Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/s77-qRjLkGOXSstIB7wYJ7ZDT_A.roa
File: s77-qRjLkGOXSstIB7wYJ7ZDT_A.roa (raw, json)
Hash identifier: 0++uZVxPa7AAQhLDunG8h1LpC4NjygPv/9EFhc/Uew4=
Subject key identifier: B3:BE:FE:A9:18:CB:90:63:97:4A:CB:48:07:BC:18:27:B6:43:4F:F0
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018CCA29C1CA9FAD9F72E58FDFD626AA58B8
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/s77-qRjLkGOXSstIB7wYJ7ZDT_A.roa
Signing time: Tue 02 Jan 2024 12:33:03 +0000
ROA not before: Tue 02 Jan 2024 12:33:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 62.60.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 06:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:c1:ca:9f:ad:9f:72:e5:8f:df:d6:26:aa:58:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 2 12:33:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3befea918cb9063974acb4807bc1827b6434ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4f:7a:2e:de:94:2b:6f:95:52:7f:ed:ef:dd:
a4:0e:f8:2c:6a:7d:2d:cd:e3:50:8c:7e:76:3d:36:
7c:b8:a5:68:47:59:49:08:19:1d:61:52:3e:95:63:
96:9f:ff:b9:72:9e:56:03:8d:7f:5a:c4:4d:f0:43:
4f:f6:d0:85:ab:e9:8f:f7:f4:ac:e7:2f:0b:54:f5:
c8:21:d9:51:32:35:3c:0a:35:9e:22:4f:8b:13:39:
c5:47:8b:1a:dc:7f:ea:25:85:fe:a6:ec:fe:c0:cd:
d2:bc:37:7f:31:50:54:6d:a5:17:b1:48:bc:f6:5b:
db:7e:79:fc:48:43:51:77:47:d1:6e:19:3d:a9:33:
c5:52:47:4f:7b:4f:ef:ab:80:da:99:cd:69:21:89:
28:89:f1:59:b2:2b:b7:53:d8:ba:12:24:5e:48:93:
a8:0e:a7:57:3e:2f:86:2a:dc:1d:f3:39:fa:ad:59:
5c:39:09:18:d2:d1:27:ed:72:27:65:98:3b:e0:2d:
24:c3:0b:13:10:1e:fe:8d:4a:b1:b0:8d:42:ee:1d:
61:75:91:26:6f:16:25:89:75:20:a5:7a:d6:14:c8:
ac:8f:3f:5b:a8:f7:dd:ae:fe:1a:53:00:1d:7c:d8:
3e:4b:cf:fd:e5:f8:ad:36:25:31:1b:8c:22:f1:18:
20:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BE:FE:A9:18:CB:90:63:97:4A:CB:48:07:BC:18:27:B6:43:4F:F0
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/s77-qRjLkGOXSstIB7wYJ7ZDT_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.220.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:e2:83:3f:24:76:86:a9:a6:a7:d9:85:4d:90:e5:11:1a:25:
e8:da:91:3c:f4:2a:88:5f:95:80:b1:93:f1:8c:45:d5:26:58:
24:4f:09:2e:50:ed:cf:a8:89:fa:82:96:01:73:28:4c:ce:01:
de:34:7d:ee:ec:8c:34:15:5a:02:09:f1:a2:65:cc:5c:cb:1b:
35:20:c0:bc:c3:59:42:a8:c2:64:93:53:fc:1e:ce:36:65:18:
be:cc:82:ee:82:b1:3e:9b:a2:a5:20:c9:79:dc:c5:5e:94:3d:
e5:f8:b0:ce:4f:5a:82:e3:47:9c:cf:26:18:bd:ed:a5:ce:93:
2e:05:a5:a3:92:29:f2:76:d0:7a:d2:9e:9b:13:14:a5:7d:b2:
04:9a:a6:3e:92:db:fa:87:49:9d:5b:c4:0d:ea:1a:54:ad:f0:
fa:1b:7c:a9:f1:99:cf:5e:67:f0:e8:fa:1e:60:55:66:70:c7:
23:4c:47:1d:83:04:dd:8c:57:92:fb:9d:c9:70:c6:73:26:4d:
87:3d:ef:8b:af:d5:99:8b:4c:51:db:c5:34:26:dc:8f:e2:10:
e9:46:1a:7b:18:50:56:e5:82:9d:fc:bd:4b:f9:bb:0f:ac:b3:
82:00:81:06:f1:bf:b3:ac:85:de:64:c0:17:16:e9:3d:6d:b2:
65:ba:cd:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:30 2024 by rpki-client on console-ams.rpki-client.org