Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/qHqGB-5J1g1JmVf3XyNem9tUNqQ.roa
File: qHqGB-5J1g1JmVf3XyNem9tUNqQ.roa (raw, json)
Hash identifier: 9EHrIYB0OmNcyLpf6sBSKpOSSpPWz/gXWPa23AKHH50=
Subject key identifier: A8:7A:86:07:EE:49:D6:0D:49:99:57:F7:5F:23:5E:9B:DB:54:36:A4
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0186AC5F20A2C0CA1D622FEC7116407EF2F6
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/qHqGB-5J1g1JmVf3XyNem9tUNqQ.roa
Signing time: Sat 04 Mar 2023 11:26:00 +0000
ROA not before: Sat 04 Mar 2023 11:26:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 62.72.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 May 2023 12:03:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ac:5f:20:a2:c0:ca:1d:62:2f:ec:71:16:40:7e:f2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Mar 4 11:26:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a87a8607ee49d60d499957f75f235e9bdb5436a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1f:1f:2f:2d:12:af:42:be:97:dc:c3:29:8c:
d5:cf:e8:cf:da:16:d7:21:aa:fb:8f:56:2d:71:27:
4f:89:3d:a3:e7:4b:65:18:12:53:21:fb:b6:be:eb:
06:ba:b4:64:44:34:de:c4:c9:4f:be:bf:cc:af:e0:
71:49:fe:66:7c:57:c6:b0:ad:c0:b1:1c:ae:d5:35:
0f:9d:3f:45:8d:fd:45:b2:20:8c:4b:12:23:a1:01:
b7:3e:ce:44:83:0c:f9:18:a0:05:31:a3:0d:c3:71:
59:05:11:b3:2c:a8:4d:70:da:e0:4e:78:d8:68:81:
36:6f:5a:11:54:24:d1:eb:97:c2:ec:19:66:7d:e6:
2f:5d:0f:f8:69:89:95:c8:d6:1b:7d:c3:c2:43:2f:
10:59:46:ac:b9:54:b8:3d:c5:89:fa:5e:9b:eb:1a:
11:2e:17:a8:86:a6:ec:66:b4:14:dd:6d:b2:2f:bb:
e0:8b:5d:23:b9:e6:5d:bb:55:0f:e6:31:71:60:29:
4d:7d:7a:69:25:40:6f:02:8a:1e:6c:23:bb:44:a4:
f8:80:cb:33:7b:c5:4f:f0:2f:d8:2b:a6:dc:ea:1c:
3f:bb:79:18:74:92:ae:f7:4e:5c:e8:60:05:1c:62:
98:28:bd:c4:72:fe:c9:52:44:bc:32:e4:01:e4:d7:
04:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:7A:86:07:EE:49:D6:0D:49:99:57:F7:5F:23:5E:9B:DB:54:36:A4
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/qHqGB-5J1g1JmVf3XyNem9tUNqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.190.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:a8:41:a3:af:85:58:19:b7:bf:4c:f4:ff:32:79:c9:3e:9e:
d7:2d:7d:a9:5d:6c:35:15:68:90:00:d0:1e:f2:17:df:69:6d:
22:fe:94:97:14:60:6a:9f:41:1b:26:d1:e9:c2:d7:21:1d:cd:
e5:fd:83:9b:91:3d:da:d1:ba:9c:ce:e1:e7:9f:7a:06:3c:eb:
f3:42:9a:cd:0a:aa:09:38:ae:45:56:a2:8d:a5:9e:53:7f:5a:
79:d5:91:fe:ca:d4:89:35:22:96:0d:8c:3f:1e:ea:5a:3f:5d:
51:5a:75:70:0d:1c:53:ee:64:3c:56:82:d6:3b:44:d6:16:27:
4c:2e:23:6c:0b:af:ba:fb:d6:25:d8:b5:0d:c7:07:e1:d2:c9:
1c:a8:2e:d3:25:95:a7:75:fc:c9:f6:e3:f0:41:33:bb:21:35:
66:2a:4b:68:72:9b:a4:a6:0e:6d:a6:38:8e:91:00:09:b2:97:
03:4e:d2:d5:e0:79:01:1f:a5:c3:07:59:f1:e3:36:61:d4:62:
96:df:dc:25:dc:7b:5f:45:ed:65:bd:6e:83:6f:43:97:37:73:
82:85:d2:e8:e8:0d:30:68:7a:dd:6e:02:20:d3:4d:58:7f:3d:
ce:31:b7:20:90:34:b7:b8:dc:32:d0:63:50:fb:62:ac:ed:ff:
00:46:7a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org