f:59:2d:
7b:bf:fa:37:3e:dc:7d:fd:1a:68:81:51:cf:53:55:67:23:82:
82:b4:0e:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpUVYHhbgZgvE4bJVcLey1zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMwOTAyMDUyMDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGFlZTgyOGMwYWRhZjdkMjBkNTdkYzRjZWU1MDFlMWUyNGY0MjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5nTdQ8VmOnPX2u2U21TC/xwk26c
p+qu8bakB65VN3ISVDVOpv8f1wTsSVhSus3intgnB+p/1eOHSjXvgVJ9lwiA5bTM
mTJsB+9qUK1JFRMxPFu7ke46ByMuwDpk0sEn33zV4HTDv2/qI37qQBpfPOXRwfNZ
Rdg0j8uE1HTlgJpce/d5lAvgjRwLpt42TTuKBf7oopsieM8Wr+tvvVHkoQq7UoRI
f0HwMzusXIf1A4e3YgQlTXrsJLZQZ62U0ygn+D9xysKtmIBr5zvbLoTlWBsF+Ky3
eKN0BLYMY0wr/5QWTFgpAHtgcpbi1TNiHP8dLrrfQrxonzbKq9CuezFbRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2u6CjAra99INV9xM7lAeHiT0KSMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvSGE3b0tNQ3RyMzBnMVgzRXp1VUI0ZUpQUXBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPjyUMA0G
CSqGSIb3DQEBCwUAA4IBAQB/v7mUc/xQjtSbwrNwXfjUqKkMVJm2gapRtTOzD5m+
21sUMV/ajYKgjvvpjnxR5CzQYSvDtjYUKjVcdXVQMpgqWi+lu2Ml6uhYsHhK+b4f
TjYpkpGE29n2lc6HimELRrg7+6Ubij+nlagmu5zCJM8HWPyguZVz+W5EFHsSPjYV
fPVqX9pZ8XaXakNw0KWZX9fNOkXTmCr8hbi2doTJesBjzrYjYR6Y/3Yxae3vhfn6
TcKgyd+5Q99fQX3lp2Ahl5ofh7gddUrtMvz9fxo7uCRkTAdyakROmJLsvXAhYZ75
tE5lp+sW0WdPWS17v/o3Ptx9/RpogVHPU1VnI4KCtA7H
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org