Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/k9n-uZGefRT4C7U-FMd5d91nb4o.roa
File: k9n-uZGefRT4C7U-FMd5d91nb4o.roa (raw, json)
Hash identifier: +yeIAQpjw41L9OtAnabQwS55jld/CfEOOR2bFtyXgmA=
Subject key identifier: 93:D9:FE:B9:91:9E:7D:14:F8:0B:B5:3E:14:C7:79:77:DD:67:6F:8A
Certificate issuer: /CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Certificate serial: 0187DC195FF7D4D7927A9617ADD5AA738FAF
Authority key identifier: BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/k9n-uZGefRT4C7U-FMd5d91nb4o.roa
Signing time: Tue 02 May 2023 10:54:23 +0000
ROA not before: Tue 02 May 2023 10:54:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142111
IP address blocks: 62.233.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:19:5f:f7:d4:d7:92:7a:96:17:ad:d5:aa:73:8f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baecf4d5ed68aa6926357e49747ec70141131b1a
Validity
Not Before: May 2 10:54:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93d9feb9919e7d14f80bb53e14c77977dd676f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:85:75:ef:85:26:42:2e:4a:6f:b2:a4:fb:da:
cb:dc:ca:ea:a7:88:79:80:08:62:0b:76:30:bc:0e:
ff:cb:22:1a:86:04:82:da:fb:5b:bf:a0:8e:e7:96:
58:21:87:21:01:93:e2:ad:2b:1b:19:65:ff:9e:96:
e5:68:04:48:6d:f3:d0:4f:45:50:4e:43:42:ef:b7:
20:08:74:7f:3e:52:b2:2f:fb:c4:3b:8c:79:8d:d9:
eb:3d:71:91:ea:d9:09:ad:ab:45:94:d2:10:e7:17:
36:d7:7e:2a:c7:2b:ba:0a:7c:04:df:e4:d4:c6:1b:
0d:ea:9c:54:33:7e:24:dc:98:b8:d6:eb:a9:56:b7:
29:a7:8a:04:d6:fd:72:c9:1c:df:06:07:75:d7:b7:
92:14:20:00:15:a5:78:dc:7a:2c:d4:a2:39:1a:39:
1c:34:52:8f:6d:7f:8f:91:30:c2:8d:11:18:a6:8a:
26:94:b6:07:63:64:84:4e:9e:03:73:73:cb:d9:a8:
73:e1:32:3f:f6:d8:47:49:d7:c3:1e:37:e4:70:94:
fb:39:d8:a7:c3:30:70:43:56:c5:17:60:d3:3c:15:
20:7b:8c:51:1c:e5:a8:27:fb:b8:e0:6b:24:d0:09:
88:04:c5:db:6a:92:a0:12:3c:aa:31:58:70:49:d9:
5e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D9:FE:B9:91:9E:7D:14:F8:0B:B5:3E:14:C7:79:77:DD:67:6F:8A
X509v3 Authority Key Identifier:
keyid:BA:EC:F4:D5:ED:68:AA:69:26:35:7E:49:74:7E:C7:01:41:13:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uuz01e1oqmkmNX5JdH7HAUETGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/k9n-uZGefRT4C7U-FMd5d91nb4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/38198a-bdd8-496e-b802-296b6175849c/1/uuz01e1oqmkmNX5JdH7HAUETGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
Signature Algorithm: sha256WithRSAEncryption
62:78:f4:d7:de:09:f2:7e:a6:36:df:cd:5e:11:4e:ef:57:9e:
84:ab:1c:54:17:95:c2:fd:35:ba:93:59:17:18:20:76:30:3e:
a7:3d:bf:74:92:ed:2b:0e:9d:b0:8c:d1:34:a7:2e:04:a5:ef:
00:61:a8:bb:08:4e:cd:aa:ed:86:58:a1:14:72:6f:db:f1:5d:
d5:b3:24:4c:af:8a:96:50:a0:47:4d:26:ca:9d:57:d2:e5:90:
d3:ab:4e:a1:3c:bd:05:60:55:b3:df:ca:23:38:23:64:f5:d6:
de:db:0d:dd:0d:ca:03:b9:3b:d3:03:39:97:1f:f0:47:28:c1:
31:69:b4:11:f0:47:37:89:6a:72:4c:1e:3b:c8:4f:de:1d:cd:
9c:f8:12:80:c7:55:db:58:c3:d3:27:f4:5d:f7:a9:67:85:e6:
b6:26:50:31:90:e6:ba:f3:5d:e8:95:f3:7c:8b:8b:8c:2f:41:
26:b8:2e:e5:ca:f6:b8:94:55:26:5a:5c:f0:44:ec:ab:4c:e1:
c6:75:9b:13:17:c4:26:75:27:31:8c:73:95:35:98:bc:e0:23:
2b:a6:e9:e3:9c:b1:fa:96:19:a7:08:d6:1b:be:aa:80:6e:6f:
33:1f:81:7c:02:ee:f0:1b:41:54:02:60:85:f1:d5:11:d7:3e:
b5:cd:cc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:54 2023 by rpki-client on console-fra.rpki-client.org