Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/QJwvJPDTYDJ0Xjq44Y3h3eSENno.roa
File: QJwvJPDTYDJ0Xjq44Y3h3eSENno.roa (raw, json)
Hash identifier: oxiMySaICe042XFOCLUqsHmJ85Ra9xS2WI7hoAUeqxE=
Subject key identifier: 40:9C:2F:24:F0:D3:60:32:74:5E:3A:B8:E1:8D:E1:DD:E4:84:36:7A
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0185D86A1AE22B19BC52EDFE02C644F21429
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/QJwvJPDTYDJ0Xjq44Y3h3eSENno.roa
Signing time: Sun 22 Jan 2023 07:38:30 +0000
ROA not before: Sun 22 Jan 2023 07:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 62.60.200.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Mar 2023 14:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d8:6a:1a:e2:2b:19:bc:52:ed:fe:02:c6:44:f2:14:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 22 07:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=409c2f24f0d36032745e3ab8e18de1dde484367a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:24:cb:b2:48:9d:ff:44:0c:b1:7b:1c:b7:
42:d6:90:f2:65:81:3a:45:de:c6:60:7a:78:e5:0e:
b7:47:bd:bd:c4:31:c1:f1:08:9c:ea:33:df:f2:b4:
bc:7b:93:9a:7e:24:68:ac:63:22:3f:d8:f4:02:f0:
b6:3e:08:63:97:ac:f1:5b:42:07:8b:75:84:17:da:
b8:91:64:0e:5d:42:35:69:8a:06:b9:bf:8b:05:84:
99:4b:86:4b:2a:0c:ab:e6:2e:9f:64:0e:b5:f9:c9:
ae:db:9e:a4:22:25:ef:5b:c3:b1:97:c2:d2:d9:fb:
ac:0a:7c:cc:c1:13:b8:cc:eb:7d:b4:7b:a3:68:f2:
a3:a0:90:c3:44:80:ae:fe:ea:fa:8b:e8:a4:96:2c:
cb:6e:ab:39:ba:9e:a1:74:79:22:94:6e:1e:73:d8:
4c:d4:95:b0:35:58:ec:38:b7:7d:de:80:f0:91:70:
04:24:6d:2f:55:c0:e3:ee:c2:2e:fb:cb:a9:d3:1d:
01:e1:2d:4e:39:39:1d:5a:41:d4:a7:4d:46:a3:3e:
a5:4f:87:93:a1:6e:ed:ed:39:f6:8b:d9:ed:1f:6e:
d5:28:37:57:f6:87:25:45:a5:45:34:78:28:8e:30:
18:09:3f:1a:1b:68:03:ac:03:5c:5f:44:51:14:ac:
f7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9C:2F:24:F0:D3:60:32:74:5E:3A:B8:E1:8D:E1:DD:E4:84:36:7A
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/QJwvJPDTYDJ0Xjq44Y3h3eSENno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.200.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:61:29:34:98:02:d9:76:54:4b:8c:c9:a6:db:ae:68:e0:2e:
e5:27:f8:f5:59:fc:97:19:03:56:45:48:ae:36:5e:55:36:48:
36:12:aa:af:1f:cd:c0:ff:5e:0e:ef:60:3b:3c:4b:9b:f5:a7:
f6:a0:3d:3d:63:ff:b9:df:8e:6c:af:04:f8:ee:5c:e7:7b:95:
ff:3d:70:b1:5e:ea:54:ea:b8:8c:d2:a5:74:d9:19:2b:1c:6e:
24:8c:8e:67:4d:3e:a1:b8:0c:75:b2:32:57:83:7f:a1:37:64:
da:64:14:8e:35:52:95:fd:84:0c:7c:05:fc:8a:fb:fd:30:f1:
52:b1:f4:81:52:d6:62:6c:f1:68:4a:04:47:aa:12:18:c2:82:
7d:f0:a6:66:28:a6:a6:99:62:93:58:85:aa:ea:73:6e:2e:08:
f0:ec:3e:ec:a1:ba:df:ab:71:99:94:a8:bd:c5:21:25:b5:3c:
af:6c:3b:de:b7:7d:e9:20:30:f5:c4:b5:0c:ee:5b:2f:d4:f3:
19:70:76:ff:57:c2:a7:d5:e8:7b:fd:fc:6a:9c:fd:e2:e0:cc:
7a:a1:99:d7:f0:3f:14:af:d9:29:c6:56:77:64:b1:38:37:dd:
c5:b5:31:a8:c0:70:9c:b9:ad:34:0b:5a:37:6f:f0:18:4e:5f:
e9:5c:1f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org