Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4dc05b-7da2-4e98-87bd-a7323d393050/1/qREzQTw1AkohCXrT5cGpMS0p9ug.roa
File: qREzQTw1AkohCXrT5cGpMS0p9ug.roa (raw, json)
Hash identifier: pkE9CTfXX6rXMeMKG/DnPecN6QsTM+UT+bxl2rgOldw=
Subject key identifier: A9:11:33:41:3C:35:02:4A:21:09:7A:D3:E5:C1:A9:31:2D:29:F6:E8
Certificate issuer: /CN=b6bb794ce87aa867c8a757342f80d0da5fe81594
Certificate serial: 01856FA6D5C2113D7A7DB872754EB558C68C
Authority key identifier: B6:BB:79:4C:E8:7A:A8:67:C8:A7:57:34:2F:80:D0:DA:5F:E8:15:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trt5TOh6qGfIp1c0L4DQ2l_oFZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4dc05b-7da2-4e98-87bd-a7323d393050/1/qREzQTw1AkohCXrT5cGpMS0p9ug.roa
Signing time: Sun 01 Jan 2023 23:24:42 +0000
ROA not before: Sun 01 Jan 2023 23:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206402
IP address blocks: 62.68.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:d5:c2:11:3d:7a:7d:b8:72:75:4e:b5:58:c6:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6bb794ce87aa867c8a757342f80d0da5fe81594
Validity
Not Before: Jan 1 23:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a91133413c35024a21097ad3e5c1a9312d29f6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6b:42:5f:93:cf:9a:54:c1:4c:5a:3a:dc:4f:
c8:01:e3:10:6d:13:d7:93:3f:b9:77:ec:03:4f:a6:
9d:bf:e6:dc:a9:dd:07:93:d4:04:f9:f1:43:fd:cf:
d4:23:ad:94:a4:5f:00:61:d5:6e:57:bf:0a:51:d4:
f3:1f:6b:ed:80:5e:b7:58:0f:3e:15:33:69:fb:e4:
34:d3:69:0f:8e:83:5a:49:b5:07:70:88:ec:64:18:
3b:0a:95:82:3d:fd:99:a9:b1:94:04:e2:e8:ce:a6:
e2:5d:4e:39:84:53:ca:e3:4a:e3:9d:ab:04:59:be:
b1:85:7f:bc:c4:d2:8e:93:51:29:5c:0b:16:d3:65:
70:46:5d:e4:34:85:86:9e:b8:b5:63:9c:dc:4a:d5:
26:6c:95:3c:78:a0:2f:90:ea:a0:11:eb:c4:a9:51:
69:81:bd:36:60:8b:d4:2d:c3:ef:d9:d0:0a:16:00:
8f:7b:62:44:ff:63:2d:c9:bd:b7:3d:f5:70:15:7f:
91:22:17:49:f9:cf:f8:e4:1c:3b:6c:8b:7b:88:ae:
ab:78:06:f3:61:22:cd:c2:cb:79:96:cc:ba:3b:cb:
e4:55:05:3c:1c:9a:e5:3e:e9:11:9b:ba:49:6b:a5:
34:3d:f3:f4:f1:60:47:10:2e:14:2b:cd:a0:cd:92:
02:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:11:33:41:3C:35:02:4A:21:09:7A:D3:E5:C1:A9:31:2D:29:F6:E8
X509v3 Authority Key Identifier:
keyid:B6:BB:79:4C:E8:7A:A8:67:C8:A7:57:34:2F:80:D0:DA:5F:E8:15:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trt5TOh6qGfIp1c0L4DQ2l_oFZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4dc05b-7da2-4e98-87bd-a7323d393050/1/qREzQTw1AkohCXrT5cGpMS0p9ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4dc05b-7da2-4e98-87bd-a7323d393050/1/trt5TOh6qGfIp1c0L4DQ2l_oFZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.94.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:70:e6:dc:94:78:fd:de:14:eb:a0:b3:9e:9e:df:fa:29:9e:
73:63:be:c6:93:68:35:14:42:a7:b9:a0:b3:c7:c5:d4:1c:8f:
d7:d1:3f:bf:68:5e:10:d4:b6:66:16:14:6f:01:96:4f:a1:07:
7b:a2:04:2d:fb:95:7e:f2:3f:33:5c:00:8a:db:64:24:2a:4c:
e7:8b:1e:76:cf:8c:50:46:5a:42:6f:da:12:c5:43:47:52:e4:
49:85:36:a9:ea:9d:3e:17:30:ec:e4:89:fa:98:ec:5a:d6:f4:
65:36:7d:47:de:91:f4:79:22:1c:54:20:6b:ac:03:58:7c:59:
79:52:c3:93:b3:b7:8f:02:4e:ac:3c:3d:58:03:a2:85:98:08:
82:c9:50:10:bd:ae:24:6d:0f:03:85:cc:7d:06:c5:bc:6d:be:
39:bc:73:ed:d4:7c:ff:44:6d:e1:89:f4:95:cc:02:c9:d1:69:
ec:d8:e1:90:55:70:07:b2:e0:26:bc:57:37:11:68:45:f3:3a:
cc:b0:fe:92:df:5c:72:83:e2:00:ff:f9:25:1a:c1:95:cb:a5:
9e:0e:42:df:75:6b:30:7a:21:e2:73:55:ea:d2:61:dd:fc:36:
5d:ca:8f:ff:70:35:c5:53:af:a5:3d:eb:9f:52:62:fa:05:d3:
aa:fa:27:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:16 2024 by rpki-client on console-ams.rpki-client.org