Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/TI6fmoHBCvkA4Q1uzdVeSR0U2aM.roa
File: TI6fmoHBCvkA4Q1uzdVeSR0U2aM.roa (raw, json)
Hash identifier: KOBGgKYf/Djhgzr1aPqGYmPHgh/HUubwLXmO7wZ9st4=
Subject key identifier: 4C:8E:9F:9A:81:C1:0A:F9:00:E1:0D:6E:CD:D5:5E:49:1D:14:D9:A3
Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Certificate serial: 018CCA2BA26033F6B44D8259AD9E076BD83A
Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/TI6fmoHBCvkA4Q1uzdVeSR0U2aM.roa
Signing time: Tue 02 Jan 2024 12:35:06 +0000
ROA not before: Tue 02 Jan 2024 12:35:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35600
IP address blocks: 62.220.150.0/24 maxlen: 24
2001:789::/32 maxlen: 32
2001:789::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Mar 2024 15:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:a2:60:33:f6:b4:4d:82:59:ad:9e:07:6b:d8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Validity
Not Before: Jan 2 12:35:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c8e9f9a81c10af900e10d6ecdd55e491d14d9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c6:8c:e6:94:0f:00:1e:77:9d:ce:9b:61:8a:
9b:54:c2:b0:2a:b2:96:28:62:a5:d3:9b:93:de:4d:
6b:d6:0c:0c:fe:ab:01:fe:c0:4a:43:9a:f4:59:28:
25:4e:dc:e1:34:d6:20:37:ef:1f:7f:ad:6a:09:6c:
51:d3:2c:ec:8c:12:f2:ca:d8:06:e6:e4:e6:9a:a3:
d6:48:e3:1b:75:54:b2:3c:1a:54:bd:1e:e1:c1:93:
20:d0:f3:4b:74:8f:b9:2c:d8:32:63:f0:3b:57:83:
08:3d:d0:8b:1c:f2:3a:75:a1:4a:f5:97:83:2d:37:
14:22:11:82:ab:35:af:29:95:aa:12:b0:df:bd:c0:
03:25:66:70:5b:01:b2:cd:8b:fd:b3:e7:3a:23:a0:
7d:03:e4:42:4a:57:56:24:82:5d:1c:13:0a:19:e4:
e2:6d:85:1b:19:41:cb:f0:60:39:a2:f0:45:cf:7c:
e2:74:f6:29:03:2b:17:e7:8b:74:62:3f:5c:42:f4:
50:98:5c:4f:84:79:43:a3:4d:72:b9:2d:2e:79:4a:
5a:91:ce:7e:d1:74:ae:89:bf:7d:28:57:35:2a:e7:
37:75:fb:b8:ca:08:9b:30:60:23:71:12:d0:b1:d5:
a5:36:4c:53:94:66:c9:bd:82:90:22:9f:be:f4:5f:
24:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8E:9F:9A:81:C1:0A:F9:00:E1:0D:6E:CD:D5:5E:49:1D:14:D9:A3
X509v3 Authority Key Identifier:
keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/TI6fmoHBCvkA4Q1uzdVeSR0U2aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.150.0/24
IPv6:
2001:789::/32
Signature Algorithm: sha256WithRSAEncryption
07:12:46:e9:74:9e:ae:bb:b7:1e:aa:05:4a:5d:bf:f4:1e:7b:
4f:92:e0:35:ec:3c:25:b9:4c:a9:51:56:c8:e8:e6:03:45:91:
4e:9a:96:31:91:b1:4e:62:12:ef:ef:c2:36:11:53:80:bd:34:
ca:51:9f:d4:c8:e8:8a:7a:6b:29:50:5c:85:04:7b:f5:69:d6:
b1:a3:46:4a:e0:8c:a9:9c:b2:d6:95:50:b6:62:15:df:3a:13:
6b:ec:03:39:fb:92:fd:e2:dd:40:e2:6e:6b:7f:71:e5:a0:30:
71:1b:20:92:64:dd:9a:53:5d:a0:26:43:7a:0b:93:5d:7a:3e:
7a:d3:b1:fa:58:b4:15:32:2f:b4:97:07:6b:1b:d1:62:5c:c2:
25:89:7b:8c:a7:62:9c:51:09:1b:aa:1a:00:80:e3:c1:f5:8e:
05:9e:9a:54:1d:ec:1e:fa:eb:5d:0f:cc:a7:40:8a:1c:f7:19:
19:4e:f1:84:0c:08:cf:b8:e4:fa:79:d5:13:50:c0:53:7a:b4:
0a:dd:03:5a:ea:ff:b8:6b:f4:a3:51:6d:06:0b:c7:20:9c:b0:
0e:c7:3f:1d:66:5e:e2:79:70:a2:37:9a:e5:09:6c:54:a1:b6:
5b:39:a7:78:1f:38:11:bb:5e:63:47:dd:00:6f:e0:21:e6:30:
6b:70:c6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:28 2024 by rpki-client on console-ams.rpki-client.org