Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/AulYZSzAZA0MYr_YF2WODIHe32I.roa
File: AulYZSzAZA0MYr_YF2WODIHe32I.roa (raw, json)
Hash identifier: hdIlugNfQEnivBUA7ELBK73ufz820Tp4gfCt+vuM/OQ=
Subject key identifier: 02:E9:58:65:2C:C0:64:0D:0C:62:BF:D8:17:65:8E:0C:81:DE:DF:62
Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Certificate serial: 01856E264E607B2A34C2CBD4D31521F26C4E
Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/AulYZSzAZA0MYr_YF2WODIHe32I.roa
Signing time: Sun 01 Jan 2023 16:24:42 +0000
ROA not before: Sun 01 Jan 2023 16:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29222
IP address blocks: 62.220.150.0/24 maxlen: 24
2001:789::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 21 Aug 2023 13:47:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:4e:60:7b:2a:34:c2:cb:d4:d3:15:21:f2:6c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Validity
Not Before: Jan 1 16:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02e958652cc0640d0c62bfd817658e0c81dedf62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:45:20:89:85:2f:96:34:45:b1:0a:c5:15:3a:
01:4d:e1:6c:21:dc:26:90:4c:81:64:8f:e3:71:28:
5b:2f:77:0c:da:b5:54:d5:20:c6:d7:22:91:06:a3:
4d:da:b2:ae:82:23:c4:cb:3f:d7:78:6f:dd:96:cb:
dd:fa:ec:5a:2d:fa:a1:72:91:f0:5f:98:fc:36:6b:
3a:71:e3:52:9c:64:87:b8:a7:88:f0:c9:ea:14:12:
12:24:92:c3:7b:11:33:04:12:65:f4:65:97:67:8e:
b2:f1:99:09:c3:fa:87:03:8a:99:08:a2:12:6c:35:
f0:3b:5f:47:4a:03:ae:1a:c5:bd:30:6a:0c:b2:bf:
9d:6a:97:24:ad:c6:da:c0:d3:b3:5a:2f:a0:08:76:
41:5f:f7:d4:66:55:ae:6c:40:cb:32:16:b9:e8:cc:
9e:fb:b4:94:78:36:fd:52:e2:cf:cb:5f:7d:a6:85:
c6:5f:f3:c0:e7:57:a4:3f:ce:97:85:db:83:69:f5:
26:5c:61:09:b5:20:16:52:98:10:46:3f:e7:39:8e:
a5:9b:90:0e:69:8e:69:76:a6:77:44:0f:50:c8:8d:
0c:91:9d:3c:c6:11:6d:f8:4e:aa:44:bd:75:de:2a:
d7:36:56:51:5f:a9:69:9c:db:e7:4e:77:c7:8c:a0:
15:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E9:58:65:2C:C0:64:0D:0C:62:BF:D8:17:65:8E:0C:81:DE:DF:62
X509v3 Authority Key Identifier:
keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/AulYZSzAZA0MYr_YF2WODIHe32I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.150.0/24
IPv6:
2001:789::/32
Signature Algorithm: sha256WithRSAEncryption
29:ca:b1:f8:60:0d:dd:0f:df:86:35:ac:6d:55:97:17:c9:85:
51:7c:e3:de:6d:9b:49:7e:2c:cf:45:85:db:f5:ce:64:99:63:
38:37:61:72:7e:50:01:57:e5:db:7c:cd:3c:34:9a:bc:23:5c:
42:3c:b1:30:a3:8e:7c:c5:5d:96:8c:fb:23:2c:03:5c:7d:ff:
9e:fb:96:76:92:01:a8:54:31:0e:bb:2e:3a:be:9c:c5:d8:b8:
d1:60:b5:be:56:7b:a3:5e:66:94:93:c0:40:a3:82:d5:09:ed:
47:35:3c:5b:ea:71:33:f3:c7:96:22:f9:c6:9c:73:08:a9:d2:
13:dc:29:9b:f2:bc:4e:39:b3:3e:42:83:83:11:ed:f3:db:99:
e1:d6:75:41:9e:c3:09:76:69:8a:02:fa:50:2c:35:d2:2d:35:
58:54:c4:72:f4:9f:cb:1c:e7:71:14:d9:2d:f4:bc:7a:28:69:
bd:b8:ed:d1:06:1e:92:4d:fd:9d:60:d5:d5:c3:ae:14:05:f9:
97:7d:86:f2:df:57:9e:81:eb:02:a4:49:22:fe:9e:8a:bf:13:
ca:2b:e9:c9:e9:c0:8c:ba:cb:0a:79:97:70:bd:5d:37:a0:e2:
51:e1:4e:f5:ef:9d:35:02:50:e9:f4:84:3e:bb:39:e2:b8:bb:
8a:da:ec:35
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVuJk5geyo0wsvU0xUh8mxOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhZThjNzhmMTYxMzk3YWUxZGJkMGFjMzIyNTg0ZjYyZmI3
NDAwOTcwHhcNMjMwMTAxMTYyNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMmU5NTg2NTJjYzA2NDBkMGM2MmJmZDgxNzY1OGUwYzgxZGVkZjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA90UgiYUvljRFsQrFFToBTeFsIdwm
kEyBZI/jcShbL3cM2rVU1SDG1yKRBqNN2rKugiPEyz/XeG/dlsvd+uxaLfqhcpHw
X5j8Nms6ceNSnGSHuKeI8MnqFBISJJLDexEzBBJl9GWXZ46y8ZkJw/qHA4qZCKIS
bDXwO19HSgOuGsW9MGoMsr+dapckrcbawNOzWi+gCHZBX/fUZlWubEDLMha56Mye
+7SUeDb9UuLPy199poXGX/PA51ekP86XhduDafUmXGEJtSAWUpgQRj/nOY6lm5AO
aY5pdqZ3RA9QyI0MkZ08xhFt+E6qRL113irXNlZRX6lpnNvnTnfHjKAV1wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFALpWGUswGQNDGK/2BdljgyB3t9iMB8GA1UdIwQY
MBaAFFrox48WE5euHb0KwyJYT2L7dACXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3VqSGp4WVRsNjRkdlFyRElsaFBZdnQwQUpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni80ZDI3YmItZjg1Yy00YmZkLWIxYzMt
NDdiY2QzOWMzZDg2LzEvQXVsWVpTekFaQTBNWXJfWUYyV09ESUhlMzJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni80ZDI3YmItZjg1Yy00YmZkLWIxYzMtNDdiY2QzOWMzZDg2
LzEvV3VqSGp4WVRsNjRkdlFyRElsaFBZdnQwQUpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAPtyWMA0E
AgACMAcDBQAgAQeJMA0GCSqGSIb3DQEBCwUAA4IBAQApyrH4YA3dD9+GNaxtVZcX
yYVRfOPebZtJfizPRYXb9c5kmWM4N2FyflABV+XbfM08NJq8I1xCPLEwo458xV2W
jPsjLANcff+e+5Z2kgGoVDEOuy46vpzF2LjRYLW+VnujXmaUk8BAo4LVCe1HNTxb
6nEz88eWIvnGnHMIqdIT3Cmb8rxOObM+QoODEe3z25nh1nVBnsMJdmmKAvpQLDXS
LTVYVMRy9J/LHOdxFNkt9Lx6KGm9uO3RBh6STf2dYNXVw64UBfmXfYby31eegesC
pEki/p6KvxPKK+nJ6cCMussKeZdwvV03oOJR4U717501AlDp9IQ+uzniuLuK2uw1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:28 2024 by rpki-client on console-ams.rpki-client.org