Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/MNoJcY6g-UB5bAPPUVMeD1CmaY0.roa
File: MNoJcY6g-UB5bAPPUVMeD1CmaY0.roa (raw, json)
Hash identifier: uqYZdKF7Nfdd+qW1bUVhSZ3+Ps74f/8LYrxHWHzPTGk=
Subject key identifier: 30:DA:09:71:8E:A0:F9:40:79:6C:03:CF:51:53:1E:0F:50:A6:69:8D
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 01892028C6CE299831E9A21A51ED77A6B0B2
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/MNoJcY6g-UB5bAPPUVMeD1CmaY0.roa
Signing time: Tue 04 Jul 2023 09:08:10 +0000
ROA not before: Tue 04 Jul 2023 09:08:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12684
IP address blocks: 62.202.160.0/20 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:28:c6:ce:29:98:31:e9:a2:1a:51:ed:77:a6:b0:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Jul 4 09:08:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30da09718ea0f940796c03cf51531e0f50a6698d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:b8:71:10:d6:09:f3:e6:db:2b:57:f2:2d:
4a:c6:0d:a8:d4:f1:39:87:be:08:3f:05:79:28:0c:
a4:a7:3f:d0:4c:2a:65:ba:a0:4f:ab:e2:09:5d:0f:
2d:5d:4f:36:1b:4c:67:34:b6:f9:82:e0:7b:d1:09:
6b:e8:1d:92:d1:5e:3b:aa:75:55:d0:89:4f:80:b4:
d1:de:9c:fe:24:e9:59:13:c0:ef:7e:90:d1:90:53:
fc:86:88:26:1c:27:a9:b1:16:4c:29:2a:a3:47:ba:
61:61:71:a3:43:fa:8b:f9:83:ea:36:1c:09:d7:5d:
79:6a:7a:01:cc:4d:2d:65:e0:ec:90:c0:a2:0b:f1:
8c:dd:4d:1c:ed:4a:0c:66:e0:96:4f:27:bb:8f:1f:
d5:e5:ab:15:8b:fe:fa:a7:bf:29:e1:ff:7e:12:ac:
ad:c9:e3:d4:ae:f8:71:5a:10:24:e5:e3:15:e4:d8:
67:49:e0:a6:c0:fa:04:63:12:04:e3:3e:fe:4b:03:
6b:0b:4c:fa:41:d0:4e:0c:17:fc:82:c5:5a:7d:c2:
81:88:7b:be:c1:80:42:62:d7:01:33:44:a0:03:4c:
02:08:cd:92:4d:c8:3f:ef:a3:ab:7a:1b:36:af:d8:
de:6e:53:ae:4b:8c:06:f1:49:15:04:9b:0f:8a:15:
c9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:DA:09:71:8E:A0:F9:40:79:6C:03:CF:51:53:1E:0F:50:A6:69:8D
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/MNoJcY6g-UB5bAPPUVMeD1CmaY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.202.160.0/20
Signature Algorithm: sha256WithRSAEncryption
33:d3:d9:4b:f3:bb:d7:20:04:a8:7c:79:a4:83:dc:4d:3c:69:
19:5f:6d:8f:c7:0b:3e:55:c8:1a:c8:72:ad:48:65:f9:9e:3a:
fb:a0:38:e2:42:ad:7d:4a:dd:51:ca:af:ef:78:9f:1a:2c:39:
ee:d2:6f:41:8c:58:76:3a:e9:27:75:2b:bc:4a:02:a4:d0:ae:
e5:7a:fa:01:52:98:fb:cb:87:c5:c1:01:89:f6:61:2f:96:99:
66:58:30:0d:97:87:79:06:59:d4:9b:81:1a:8c:a8:a2:b4:53:
19:9a:74:97:29:1a:17:48:0a:27:5d:66:82:8a:15:12:ee:0f:
8b:ff:d2:b2:6a:59:40:ca:98:35:6c:7e:9e:35:7d:2c:46:66:
8c:63:f3:58:32:0c:06:04:26:3c:ba:0d:87:c4:6d:87:80:2f:
45:14:cd:62:67:d3:68:9f:c5:bd:7c:1d:76:2d:7a:c0:b9:7e:
1a:64:b9:b2:26:3e:0b:8b:42:1f:a1:72:5c:06:cf:0c:2f:df:
f6:ac:c1:55:60:eb:2d:93:4f:8c:3c:0a:ec:fb:ac:c7:0a:6c:
99:90:dc:6a:7c:ad:41:5c:59:06:20:d3:49:ed:f9:d1:ed:b4:
5f:e9:b7:9f:1d:5e:ca:16:88:6a:a6:2a:95:26:39:44:35:56:
12:ba:a0:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:17 2024 by rpki-client on console-fra.rpki-client.org