Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/F6uplI0HR6ISu3CtGriVxhFFCGk.roa
File: F6uplI0HR6ISu3CtGriVxhFFCGk.roa (raw, json)
Hash identifier: QetnykESoagW/IgDsred4IgmEmnWdhth4HS/2aGfoQ8=
Subject key identifier: 17:AB:A9:94:8D:07:47:A2:12:BB:70:AD:1A:B8:95:C6:11:45:08:69
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0192B8AB73C1D8F6FE47AD7CE829DCC51BEC
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/F6uplI0HR6ISu3CtGriVxhFFCGk.roa
Signing time: Wed 23 Oct 2024 09:18:16 +0000
ROA not before: Wed 23 Oct 2024 09:18:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 11:37:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b8:ab:73:c1:d8:f6:fe:47:ad:7c:e8:29:dc:c5:1b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 23 09:18:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17aba9948d0747a212bb70ad1ab895c611450869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:78:f0:60:78:80:9f:cb:fb:53:b8:b3:64:ea:
2b:64:97:ea:c1:23:91:fc:c9:b9:66:9f:a5:34:10:
05:eb:6e:97:51:a5:71:28:09:f3:ae:24:0b:3a:3e:
66:db:bf:fe:e0:79:51:51:86:b1:7a:1a:dc:0a:79:
b2:61:ff:72:4c:77:04:d8:10:2a:8f:83:d4:11:2d:
63:0c:98:5b:8f:34:01:ae:d7:75:90:e8:d4:8e:96:
1f:4b:1a:01:2a:26:ed:95:3e:ac:a0:2b:da:0c:32:
1a:20:e5:26:78:72:de:bc:70:bd:c1:2e:83:d4:85:
58:1d:01:3d:9c:8e:09:53:b2:a1:5d:bd:fc:37:32:
32:f8:2f:b7:02:70:1d:b5:33:7b:99:ee:b6:4c:05:
4b:8d:e7:01:6b:02:3f:17:5b:73:d7:63:a1:39:b9:
b9:93:a9:bc:42:db:0d:0c:a6:e0:35:4a:08:48:c3:
8f:b7:e1:1e:2f:30:46:9d:5d:a0:55:9c:d6:e3:4f:
71:17:e5:fe:6d:31:aa:ef:9d:b6:4a:7f:c7:87:dc:
5d:a5:cd:bb:0c:c8:ae:78:2c:88:9a:07:46:4e:ff:
fa:8c:c0:34:c7:95:0f:8f:40:65:6f:03:db:a9:a0:
f8:8a:9c:ba:00:bf:c5:69:a8:3c:a3:5e:d9:68:6d:
21:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AB:A9:94:8D:07:47:A2:12:BB:70:AD:1A:B8:95:C6:11:45:08:69
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/F6uplI0HR6ISu3CtGriVxhFFCGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:0f:0f:3e:59:b4:28:0a:2f:42:14:a5:ae:07:7b:38:90:83:
29:6c:d0:95:f6:df:f6:5a:35:3d:78:60:44:30:04:e8:42:1e:
8f:40:6e:0b:6d:a0:73:23:6b:39:ea:f8:0d:ed:fa:a7:9e:31:
9f:ed:59:4f:ff:11:d0:34:80:36:7f:c8:0b:f7:0c:dc:28:15:
82:36:b2:76:11:92:9e:35:0a:a5:d2:37:17:30:dd:f4:06:89:
d5:bd:45:ce:e1:c8:5e:c5:ce:3e:f5:f2:1a:1c:88:68:b7:f4:
e0:e0:3d:fa:c2:95:fe:64:7e:b7:2f:13:3c:58:cb:a8:b1:33:
9b:ad:37:66:09:fa:64:a8:65:80:bd:47:38:d7:2d:4e:09:57:
e0:52:57:c8:10:eb:52:0c:f4:b1:62:b4:fd:18:42:7a:55:77:
c5:09:54:28:06:59:29:1b:97:8b:e7:14:7f:13:c0:99:62:27:
5d:69:10:21:49:d2:f4:71:8e:d8:17:31:74:74:75:b2:d4:32:
e5:54:22:46:3b:ab:4f:4d:bd:c3:8b:47:7b:87:ba:42:76:2e:
6e:dd:ac:a3:b6:27:19:54:7c:04:4e:28:2a:39:12:75:81:99:
06:e7:a5:b5:7a:2a:85:b4:74:1f:4e:f0:70:cc:c6:41:aa:60:
91:a8:86:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 13:41:49 2024 by rpki-client on console-fra.rpki-client.org