Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/b50d8f-a95f-4eca-a822-658bc41b10fa/1/ilyWYj6bMrzJ09YhAvsxX9Y85XE.roa
File: ilyWYj6bMrzJ09YhAvsxX9Y85XE.roa (raw, json)
Hash identifier: jj31SVF578ZX4o4o01zHsCviHbRJxMhqS7EjlvG314Y=
Subject key identifier: 8A:5C:96:62:3E:9B:32:BC:C9:D3:D6:21:02:FB:31:5F:D6:3C:E5:71
Certificate issuer: /CN=33518bbf7115cd8573e0deb8ebe675848f25bdfb
Certificate serial: 01856D6F57F7655D236148524FC489B254FA
Authority key identifier: 33:51:8B:BF:71:15:CD:85:73:E0:DE:B8:EB:E6:75:84:8F:25:BD:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1GLv3EVzYVz4N646-Z1hI8lvfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/b50d8f-a95f-4eca-a822-658bc41b10fa/1/ilyWYj6bMrzJ09YhAvsxX9Y85XE.roa
Signing time: Sun 01 Jan 2023 13:04:51 +0000
ROA not before: Sun 01 Jan 2023 13:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 62.233.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:57:f7:65:5d:23:61:48:52:4f:c4:89:b2:54:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33518bbf7115cd8573e0deb8ebe675848f25bdfb
Validity
Not Before: Jan 1 13:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a5c96623e9b32bcc9d3d62102fb315fd63ce571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fd:c6:78:65:90:ff:d0:4e:45:40:26:9c:fa:
a3:bb:f1:a8:cc:29:8d:0f:eb:78:4f:98:b9:1a:f5:
9d:c9:bf:83:b3:65:dc:53:2e:09:eb:63:d4:27:65:
da:39:22:e3:19:8a:24:1c:57:d4:f3:3c:5d:55:2c:
36:65:aa:76:ea:2d:2d:73:6d:00:8c:c9:52:78:38:
22:b7:d1:c3:53:56:4b:62:ed:01:00:1b:34:c7:8e:
91:f6:02:c9:bd:d6:02:e1:05:4f:e4:aa:f9:6b:d5:
63:4e:20:d5:dc:8c:0c:98:4b:d4:4d:3a:4c:11:45:
cc:c6:95:65:7d:4d:45:76:4f:e9:33:bb:35:51:ef:
99:d8:36:90:94:97:8c:ec:b4:50:d1:5c:9f:e6:36:
e7:f0:88:f8:8e:bc:38:5b:c2:e5:62:62:a6:95:7f:
0f:cd:98:8a:41:0b:e2:15:b0:b0:f8:c6:9c:1d:61:
a0:29:70:dc:37:f9:5a:3b:71:a8:7f:0c:ba:7e:96:
2b:da:1e:25:c1:b8:90:dc:d1:a6:c0:00:10:93:1d:
2a:9e:9d:e5:ef:df:14:24:14:b1:18:f3:2a:21:68:
a7:cb:4a:ee:cf:58:58:6a:6f:5c:a7:5c:a8:c3:e3:
5e:e7:f3:7a:30:0c:36:17:70:dd:65:d2:fa:16:da:
d9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5C:96:62:3E:9B:32:BC:C9:D3:D6:21:02:FB:31:5F:D6:3C:E5:71
X509v3 Authority Key Identifier:
keyid:33:51:8B:BF:71:15:CD:85:73:E0:DE:B8:EB:E6:75:84:8F:25:BD:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1GLv3EVzYVz4N646-Z1hI8lvfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/b50d8f-a95f-4eca-a822-658bc41b10fa/1/ilyWYj6bMrzJ09YhAvsxX9Y85XE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/b50d8f-a95f-4eca-a822-658bc41b10fa/1/M1GLv3EVzYVz4N646-Z1hI8lvfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.52.0/24
Signature Algorithm: sha256WithRSAEncryption
05:2d:e2:a3:35:40:a0:e1:48:68:44:a6:fa:3d:52:89:5b:58:
cd:d0:37:37:e2:33:53:b6:22:97:40:39:05:41:4f:f7:2e:80:
28:27:17:05:e9:cd:b9:4c:8e:77:e4:0c:9b:0b:83:bb:67:9b:
d6:7f:50:d2:28:06:1e:ca:07:42:0f:6c:eb:a0:e7:18:64:cc:
86:21:4d:a5:5b:86:60:bc:2f:70:50:5a:18:13:bd:4c:c6:f7:
a1:03:99:98:23:5a:e9:23:13:b9:2d:e0:f2:ba:ed:9f:bc:76:
0d:ae:29:a5:89:95:aa:af:e6:14:ce:79:ed:5c:c5:6c:e6:00:
8f:9e:45:f7:f3:cd:f5:7a:b5:a3:26:79:75:ae:64:77:e1:73:
2f:d7:b9:16:61:8f:bf:5b:b2:6e:9d:51:a7:48:04:b4:01:83:
e7:39:4b:50:21:0f:db:64:a9:df:2f:41:86:de:2b:a4:ec:ff:
2c:cf:cb:da:70:61:15:da:8d:9b:f1:76:03:61:43:2b:6b:e8:
a3:c6:7e:73:38:57:a8:05:74:09:ee:29:da:3f:cf:ea:4c:ee:
c8:69:37:e2:83:3b:a9:44:0e:f9:24:87:3a:63:8d:86:49:a8:
98:06:ef:76:3a:c2:6f:43:84:64:e3:3e:68:6f:cc:ec:01:24:
fc:64:d0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-ams.rpki-client.org