Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/lehrn4pADksLiiLnRsyvZCPcIHs.roa
File: lehrn4pADksLiiLnRsyvZCPcIHs.roa (raw, json)
Hash identifier: sF4NRj3Pz+7kXQ4QIy3gV9xtdhyjBxcwN27TDHE0gEQ=
Subject key identifier: 95:E8:6B:9F:8A:40:0E:4B:0B:8A:22:E7:46:CC:AF:64:23:DC:20:7B
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CC6B79F19A9EAF9741B36FAB368648333
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/lehrn4pADksLiiLnRsyvZCPcIHs.roa
Signing time: Mon 01 Jan 2024 20:29:31 +0000
ROA not before: Mon 01 Jan 2024 20:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36113
IP address blocks: 62.72.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 09:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:9f:19:a9:ea:f9:74:1b:36:fa:b3:68:64:83:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 20:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95e86b9f8a400e4b0b8a22e746ccaf6423dc207b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:22:c2:5c:c5:c4:5c:e9:87:9d:af:f9:c7:2e:
f9:d7:10:08:2b:36:15:56:40:3c:1f:40:40:c7:c7:
05:3c:35:fc:d1:d9:ec:24:a9:f8:bf:9c:49:d7:68:
cc:0c:05:b4:9d:03:50:f0:aa:9d:48:db:56:7b:4d:
46:0c:28:6c:90:8f:07:39:52:4d:5b:63:fd:5c:e2:
d0:30:79:34:6d:5f:90:3b:92:48:24:60:26:12:a5:
00:50:4b:fe:6d:01:f3:15:dc:cf:f7:24:96:d0:e1:
0e:ba:26:7d:85:fa:87:93:88:55:31:4b:c5:7f:5f:
04:46:bf:b8:3b:e3:99:65:5f:a8:f9:6d:f3:64:e9:
21:86:45:f0:40:d9:08:8e:32:81:dd:64:f1:e2:69:
73:12:75:ca:b5:f8:06:5a:b3:f5:ba:d1:1e:56:aa:
5b:59:8a:38:4b:d0:58:d3:15:ca:b7:bb:05:51:1f:
d5:06:ea:67:6d:71:2c:f6:9b:d8:f9:1c:9c:b8:7c:
e0:6c:88:bc:03:6f:e6:33:4b:74:93:3a:1e:09:83:
12:5c:19:7b:fb:d9:a8:a8:d6:6c:e4:95:9b:92:25:
b8:c9:8b:99:85:68:e1:52:dd:d9:e0:fc:16:25:4f:
bc:c5:45:8c:18:85:65:a3:95:f7:e9:e0:5f:a4:8c:
b4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E8:6B:9F:8A:40:0E:4B:0B:8A:22:E7:46:CC:AF:64:23:DC:20:7B
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/lehrn4pADksLiiLnRsyvZCPcIHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.168.0/24
Signature Algorithm: sha256WithRSAEncryption
62:75:9f:bc:f8:53:b9:a4:7c:83:fd:7e:3a:71:27:47:a7:4c:
ea:6a:91:ab:dc:ec:19:11:a2:3d:6d:5c:5d:a5:31:1a:90:9e:
e6:ca:08:70:d6:69:3c:ff:8a:67:58:a2:cd:24:c4:ca:f4:77:
7a:d9:de:09:30:38:f1:1f:e5:d1:75:c1:ee:34:02:f6:13:ba:
b2:aa:07:f2:7c:00:4c:ef:fe:66:1e:33:75:bc:9d:e8:72:f5:
d2:f6:19:2e:7c:79:e3:53:e5:26:9b:7b:5e:4a:14:8c:ea:73:
c5:75:ed:de:89:55:98:b6:f0:87:3d:84:7e:00:3d:06:8e:34:
25:c4:4b:08:30:d8:76:fc:e4:be:a1:6d:43:a1:87:9c:18:dc:
ad:60:49:f3:86:22:e8:6f:26:a1:d2:44:4c:11:f5:73:c7:27:
46:d0:c0:e9:1a:aa:32:88:a3:32:0a:bb:46:55:64:ad:00:ce:
17:96:6e:0d:22:ee:42:29:88:ca:35:ae:de:99:c7:65:41:6c:
32:53:cf:dd:da:b2:e0:6b:8e:3c:8b:a8:96:46:1f:3f:cf:b0:
28:9e:1e:d1:f6:79:25:a4:34:ce:45:ba:ae:7f:02:a6:79:b8:
de:40:f9:23:7e:cf:fe:5b:9d:a4:da:c4:47:4d:bc:e5:51:78:
d8:be:7d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org