Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/fHcSFvSh4PwodHLC5tO3iG3uX9U.roa
File: fHcSFvSh4PwodHLC5tO3iG3uX9U.roa (raw, json)
Hash identifier: Bvyr8bM83SBJbmT2vZt4+ZZhJsHG/4Hh37/8QuoNqUA=
Subject key identifier: 7C:77:12:16:F4:A1:E0:FC:28:74:72:C2:E6:D3:B7:88:6D:EE:5F:D5
Certificate issuer: /CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5
Certificate serial: 01856DD3EE4BF448ED65DF06C0139396689E
Authority key identifier: 1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/fHcSFvSh4PwodHLC5tO3iG3uX9U.roa
Signing time: Sun 01 Jan 2023 14:54:43 +0000
ROA not before: Sun 01 Jan 2023 14:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5602
IP address blocks: 62.100.76.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:ee:4b:f4:48:ed:65:df:06:c0:13:93:96:68:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5
Validity
Not Before: Jan 1 14:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c771216f4a1e0fc287472c2e6d3b7886dee5fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:db:45:78:7b:19:90:c0:40:e8:ba:d4:d2:df:
1a:0a:8a:e6:34:ad:2d:d8:1f:74:1f:7a:ad:84:a6:
f5:36:17:67:ca:cc:b2:95:50:9e:8a:02:15:6d:d5:
0a:9a:7e:f2:b2:97:d8:af:f4:f1:c7:15:6d:f4:cb:
13:50:8e:d2:81:32:c8:77:6f:89:cb:cb:ba:57:4b:
a6:03:ff:a8:e3:04:e6:cc:f8:80:a7:a2:c8:c7:8d:
49:63:df:9f:af:c0:8f:48:d2:29:95:7a:a9:38:32:
7a:60:84:37:53:1d:d0:ed:d2:14:69:c8:10:03:8a:
4b:cc:bd:9b:4b:5d:35:c3:c9:20:b8:7b:4b:3a:1b:
1b:30:34:7c:a1:c6:1c:3a:50:fc:a9:f7:78:24:a8:
e4:1d:dd:ff:07:d8:b0:90:5d:4b:d2:5c:16:21:a1:
35:b8:c8:f3:a2:b3:ff:d8:f5:7a:ef:9b:ae:7e:fc:
00:4f:39:ad:3a:5a:aa:79:3b:5c:a7:62:31:cc:82:
6e:fe:fe:bb:71:b1:57:9a:61:f2:69:e7:c4:e7:d9:
17:8f:f5:60:ba:72:3a:d1:13:3c:7c:91:4b:52:8f:
24:31:3b:1a:b2:9a:b1:f0:5b:d6:fd:52:ac:72:55:
1f:50:d5:d2:50:e3:7d:27:5e:fa:5f:d1:f7:64:cb:
6b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:77:12:16:F4:A1:E0:FC:28:74:72:C2:E6:D3:B7:88:6D:EE:5F:D5
X509v3 Authority Key Identifier:
keyid:1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/fHcSFvSh4PwodHLC5tO3iG3uX9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.100.76.0/23
Signature Algorithm: sha256WithRSAEncryption
08:7e:45:83:b1:65:f2:d6:14:56:fd:77:a2:b5:87:9b:33:bd:
eb:83:ac:f1:5f:03:b2:79:51:7c:30:29:61:42:9d:1b:b8:33:
1a:2a:4b:5e:f0:b8:38:39:dc:91:3d:a1:46:aa:66:af:0d:0a:
0f:ba:31:07:d4:b1:71:aa:34:c1:85:c6:6a:ed:e5:46:d4:ad:
9a:b7:c1:ea:e2:54:a9:8c:d0:46:01:8f:d2:c5:fd:bf:a6:7d:
15:44:e0:23:e1:cf:79:0a:e7:7c:20:e3:ce:48:e0:4b:4a:d0:
0a:ce:57:ea:5f:c7:d7:85:cc:bc:4b:d2:34:20:ec:af:84:9c:
7d:cf:43:62:22:c7:6d:c0:e0:76:8b:72:c4:b3:f0:a1:10:be:
21:d3:dc:a5:3a:0a:65:9d:d3:be:37:ec:71:2f:81:e4:ae:46:
f8:0c:b0:14:72:d7:cd:89:28:3a:0c:3b:07:4f:c0:83:a8:c4:
f6:52:09:d1:b7:04:fd:b8:3b:a9:48:b6:4c:f5:a5:6a:46:a5:
45:77:23:e9:cc:dc:82:1e:20:72:80:41:54:79:01:a6:73:3f:
1d:e1:48:ba:5f:97:2f:b2:c7:f0:e4:7b:7a:f4:61:9e:e8:8d:
d0:f9:1f:63:ff:c5:de:84:55:a9:0b:bb:ba:6a:29:52:ea:44:
1e:0c:ae:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:22 2024 by rpki-client on console-ams.rpki-client.org