Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/aF0mkoWRXIP6b_0eKaJXn95fU1c.roa
File: aF0mkoWRXIP6b_0eKaJXn95fU1c.roa (raw, json)
Hash identifier: +gEGR7L9IB/2El6vbVuaZEp41fFqL5BdOQAVSD4LaNs=
Subject key identifier: 68:5D:26:92:85:91:5C:83:FA:6F:FD:1E:29:A2:57:9F:DE:5F:53:57
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018AACDC40832DB8FC2CA461421F41DA8B69
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/aF0mkoWRXIP6b_0eKaJXn95fU1c.roa
Signing time: Tue 19 Sep 2023 09:53:50 +0000
ROA not before: Tue 19 Sep 2023 09:53:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64458
IP address blocks: 62.60.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 04:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:dc:40:83:2d:b8:fc:2c:a4:61:42:1f:41:da:8b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 19 09:53:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=685d269285915c83fa6ffd1e29a2579fde5f5357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d3:57:d5:3b:11:85:f8:b6:7a:23:45:75:ac:
69:11:5c:5a:33:17:50:dc:61:9f:f1:6f:ca:d6:6f:
74:17:18:6f:ce:10:0c:45:cd:91:f2:88:18:e7:34:
bc:08:b5:5b:44:4f:20:ff:6d:48:6f:a1:71:ee:5c:
5c:e4:e2:e1:00:ff:90:1e:72:34:1a:6c:7d:7b:e9:
27:cf:ac:06:0c:b8:d5:68:98:fc:ef:41:d3:af:43:
9e:3b:c6:32:57:01:4a:e2:ee:c6:f9:20:f9:2f:6f:
d5:32:5e:50:2b:58:31:38:e6:96:7a:4c:00:d9:ff:
52:5b:67:bc:a2:b4:8c:1c:fe:b2:ac:ef:e1:ea:05:
6f:3e:4a:a5:84:8d:de:ba:91:cc:ad:4c:bf:0b:5a:
38:00:00:1b:d6:10:4f:f0:7b:ba:88:3f:11:7e:2e:
88:fa:d0:01:8b:20:4c:5f:cb:e7:87:3c:6c:3e:2b:
30:32:88:1d:59:9b:51:78:f9:02:6a:1a:75:bd:c4:
51:55:bf:30:6d:96:e6:fb:69:36:6f:5e:69:c8:34:
78:da:04:aa:18:00:88:ab:a7:df:7d:58:64:04:43:
3a:dc:06:00:e4:d7:b4:67:6c:1b:a5:ff:a5:93:09:
1a:5c:84:53:d0:d8:c4:e9:67:26:13:b9:48:c2:6e:
ab:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5D:26:92:85:91:5C:83:FA:6F:FD:1E:29:A2:57:9F:DE:5F:53:57
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/aF0mkoWRXIP6b_0eKaJXn95fU1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.148.0/22
Signature Algorithm: sha256WithRSAEncryption
25:bb:90:1d:f2:64:73:d2:9f:c0:1f:7f:a0:7e:44:70:e3:70:
6b:95:fe:fc:d3:b1:93:ca:94:50:ae:ec:ad:41:0b:0b:96:34:
d1:f1:17:98:e1:62:79:b4:0a:e6:ed:30:92:99:6a:84:29:37:
a2:cd:3b:a2:80:58:8a:8e:f4:cb:7b:7a:87:26:56:7e:47:df:
26:31:de:a4:9b:c4:fc:88:a1:a0:fd:3d:e4:d7:6f:8b:76:6d:
04:9a:96:15:10:b2:01:32:90:11:bb:7d:a9:49:1a:75:58:11:
33:35:8e:0f:a8:19:f1:a0:2f:80:b7:bf:58:36:4c:86:59:e1:
82:61:9d:e8:79:11:5b:29:db:49:af:22:3f:0d:41:ab:67:10:
e0:de:d4:10:dd:37:a8:88:71:c4:86:67:30:f8:63:56:c0:b0:
3c:37:a1:a1:78:2f:d6:20:0d:1b:bd:76:ae:82:02:0b:9c:bf:
16:28:48:0c:d9:dc:75:02:b8:ce:d0:6c:5c:c3:20:0e:70:bb:
42:6c:2d:7e:43:3a:d5:2a:03:4d:6a:12:90:1f:c3:70:cd:c4:
08:5a:01:9e:14:f6:e0:30:27:aa:f6:99:fe:11:c0:10:68:dc:
71:82:81:d7:f8:bb:fa:40:78:94:f2:cc:7b:b0:86:6d:26:2d:
aa:d3:11:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org