Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/4nVik8IEYYXQLIFLZ69DVgdi0es.roa
File: 4nVik8IEYYXQLIFLZ69DVgdi0es.roa (raw, json)
Hash identifier: hY2yU69boqeD0bKnzchdcAd8U1JCsXz8wMgt6+jXIJ4=
Subject key identifier: E2:75:62:93:C2:04:61:85:D0:2C:81:4B:67:AF:43:56:07:62:D1:EB
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 019277844D8EE4BD38F41AD10D820060F11A
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/4nVik8IEYYXQLIFLZ69DVgdi0es.roa
Signing time: Thu 10 Oct 2024 17:40:11 +0000
ROA not before: Thu 10 Oct 2024 17:40:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62005
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 11:58:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:77:84:4d:8e:e4:bd:38:f4:1a:d1:0d:82:00:60:f1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 10 17:40:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2756293c2046185d02c814b67af43560762d1eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:a4:95:3b:10:2a:5b:f6:e5:8d:54:c6:30:7f:
33:d4:21:da:53:47:24:d4:bf:b2:14:24:67:64:24:
50:2e:3d:a4:dc:7b:ef:ce:48:f0:34:e8:46:5d:67:
18:cd:3c:5b:ec:21:b3:0d:3f:6a:7e:44:13:d3:e2:
e9:fd:37:a5:21:bb:08:5f:a6:1b:3f:50:89:f7:69:
ab:a6:95:09:e9:c6:e8:24:ff:a1:54:d3:ee:cc:1b:
89:43:91:9d:6e:1c:bb:b7:76:5e:39:97:02:0a:ff:
ae:59:83:c9:78:e6:fe:76:a4:f8:c4:51:82:8d:00:
6c:91:48:33:27:62:cf:3e:bb:fd:b6:2e:db:2e:b1:
8f:17:99:cb:1f:fa:a6:b6:b5:17:bb:3b:b6:62:ac:
e3:98:5c:b0:74:a6:3a:50:d4:ed:2c:c5:b6:4d:42:
ca:bf:ec:9c:03:94:d3:61:6d:6d:e0:04:7b:d1:f1:
99:0b:8e:b6:8d:6f:bc:a2:72:36:99:1e:75:f0:71:
41:4d:ec:e4:b8:89:6e:7b:68:34:aa:51:7f:e2:f3:
eb:f9:7a:1e:61:ea:11:7b:43:b6:ac:46:d1:fe:09:
c9:e8:fc:57:5f:54:8e:7c:95:ea:eb:23:93:16:db:
f3:4b:b8:71:be:23:11:b7:6b:bc:12:26:20:f5:78:
95:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:75:62:93:C2:04:61:85:D0:2C:81:4B:67:AF:43:56:07:62:D1:EB
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/4nVik8IEYYXQLIFLZ69DVgdi0es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
81:71:2e:5c:5c:ec:5a:49:34:7f:90:45:83:48:73:1e:24:55:
ab:98:a3:d5:5e:77:f2:0b:1b:78:e8:7f:b1:5a:c6:e3:b2:04:
42:5b:8d:40:6a:e3:ec:03:41:e2:e1:c1:a9:02:7c:db:03:22:
2e:fd:74:8e:55:ae:5e:d3:de:1b:3a:bd:9e:84:53:28:2e:b3:
6e:02:55:0f:03:a6:29:e9:f0:9e:86:ba:7d:08:c8:b5:c0:8a:
90:dc:22:fa:ff:2f:b0:04:73:24:68:29:1c:43:83:dd:eb:7f:
02:2d:39:54:8c:a2:cf:df:a3:62:54:e1:b6:64:0d:6d:43:da:
7c:52:7a:ec:e0:d3:29:59:00:6c:c9:64:8f:6e:87:ac:3a:67:
3f:97:28:cf:f3:df:51:6e:f7:80:df:ce:d0:4a:91:9a:d3:f5:
2d:24:87:04:90:59:3f:26:e4:67:e9:9b:e4:e5:03:a9:d7:0e:
f0:db:82:57:8b:4a:f5:4c:21:c5:0b:35:3a:2e:ac:e4:46:0f:
5c:0c:40:ad:19:c9:bf:19:e6:fa:eb:3e:ff:a6:28:8b:36:44:
df:91:76:33:c2:95:e1:97:67:de:0d:79:97:8b:c2:68:90:45:
f4:28:40:f3:be:7f:c8:41:2f:f1:ca:2c:1e:bd:3f:98:42:1d:
c7:be:87:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 16:36:33 2024 by rpki-client on console-ams.rpki-client.org