Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/UoQqc20-P6CUN5v0vRm6DjuDKmM.roa
File: UoQqc20-P6CUN5v0vRm6DjuDKmM.roa (raw, json)
Hash identifier: 4G2h4Dj+obuIOeigqSL+pMJEdKEKO6Da3nQQO1++BGY=
Subject key identifier: 52:84:2A:73:6D:3E:3F:A0:94:37:9B:F4:BD:19:BA:0E:3B:83:2A:63
Certificate issuer: /CN=f818dec325784010774820090e8e0a083ddddbdc
Certificate serial: 0187C745A03090FDF7B9535C6B75A8FA2CD7
Authority key identifier: F8:18:DE:C3:25:78:40:10:77:48:20:09:0E:8E:0A:08:3D:DD:DB:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BjewyV4QBB3SCAJDo4KCD3d29w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/UoQqc20-P6CUN5v0vRm6DjuDKmM.roa
Signing time: Fri 28 Apr 2023 09:50:41 +0000
ROA not before: Fri 28 Apr 2023 09:50:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5618
IP address blocks: 62.193.16.0/24 maxlen: 24
62.193.17.0/24 maxlen: 24
62.193.12.0/23 maxlen: 23
62.193.13.0/24 maxlen: 24
62.193.14.0/23 maxlen: 23
62.193.14.0/24 maxlen: 24
62.193.15.0/24 maxlen: 24
62.193.24.0/24 maxlen: 24
62.193.18.0/24 maxlen: 24
62.193.20.0/24 maxlen: 24
62.193.21.0/24 maxlen: 24
62.193.28.0/24 maxlen: 24
62.193.3.0/24 maxlen: 24
62.193.4.0/24 maxlen: 24
62.193.5.0/24 maxlen: 24
62.193.6.0/24 maxlen: 24
62.193.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 22:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:45:a0:30:90:fd:f7:b9:53:5c:6b:75:a8:fa:2c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f818dec325784010774820090e8e0a083ddddbdc
Validity
Not Before: Apr 28 09:50:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52842a736d3e3fa094379bf4bd19ba0e3b832a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d1:77:38:14:45:87:1f:d3:92:1c:f8:0f:e8:
cd:5c:ff:79:7b:d9:1c:f8:9e:23:75:76:3a:7c:aa:
80:08:ac:61:a6:1a:04:9a:16:69:37:63:4b:bc:86:
5d:30:8d:37:18:f8:f7:59:92:ea:ee:94:62:35:20:
69:9d:0d:1f:52:2f:b9:30:80:e0:0f:c6:19:36:5c:
5f:b8:be:81:05:22:04:d7:b5:4e:f9:6f:de:3b:98:
43:5a:bb:56:76:96:c9:34:29:92:ff:05:3d:4d:f4:
8a:1d:ee:ea:d4:34:6b:0b:80:4b:bb:5f:17:9e:eb:
51:3b:7d:fd:9d:df:1d:b3:81:12:9b:53:d5:f8:c3:
0a:ac:2f:58:e5:33:82:3d:79:ba:14:98:b1:f5:19:
8e:2e:b0:9a:a2:f2:5e:01:8f:cb:08:df:b2:d3:9e:
61:69:32:97:70:20:6d:be:45:fb:14:0c:0c:0c:b5:
9f:ff:4d:48:6e:af:88:49:4b:a9:30:3b:e4:37:20:
77:7b:7d:a0:9d:1b:34:e6:84:d9:bb:93:2a:f2:bd:
09:3b:69:4b:c2:24:cb:12:32:a5:07:ad:b0:93:b7:
93:3b:bd:60:d2:9d:b8:6b:2c:78:2e:06:4a:52:63:
60:e2:33:ca:18:5b:7a:d9:b3:39:13:cc:80:be:30:
b6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:84:2A:73:6D:3E:3F:A0:94:37:9B:F4:BD:19:BA:0E:3B:83:2A:63
X509v3 Authority Key Identifier:
keyid:F8:18:DE:C3:25:78:40:10:77:48:20:09:0E:8E:0A:08:3D:DD:DB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BjewyV4QBB3SCAJDo4KCD3d29w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/UoQqc20-P6CUN5v0vRm6DjuDKmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/2959fb-88f6-49b5-bb00-83a0d9efec2d/1/1-BjewyV4QBB3SCAJDo4KCD3d29w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.193.3.0-62.193.7.255
62.193.12.0-62.193.18.255
62.193.20.0/23
62.193.24.0/24
62.193.28.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:97:f2:e5:52:7f:25:51:fa:98:a0:6c:0c:d3:27:42:6b:87:
2e:f4:04:7d:ab:8c:96:e5:f6:fc:82:c6:ef:7c:ad:6f:9f:99:
61:68:87:17:ec:e6:fd:76:2b:57:4d:0e:56:6c:1f:b9:9b:a9:
be:ff:1f:25:c7:e3:bf:8d:3e:25:13:9a:39:95:8a:2d:00:d3:
38:f5:f9:b2:58:c6:74:90:34:71:79:f2:bc:1a:92:a1:25:e9:
1f:88:18:26:76:7e:d8:b0:fb:7e:d0:56:7f:1e:2c:27:63:0a:
d0:0e:8e:6b:ca:7f:4b:f1:2f:0f:4b:bf:48:29:58:7b:70:3a:
db:e6:41:39:9b:9c:09:b1:8b:1c:f1:f2:50:a8:79:2e:8e:eb:
fc:d7:be:79:57:c3:89:a5:20:53:cc:9c:7a:d4:e0:3c:e5:a4:
9d:f2:c1:27:07:40:ec:b9:43:d6:79:26:e1:06:cf:19:c8:33:
e8:2d:44:e8:a5:4b:20:71:69:2a:be:9f:2c:cf:23:c4:17:de:
43:14:ce:74:3e:23:2c:3d:c0:d6:bf:d0:86:d6:a2:9d:28:41:
47:9c:21:c8:93:81:32:b8:73:31:7c:b7:2a:6f:0f:31:5f:8b:
8b:2f:9b:31:e8:56:3b:07:07:ad:7e:8f:20:cc:bb:fc:00:59:
51:70:61:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:48 2024 by rpki-client on console-ams.rpki-client.org