Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/421e40-edf6-47aa-9abe-1b0f254de619/1/dxPC5AA1-U_swPPV-K1Im9xpO8U.roa
File: dxPC5AA1-U_swPPV-K1Im9xpO8U.roa (raw, json)
Hash identifier: HwvPgex+2JuPOs/UyR8ibiP7JNtJu8uZBcpmbyOqzts=
Subject key identifier: 77:13:C2:E4:00:35:F9:4F:EC:C0:F3:D5:F8:AD:48:9B:DC:69:3B:C5
Certificate issuer: /CN=ccf9a6d2f6cd588a77f423622e6b8d1c654bcdf2
Certificate serial: 0185709516C926CC117623A7E4250A6C3BD0
Authority key identifier: CC:F9:A6:D2:F6:CD:58:8A:77:F4:23:62:2E:6B:8D:1C:65:4B:CD:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zPmm0vbNWIp39CNiLmuNHGVLzfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/421e40-edf6-47aa-9abe-1b0f254de619/1/dxPC5AA1-U_swPPV-K1Im9xpO8U.roa
Signing time: Mon 02 Jan 2023 03:44:56 +0000
ROA not before: Mon 02 Jan 2023 03:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5588
IP address blocks: 62.201.16.0/20 maxlen: 20
2a06:8080::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:16:c9:26:cc:11:76:23:a7:e4:25:0a:6c:3b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccf9a6d2f6cd588a77f423622e6b8d1c654bcdf2
Validity
Not Before: Jan 2 03:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7713c2e40035f94fecc0f3d5f8ad489bdc693bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d8:0f:87:f6:4c:78:66:89:98:d0:66:ae:71:
cc:d9:9d:99:17:73:8e:91:63:7f:7e:fe:a4:28:b3:
42:bf:3d:8b:d6:1a:63:fb:d5:eb:ba:be:65:3b:0f:
1c:33:b1:f0:e1:c7:63:2a:13:02:ea:bc:e1:b6:b7:
b0:4e:f0:27:1c:6f:30:69:cc:7c:81:68:8c:5f:fe:
b3:d6:07:a4:33:d9:e2:f1:3b:17:65:cb:dd:dd:8e:
c9:4d:3a:1d:51:36:d1:2a:9e:b4:2c:2b:fc:cd:48:
17:97:fa:a4:35:d4:5b:47:7d:17:fb:14:b9:04:08:
45:03:58:76:c6:b2:c2:1e:4d:d8:25:7b:e4:82:10:
5e:74:db:68:ab:33:f7:fa:ff:dd:b2:7b:53:78:21:
d2:79:75:46:cd:e4:e0:d5:23:57:b9:b2:25:d5:5f:
35:04:b4:dd:8e:fe:2a:07:4e:1a:d9:22:bf:2c:33:
fb:e5:54:28:59:0c:b3:48:e9:d1:59:a4:f0:3f:0c:
16:48:70:b8:4a:20:a4:7e:61:89:98:d9:5b:fd:1f:
19:b2:b1:a7:47:8a:0f:b0:56:d1:39:9f:eb:a7:68:
61:bc:a7:f3:a3:5c:53:56:32:d3:c1:0e:51:95:3b:
6f:86:b5:02:1e:3b:96:a9:04:5b:0f:01:f0:1c:8d:
80:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:13:C2:E4:00:35:F9:4F:EC:C0:F3:D5:F8:AD:48:9B:DC:69:3B:C5
X509v3 Authority Key Identifier:
keyid:CC:F9:A6:D2:F6:CD:58:8A:77:F4:23:62:2E:6B:8D:1C:65:4B:CD:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zPmm0vbNWIp39CNiLmuNHGVLzfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/421e40-edf6-47aa-9abe-1b0f254de619/1/dxPC5AA1-U_swPPV-K1Im9xpO8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/421e40-edf6-47aa-9abe-1b0f254de619/1/zPmm0vbNWIp39CNiLmuNHGVLzfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.16.0/20
IPv6:
2a06:8080::/29
Signature Algorithm: sha256WithRSAEncryption
00:da:4c:e5:f1:53:2b:bf:5b:2c:ae:a3:f8:4a:0e:30:6b:e4:
1b:fc:d4:f9:49:69:8a:9b:ec:3f:35:75:36:c8:9c:b8:ac:e4:
28:a0:06:a2:aa:f6:7c:bd:29:6e:ca:66:05:c4:50:09:51:d8:
3c:4c:e5:4d:ed:8e:26:0c:9d:9f:c9:85:f2:fe:3e:9f:8c:df:
af:26:fc:95:00:04:a4:e2:b4:92:56:14:04:fe:26:ae:ec:67:
36:e8:7a:ec:f2:02:3c:38:65:10:dc:cc:04:71:5c:68:30:48:
bf:d0:f9:2b:2e:35:8b:ca:75:33:42:5a:91:b6:2b:f6:17:ca:
ce:c2:83:4b:5d:b1:e5:d1:f1:79:94:58:1b:26:94:c1:0d:d9:
a6:45:9b:d3:6d:55:ef:06:a2:2e:a0:35:6f:9b:59:4b:49:69:
ec:a8:dd:d5:62:5d:98:25:08:58:df:fd:d0:46:7a:17:05:b5:
b9:5a:ff:37:67:fa:29:32:ad:78:63:4a:28:c1:21:86:17:92:
71:87:23:db:f1:ce:96:a6:80:76:c6:03:57:3c:44:72:43:b7:
9d:86:10:ec:b2:19:e4:43:81:db:31:0e:b3:9b:e5:8a:1e:a3:
80:55:9e:dc:ed:fa:9e:32:ae:fd:2f:46:45:a7:29:45:30:e3:
ca:1e:3f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:53 2024 by rpki-client on console-fra.rpki-client.org