Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/3Uha7kg7NJ6i0NXAcr59r8OdM-o.roa
File: 3Uha7kg7NJ6i0NXAcr59r8OdM-o.roa (raw, json)
Hash identifier: bZyPlPwETA/KplaLCZhfus8ijRKfiwrGe9of9+krVBU=
Subject key identifier: DD:48:5A:EE:48:3B:34:9E:A2:D0:D5:C0:72:BE:7D:AF:C3:9D:33:EA
Certificate issuer: /CN=993b9ea9fdb611b91c8574410ac925c5869f5a60
Certificate serial: 01856C8131072E8E5E4D4AF4289FC7DAA65B
Authority key identifier: 99:3B:9E:A9:FD:B6:11:B9:1C:85:74:41:0A:C9:25:C5:86:9F:5A:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mTueqf22EbkchXRBCsklxYafWmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/3Uha7kg7NJ6i0NXAcr59r8OdM-o.roa
Signing time: Sun 01 Jan 2023 08:44:44 +0000
ROA not before: Sun 01 Jan 2023 08:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56851
IP address blocks: 62.192.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:31:07:2e:8e:5e:4d:4a:f4:28:9f:c7:da:a6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993b9ea9fdb611b91c8574410ac925c5869f5a60
Validity
Not Before: Jan 1 08:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd485aee483b349ea2d0d5c072be7dafc39d33ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4d:53:3d:07:98:5b:2a:4c:a1:d9:00:94:d8:
d4:74:a4:32:90:c1:87:b6:37:f6:22:c9:d8:97:c0:
54:2d:3a:50:16:12:74:f7:b7:dd:3d:55:e6:8e:b2:
51:9b:6a:2d:95:43:fc:08:66:08:92:ee:20:ae:cd:
82:f4:a1:29:2b:4f:96:fe:1a:bd:1c:fb:0c:2b:9d:
2b:49:7c:36:e3:18:ed:7c:08:c6:47:bb:dc:b0:91:
e5:94:d5:4f:e3:eb:13:c1:05:d1:eb:cb:2c:bc:58:
65:12:11:6a:77:b5:2a:d4:86:95:08:2b:9b:f1:49:
de:29:21:43:04:1c:10:a0:81:cf:1e:61:fc:ff:8e:
09:75:ac:8c:25:49:75:e6:e6:53:cb:bb:91:79:51:
bf:79:bb:4a:ae:d6:8c:09:d8:e3:61:77:f4:c7:82:
bd:65:f7:ce:ca:df:44:b1:69:fa:0f:5a:31:78:85:
aa:82:c9:14:2f:34:3e:d3:9e:2e:4f:10:77:5a:75:
0e:39:24:0d:5d:58:52:c9:f4:de:ee:c4:86:a3:36:
71:3d:ed:3d:74:08:fc:ae:12:c1:d7:34:64:98:4a:
27:c7:93:0d:47:37:ce:d6:60:fd:29:38:3c:23:ec:
0a:e0:b4:b7:ab:67:ad:7f:1f:c1:9f:6c:5c:85:dd:
87:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:48:5A:EE:48:3B:34:9E:A2:D0:D5:C0:72:BE:7D:AF:C3:9D:33:EA
X509v3 Authority Key Identifier:
keyid:99:3B:9E:A9:FD:B6:11:B9:1C:85:74:41:0A:C9:25:C5:86:9F:5A:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mTueqf22EbkchXRBCsklxYafWmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/3Uha7kg7NJ6i0NXAcr59r8OdM-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/09f39d-ef64-46e2-9471-63622b66fb24/1/mTueqf22EbkchXRBCsklxYafWmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.154.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e5:b8:e3:9d:ec:7d:d3:0f:21:9b:b9:db:cd:c3:ad:43:e5:
ed:17:71:70:74:e3:0e:68:66:6e:0b:ca:4b:7b:11:a7:d6:c2:
0f:2a:f3:6e:56:92:36:55:7e:c6:67:9b:fb:cb:37:46:02:f3:
a1:7e:e9:89:7a:50:ad:4e:6e:99:cd:ce:58:a5:e3:a1:77:fe:
61:04:c3:09:a5:52:4f:b0:0f:17:ac:d1:2c:f7:ba:f6:78:f6:
75:9e:61:b7:ba:73:b1:22:66:e2:ee:b1:27:2d:03:cf:07:cc:
bb:f8:f0:f3:bc:4a:75:7b:85:68:49:32:95:f1:3b:54:53:19:
0d:68:14:22:bb:73:ec:d1:40:c8:e7:11:0d:60:61:97:21:ce:
2d:3e:c5:9e:8c:5f:fe:b3:b2:12:25:80:cd:ba:6c:c1:24:8e:
c9:b6:73:29:dc:ae:be:c4:e9:f4:bb:6a:63:81:45:d6:33:34:
4d:2c:bb:74:18:cc:21:c1:00:48:9e:e3:3d:7b:e2:aa:5e:11:
b1:8e:a1:9a:9e:2f:70:1d:0e:51:32:6a:d5:0c:f9:4e:d0:2f:
ff:c8:2e:99:ac:2c:99:a9:e5:5a:81:76:95:7a:39:c2:41:6a:
b6:7e:78:db:82:93:c7:08:a0:a5:52:ea:19:b1:90:b2:8e:e0:
50:aa:95:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:33 2024 by rpki-client on console-fra.rpki-client.org