Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/n8JF1bEYZrscZnkOyRhIG3ICHQA.roa
File: n8JF1bEYZrscZnkOyRhIG3ICHQA.roa (raw, json)
Hash identifier: HvDEbiELBNx7ro+d7FjsX/+b8fGOUit2g0f7k20utvM=
Subject key identifier: 9F:C2:45:D5:B1:18:66:BB:1C:66:79:0E:C9:18:48:1B:72:02:1D:00
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01856F4B85816C0E5C6E9180679389C6DFF6
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/n8JF1bEYZrscZnkOyRhIG3ICHQA.roa
Signing time: Sun 01 Jan 2023 21:44:58 +0000
ROA not before: Sun 01 Jan 2023 21:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 62.72.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Mar 2023 11:26:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:85:81:6c:0e:5c:6e:91:80:67:93:89:c6:df:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 21:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fc245d5b11866bb1c66790ec918481b72021d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:07:63:2a:29:b5:12:e9:b8:ba:22:d0:57:10:
30:57:10:5b:cf:42:47:da:12:77:ee:68:ad:f8:b4:
fe:ff:e6:1a:f6:73:71:cd:25:9a:1c:4a:5a:70:78:
85:9f:6a:c9:2a:70:58:ef:93:7f:54:c0:c8:45:d5:
66:8a:70:33:2b:32:e2:ba:ba:b2:42:d3:20:76:48:
5c:ba:58:0c:ca:d8:a9:8c:69:ed:96:81:af:50:49:
18:cb:56:04:62:73:dd:45:21:80:b9:d6:0a:5a:5f:
86:95:0c:d9:66:77:ed:12:29:4f:e5:60:c1:07:55:
04:d1:63:80:93:ca:d8:45:f2:b2:d6:1c:8a:56:11:
c4:d1:90:8d:97:63:be:9b:d3:ea:8f:2e:e6:68:cf:
29:ba:78:b3:52:46:00:fc:f6:25:87:5b:ee:4c:b3:
c2:b0:2f:a7:a4:5f:a3:f0:60:79:31:83:7e:86:05:
c4:18:86:7c:1e:d2:d8:02:d2:f1:bb:fe:fb:8f:dd:
48:2a:e7:75:62:fa:8d:b0:bf:88:cc:24:71:e3:f3:
e5:a8:8d:c8:0f:37:4e:45:aa:1f:72:17:3c:cc:c5:
ff:a3:2b:a1:50:77:44:c0:fd:b3:6e:be:2b:dd:cb:
0f:6d:e1:50:1e:9b:ac:ad:89:25:ec:6d:66:91:d2:
a9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C2:45:D5:B1:18:66:BB:1C:66:79:0E:C9:18:48:1B:72:02:1D:00
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/n8JF1bEYZrscZnkOyRhIG3ICHQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.177.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:62:9e:80:23:89:8c:78:cf:28:37:93:c9:9b:3e:9b:e2:19:
81:26:2d:a6:c1:c4:42:3a:45:bb:77:27:9f:c0:ec:dc:91:4a:
72:a1:1b:02:de:e9:21:bc:aa:49:f1:55:a2:6c:84:b8:d0:08:
d7:32:88:f1:d3:7d:bf:5c:0b:94:93:19:87:9b:cf:a8:6b:5f:
40:83:3e:fe:de:0c:cf:f9:ee:20:17:4c:91:c9:b5:21:a0:d3:
2c:e7:f9:de:83:ba:4e:e8:db:74:ad:31:be:86:a0:19:9d:2f:
b7:13:11:33:67:ab:9a:d0:08:78:36:5f:e9:c2:23:10:f0:5a:
48:79:1d:af:77:e8:7c:b7:50:51:c5:f1:e1:d0:53:fb:75:e2:
22:52:e5:c0:40:70:25:c7:cb:c2:76:4d:8f:9b:d5:c3:fa:9a:
78:8e:4c:bd:26:08:18:b0:d6:77:29:e4:20:d9:1b:fd:05:b3:
cb:2a:1e:28:c2:23:a8:a7:e1:36:a3:10:ac:9d:c0:5e:f6:b5:
d9:5e:d5:c0:47:60:27:72:d3:cf:4d:89:72:1c:fc:14:7a:c4:
5b:ca:21:26:17:5e:2d:ce:69:e3:73:eb:d2:18:85:d5:08:d0:
96:6f:28:ba:34:49:f5:e3:c0:87:d9:df:21:65:c2:15:ce:0d:
bd:dc:11:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org