Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/OJtH5bj8rUkJXSaBxUoj60yEjsQ.roa
File: OJtH5bj8rUkJXSaBxUoj60yEjsQ.roa (raw, json)
Hash identifier: XOPGW67C6/okJmTYj/MC0J0+FdldYz72k3EOkAcAid4=
Subject key identifier: 38:9B:47:E5:B8:FC:AD:49:09:5D:26:81:C5:4A:23:EB:4C:84:8E:C4
Certificate issuer: /CN=493a2d48376330a582faf3e3032ef7b0bcca33e8
Certificate serial: 01905E3A51B1282C819A9BD49BB5CA68837D
Authority key identifier: 49:3A:2D:48:37:63:30:A5:82:FA:F3:E3:03:2E:F7:B0:BC:CA:33:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/OJtH5bj8rUkJXSaBxUoj60yEjsQ.roa
Signing time: Fri 28 Jun 2024 09:43:18 +0000
ROA not before: Fri 28 Jun 2024 09:43:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201961
IP address blocks: 62.244.103.0/24 maxlen: 24
62.244.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 09:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5e:3a:51:b1:28:2c:81:9a:9b:d4:9b:b5:ca:68:83:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=493a2d48376330a582faf3e3032ef7b0bcca33e8
Validity
Not Before: Jun 28 09:43:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=389b47e5b8fcad49095d2681c54a23eb4c848ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8a:88:ab:0d:27:53:e6:91:99:d7:b9:b0:3b:
2d:48:2c:e8:98:b4:e6:22:6e:e2:93:02:a6:b3:24:
db:c9:ad:8f:4c:0f:83:9c:16:69:c6:1b:03:18:cd:
b8:dd:63:f8:94:bc:f8:9f:4e:21:7f:bc:93:83:81:
68:0e:96:2d:41:16:a9:0f:43:ab:95:52:96:9b:c8:
b2:9c:b4:67:b9:65:5c:92:49:92:8c:db:86:b9:c8:
80:4a:4f:73:51:5e:d0:a8:1b:b3:ec:2f:57:0d:0c:
98:d7:4f:58:73:13:40:ee:23:72:fa:43:85:cf:70:
f9:64:b8:d2:05:18:a0:2a:f1:9d:74:40:ec:b7:6d:
3a:ea:c5:fa:a3:7a:ea:43:37:dd:50:98:87:2c:83:
0e:b4:68:33:46:63:45:aa:aa:1a:41:e0:a6:a4:ee:
4d:f4:7b:a1:92:27:f2:a7:e6:21:b2:7a:2c:2a:e8:
fe:0a:75:aa:f1:63:dd:8b:01:9f:d1:ae:da:52:e0:
c2:67:4f:8c:57:80:3e:d6:db:ff:65:60:97:7b:4e:
69:04:68:fb:4b:65:1f:59:6e:9b:cd:ec:fb:c2:f1:
60:b4:d0:fa:d6:2b:8b:65:1c:cf:30:6d:f7:5d:7c:
19:ff:cd:26:c0:a4:16:4f:82:2f:ca:ed:ac:88:ef:
c6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9B:47:E5:B8:FC:AD:49:09:5D:26:81:C5:4A:23:EB:4C:84:8E:C4
X509v3 Authority Key Identifier:
keyid:49:3A:2D:48:37:63:30:A5:82:FA:F3:E3:03:2E:F7:B0:BC:CA:33:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STotSDdjMKWC-vPjAy73sLzKM-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/OJtH5bj8rUkJXSaBxUoj60yEjsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d765a4-54eb-410d-8f3d-689ba4d33c4b/1/STotSDdjMKWC-vPjAy73sLzKM-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.244.103.0/24
62.244.106.0/24
Signature Algorithm: sha256WithRSAEncryption
37:e2:13:5d:02:7a:c7:67:c3:3f:a7:a5:fa:8f:54:86:36:08:
ca:ba:17:3f:c3:42:fc:86:87:92:7a:88:9d:0d:17:a5:a7:8e:
90:86:c8:0b:4e:70:1b:cb:12:f7:59:94:97:50:0f:69:28:d1:
ff:54:06:3a:67:47:7a:7c:06:09:45:29:55:96:45:54:5d:91:
11:b1:c7:b2:48:78:91:8a:6c:68:46:fa:88:2a:8d:ad:5a:21:
1d:d4:21:2b:a4:d9:c8:c6:4e:bf:2f:62:44:37:1e:0e:da:ba:
16:d2:b5:aa:cf:2e:89:f3:39:8d:ee:ad:dc:cc:dd:94:09:e7:
b3:71:7e:15:39:9a:4f:45:fc:eb:84:14:3c:9e:ba:27:6c:e3:
6b:e5:57:df:7b:ef:3c:ea:c0:16:c7:d9:52:74:6e:db:11:f5:
b2:03:a2:a0:8a:98:3d:26:94:68:38:85:36:a5:bc:e1:9c:04:
19:c3:48:fe:46:2f:f4:89:c1:ad:7c:b9:5a:c4:b7:78:f1:f4:
80:83:ef:69:85:39:4a:3c:d7:15:89:45:bd:da:04:89:7b:da:
19:9b:45:ed:8e:c0:b6:7f:64:60:86:98:ac:df:ba:79:e6:36:
d8:77:72:04:b3:2f:88:86:92:9f:53:31:f4:df:3f:7f:8c:49:
e9:32:5a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 13:20:18 2024 by rpki-client on console-ams.rpki-client.org