Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/citXD0_PRXYUvujyIDLzOw7U2bw.roa
File: citXD0_PRXYUvujyIDLzOw7U2bw.roa (raw, json)
Hash identifier: Bj2HHEWxeNOVPNZzcvTIdae/AR991fvgQh9haqNKr68=
Subject key identifier: 72:2B:57:0F:4F:CF:45:76:14:BE:E8:F2:20:32:F3:3B:0E:D4:D9:BC
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BB92564337594A064BDAEC473412E58ED
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/citXD0_PRXYUvujyIDLzOw7U2bw.roa
Signing time: Fri 10 Nov 2023 12:11:57 +0000
ROA not before: Fri 10 Nov 2023 12:11:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 62.72.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:25:64:33:75:94:a0:64:bd:ae:c4:73:41:2e:58:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 10 12:11:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=722b570f4fcf457614bee8f22032f33b0ed4d9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:22:d8:78:92:d3:59:58:f5:65:f1:d6:00:6d:
9d:cf:43:ea:fd:25:1d:dc:8d:03:69:5a:92:14:fd:
78:0c:fa:14:da:95:49:d8:96:3e:6c:e3:33:d6:c7:
4f:dc:c3:76:c1:10:41:04:fd:52:82:43:50:3a:d5:
e0:80:27:d2:6c:b0:40:fd:9f:44:f1:e6:03:fc:a0:
ed:ca:0e:6b:01:7f:58:f5:1f:f7:69:af:d2:59:99:
cd:61:3e:11:00:5c:42:15:89:e4:92:05:68:9a:45:
7b:e4:f9:d5:be:f8:3c:a9:a2:1a:e8:03:ca:c1:1d:
a2:f4:0c:1d:8e:a0:13:d2:7a:8e:d4:da:b2:6c:34:
e2:ac:f2:06:2b:12:3b:bc:15:42:ee:3c:79:8d:65:
66:ee:58:a7:b1:78:3b:78:63:d7:1f:1b:8b:a5:c7:
df:98:c5:db:cf:84:d6:9b:76:44:91:e5:cd:c8:9f:
71:b7:50:60:1f:6d:04:61:12:e3:5c:fe:96:d0:8b:
e0:48:d1:49:fa:a2:f4:09:75:85:2f:71:b8:ea:91:
5b:dc:df:0d:d0:d7:ea:f4:49:4b:0f:ca:04:26:a7:
17:e7:ec:da:28:68:00:1a:72:13:64:bf:08:49:f9:
eb:03:57:63:84:9e:59:1a:48:4d:4a:2f:02:80:75:
ed:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2B:57:0F:4F:CF:45:76:14:BE:E8:F2:20:32:F3:3B:0E:D4:D9:BC
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/citXD0_PRXYUvujyIDLzOw7U2bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.166.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:5b:18:20:37:a2:af:57:de:49:64:c9:0f:66:37:ca:1b:bc:
10:e9:cf:ae:92:9f:7b:a4:43:f7:8f:fc:03:43:bf:e6:6c:61:
d8:08:1a:82:6f:89:ea:da:ee:a8:ac:c1:60:38:1b:00:18:03:
64:9f:9e:12:34:1f:40:e5:e0:41:13:69:5f:aa:5d:aa:c8:c9:
df:90:4a:9e:9b:80:63:61:98:f9:f7:2a:fd:9f:94:97:a6:48:
79:13:93:dd:63:ce:b9:ed:24:00:78:c0:74:90:e4:11:15:a4:
27:71:ea:7a:3a:5c:2b:a4:ec:74:47:24:8c:35:fb:80:25:5e:
34:d1:8c:b6:55:33:37:55:1c:7a:a2:ea:cd:7c:11:f0:8e:23:
9a:18:6b:d7:ec:22:8b:60:2e:ab:7e:c2:f6:8f:1d:32:3c:40:
ce:60:c5:9f:3b:aa:0b:6c:e4:b2:b5:50:2c:88:2b:36:56:d5:
52:83:4e:6a:3d:f9:28:51:6b:66:12:b8:0d:a8:3c:57:99:bd:
43:ac:50:a5:c3:a4:0d:c4:f4:44:98:55:d9:2d:c3:53:4b:a2:
c5:fe:70:73:20:44:19:1c:7a:de:ad:ad:24:5a:2c:9f:01:fc:
90:95:25:85:f4:4b:a9:60:c0:20:2d:35:6b:9b:fb:89:28:10:
54:d2:cd:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org