Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/USXQmbV96VIeNoY5SjskW8JnWbg.roa
File: USXQmbV96VIeNoY5SjskW8JnWbg.roa (raw, json)
Hash identifier: 4jIOTAxfILmjw4I0cxV6Ww5zjdl016xKPnEM3Vh+Xvc=
Subject key identifier: 51:25:D0:99:B5:7D:E9:52:1E:36:86:39:4A:3B:24:5B:C2:67:59:B8
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0189CE6516D0621A6A24D16EB3EC2DBA7528
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/USXQmbV96VIeNoY5SjskW8JnWbg.roa
Signing time: Mon 07 Aug 2023 05:07:58 +0000
ROA not before: Mon 07 Aug 2023 05:07:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210474
IP address blocks: 62.60.143.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ce:65:16:d0:62:1a:6a:24:d1:6e:b3:ec:2d:ba:75:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 7 05:07:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5125d099b57de9521e3686394a3b245bc26759b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e6:66:28:41:09:1b:9c:f4:bd:77:90:38:e4:
d6:f4:3b:e8:6e:ab:f6:92:9a:48:79:ea:b8:dd:ab:
08:3d:0c:43:30:6e:80:cf:2b:c8:69:06:1e:66:02:
6c:99:fc:1f:f3:d2:cf:a0:4c:29:27:3c:1c:d0:5a:
ba:14:e3:7d:9d:f8:06:cf:37:5a:f2:61:c1:4a:22:
c3:6d:2f:cf:c4:16:a9:19:03:14:5b:6b:bc:08:be:
92:39:90:86:be:58:d3:1e:d1:78:ac:03:28:ec:f6:
dc:58:4a:53:c5:08:05:8d:20:cf:a1:33:76:ff:17:
f3:d1:00:0c:33:d5:8b:bd:8a:89:14:18:0e:56:36:
3d:21:1a:d9:83:23:de:1b:42:c9:99:67:c8:36:6b:
39:fd:5b:95:56:a4:33:cd:53:a3:c2:29:b8:6b:33:
8f:f6:46:4c:ea:92:52:24:f7:46:44:11:c8:ec:49:
08:03:81:94:e1:c6:5f:52:bc:bc:3a:e2:30:17:3a:
57:8f:95:15:7f:69:4c:95:8a:64:68:97:5e:cd:b7:
02:34:74:ec:22:1c:b9:dd:fd:fb:88:03:f0:42:d6:
54:e1:aa:ac:59:d8:3a:66:76:13:5c:d6:09:50:a3:
fb:ce:db:04:a1:c5:05:0e:46:c3:ce:08:4f:db:12:
2a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:25:D0:99:B5:7D:E9:52:1E:36:86:39:4A:3B:24:5B:C2:67:59:B8
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/USXQmbV96VIeNoY5SjskW8JnWbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.143.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:a6:ae:fb:b3:36:d3:33:79:38:78:75:1d:b1:6b:e0:e2:82:
65:12:c7:f0:2a:eb:56:10:f8:4c:31:de:bc:04:29:3d:40:4b:
56:24:37:fb:a8:12:0d:4b:cc:6d:e9:9e:2d:0d:e1:f8:5e:b1:
a6:ab:73:9e:33:11:9b:28:a2:68:4a:4c:d8:b5:6b:d9:f0:63:
73:1d:14:41:51:54:1b:50:0c:be:a6:05:c6:b6:c6:d1:e9:43:
31:04:79:95:84:45:7f:f0:e0:a7:42:28:4e:7d:b5:25:b6:0c:
fd:92:a9:e7:29:3e:85:56:01:97:b8:e2:94:29:eb:95:0e:52:
b6:22:11:4e:92:29:12:22:d4:77:f1:c7:10:67:10:0f:97:f8:
c1:93:22:73:2f:0e:f6:df:a6:e9:6c:45:6e:10:c3:c8:0c:c5:
08:4c:32:5d:16:76:6f:95:a0:5c:9d:2b:f7:cf:23:e7:20:1e:
0a:05:e3:10:75:97:f5:7f:75:d2:55:9d:e9:8a:61:ed:4c:85:
04:60:ae:a6:39:7a:85:08:13:ea:16:d5:0b:82:22:f2:47:e7:
88:f3:64:04:de:42:99:a6:6f:bf:7a:77:1d:71:9c:06:ee:f2:
e7:8b:c5:21:ac:2f:91:3b:42:2f:74:4c:71:c3:a9:b7:33:ad:
9b:19:8b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 4 08:10:46 2023 by rpki-client on console-ams.rpki-client.org