Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fR8wqxunmQc_l89G47QQ5tEKf0o.roa
File: fR8wqxunmQc_l89G47QQ5tEKf0o.roa (raw, json)
Hash identifier: NlR2X8fJMvnWBm3Hq64RDQnz/u58TUdV6cis/I+6rGQ=
Subject key identifier: 7D:1F:30:AB:1B:A7:99:07:3F:97:CF:46:E3:B4:10:E6:D1:0A:7F:4A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CC6B7AECF24D4FB890F399AF5BA3F2CFE
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fR8wqxunmQc_l89G47QQ5tEKf0o.roa
Signing time: Mon 01 Jan 2024 20:29:35 +0000
ROA not before: Mon 01 Jan 2024 20:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 62.72.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 06:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:ae:cf:24:d4:fb:89:0f:39:9a:f5:ba:3f:2c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 20:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d1f30ab1ba799073f97cf46e3b410e6d10a7f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:71:d8:da:e5:e5:85:47:c4:3c:38:84:72:6b:
a5:0b:b3:2f:75:ff:6b:69:89:1a:2a:65:91:e4:08:
d4:5a:34:ed:95:bf:8b:7f:e4:d8:18:f7:89:bb:ed:
92:20:87:31:a8:dc:62:56:95:f4:c8:72:3d:80:34:
61:fb:b6:7f:f1:b3:ba:3c:e1:0e:b0:8f:d7:52:86:
ca:56:d3:8b:19:ad:2e:b5:23:e6:bd:6e:3a:ab:47:
6b:75:2f:74:bd:1a:51:3d:29:6c:e6:1a:79:f4:09:
29:30:c7:51:e6:31:f7:13:76:b6:89:7a:1c:5c:c0:
71:f1:1d:d7:97:b2:f8:29:2b:26:bc:bd:12:38:3e:
6e:fa:ae:4f:5c:72:a6:44:89:2b:ff:0e:b4:4c:08:
a4:04:30:80:9e:67:51:2d:0c:62:78:4c:89:80:c0:
85:ae:a7:90:45:40:bb:c6:76:c5:d9:1d:a1:51:61:
7a:77:38:1d:5e:e0:a7:dd:07:09:c1:e2:07:8e:6d:
34:49:60:39:42:23:79:65:4b:d9:ad:cd:9f:81:5d:
d2:65:1a:2b:bd:07:9e:e2:50:82:96:86:ea:92:59:
43:e4:65:c9:07:87:3c:1f:bc:cb:85:68:34:35:c4:
9f:ef:5b:66:09:9f:e1:93:3b:da:f0:e7:32:d5:af:
37:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1F:30:AB:1B:A7:99:07:3F:97:CF:46:E3:B4:10:E6:D1:0A:7F:4A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fR8wqxunmQc_l89G47QQ5tEKf0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.189.0/24
Signature Algorithm: sha256WithRSAEncryption
93:1c:fb:10:a0:d8:ff:c3:92:af:2d:ef:6b:4b:c2:c8:90:37:
67:40:86:5f:65:c5:f9:b5:9d:99:46:50:c5:0b:9b:91:70:97:
8b:62:1c:4d:d2:c7:ec:fa:74:69:b0:20:82:b4:1a:94:f4:07:
9b:08:3c:c4:f3:34:92:54:46:33:a0:09:49:be:33:0e:cb:ae:
f6:2c:33:36:31:d2:22:c0:1c:1a:02:74:58:29:23:54:ea:b7:
aa:50:ef:e2:45:37:9a:ca:ff:97:8d:bc:05:eb:4e:1a:bf:78:
13:a4:44:06:72:e9:61:f9:37:a0:53:fc:17:cf:cf:e4:f1:a7:
31:47:06:78:bc:48:99:b9:07:41:75:b4:55:1b:05:2a:7a:38:
8f:86:42:0a:df:79:6d:2a:2e:05:93:a4:20:04:11:5e:ad:ad:
e0:12:7c:6a:ab:7a:71:b8:8e:c7:80:5e:fc:4f:4d:67:88:7a:
f6:b7:0d:39:e0:bc:ee:56:99:b8:66:e8:8d:9a:ca:44:84:05:
65:6d:72:97:bd:81:83:2e:cb:c1:af:56:f9:b1:3c:d1:e9:e8:
9a:0f:c7:78:bb:85:7b:40:a0:42:73:d9:19:b1:d0:c8:77:8d:
59:ad:d2:76:d1:aa:8f:d4:56:34:f3:5a:68:fc:3d:30:27:7c:
a7:5d:28:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org