Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/p1QRZ5y1sJ2qgVMpXMYlO5IJjPA.roa
File: p1QRZ5y1sJ2qgVMpXMYlO5IJjPA.roa (raw, json)
Hash identifier: eYRJqE/TdwfRzfKBQ8DcOjWuWPczofpaXNnzd9/WNDQ=
Subject key identifier: A7:54:11:67:9C:B5:B0:9D:AA:81:53:29:5C:C6:25:3B:92:09:8C:F0
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 019204CC92AEB252557D624DE11DE5D8730D
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/p1QRZ5y1sJ2qgVMpXMYlO5IJjPA.roa
Signing time: Wed 18 Sep 2024 11:02:48 +0000
ROA not before: Wed 18 Sep 2024 11:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 11:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:04:cc:92:ae:b2:52:55:7d:62:4d:e1:1d:e5:d8:73:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Sep 18 11:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a75411679cb5b09daa8153295cc6253b92098cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1a:1d:fe:8c:60:2f:b8:82:24:e0:57:eb:ad:
bd:06:ea:ec:70:f6:13:45:d7:25:4a:36:58:55:74:
ab:89:b6:a5:f4:0a:77:c7:5f:c9:4c:51:d4:06:58:
e4:61:8f:a9:9d:6a:f2:e0:8f:d7:7d:c4:f4:21:3b:
d5:3b:11:75:45:ac:51:81:e2:63:c1:61:23:c9:0a:
c8:55:90:18:98:f2:f2:ed:b1:e9:b6:64:91:97:57:
13:1e:d9:4a:06:c9:4f:00:89:b3:cb:29:63:e0:a3:
2f:0f:2b:60:2a:83:c1:d9:2b:ff:e2:a4:16:15:53:
7c:4c:f4:98:05:85:ce:f6:3b:42:a3:a7:9e:f5:52:
ae:36:93:da:87:55:37:c8:a7:74:57:10:a3:8f:09:
7a:8f:42:2a:5f:0a:31:43:ca:9d:02:69:2a:25:7a:
87:56:49:d1:89:a7:cd:c2:a0:8a:58:ed:92:f0:46:
46:c4:db:f1:82:2b:a9:08:d4:e4:97:9e:c6:e2:be:
a1:67:a2:6b:fd:52:2d:ec:c5:c6:ec:f8:da:50:75:
7c:39:0d:11:b0:3c:5d:a8:e3:1d:c6:22:bf:6e:65:
5a:e8:07:e7:d6:1c:f4:f6:8a:ce:d5:40:84:6b:ce:
5a:a4:bc:a2:a7:40:95:63:23:bc:b3:b3:94:56:e8:
13:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:54:11:67:9C:B5:B0:9D:AA:81:53:29:5C:C6:25:3B:92:09:8C:F0
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/p1QRZ5y1sJ2qgVMpXMYlO5IJjPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
39:91:ec:32:65:8d:dd:ee:e1:6e:a5:9c:59:39:2a:be:e1:22:
29:c9:f5:de:76:1e:ec:01:6b:2f:29:e3:49:ee:4a:39:22:b9:
f4:90:c8:0f:40:39:30:76:43:f5:86:17:4e:e7:4d:99:d5:af:
bc:22:40:5b:02:33:ac:1b:57:bb:ea:21:46:03:aa:65:3d:81:
0d:a7:c7:e5:c8:3a:4c:cd:89:3c:ae:40:9e:3f:d1:8e:2d:1e:
3e:de:55:9e:b9:3d:ba:d0:c5:de:46:5d:20:ac:0f:cd:d9:ad:
b2:f2:52:c5:80:f8:1e:9b:04:de:bd:d2:41:98:25:3e:a1:3d:
22:43:5a:11:50:33:3a:b8:82:e3:8f:fc:df:15:1b:77:c9:88:
bb:02:b8:b9:7e:d2:b7:b4:77:d5:13:6a:c5:b5:4c:e9:bf:a9:
ba:e7:a3:f0:e0:94:6f:4a:c7:4a:ab:f4:6d:be:93:19:6e:bd:
87:83:90:6e:b4:2a:26:af:b3:c3:9f:67:28:3b:fe:73:51:d7:
08:99:85:53:35:65:2e:2b:9c:c7:67:3f:58:88:77:83:8e:3b:
49:e0:3c:2d:af:3a:c7:76:e2:29:7c:7a:71:fc:28:92:71:55:
1e:2b:e6:47:e5:7a:d7:35:ce:dc:ed:7b:26:50:f8:a5:97:56:
0f:b3:ef:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 14:45:34 2024 by rpki-client on console-fra.rpki-client.org