Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/HVGJmip6LFPOUvp4yIMQtO3WOa0.roa
File: HVGJmip6LFPOUvp4yIMQtO3WOa0.roa (raw, json)
Hash identifier: E5WK/YGQ7ZExZ3lwTnhptGV+IAtI18ZN232RQv/Nrek=
Subject key identifier: 1D:51:89:9A:2A:7A:2C:53:CE:52:FA:78:C8:83:10:B4:ED:D6:39:AD
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 01857255B2E84D0DBD3399DECBAFA8CC9DAD
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/HVGJmip6LFPOUvp4yIMQtO3WOa0.roa
Signing time: Mon 02 Jan 2023 11:54:56 +0000
ROA not before: Mon 02 Jan 2023 11:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202534
IP address blocks: 62.228.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:b2:e8:4d:0d:bd:33:99:de:cb:af:a8:cc:9d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 2 11:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d51899a2a7a2c53ce52fa78c88310b4edd639ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:31:fd:5c:78:11:45:c2:8a:73:fb:23:3b:3a:
2c:9a:e8:b2:4c:31:fa:48:fe:ce:bd:3a:c8:05:fa:
66:de:99:d8:d4:e3:4d:8c:ee:d5:96:a1:d3:43:fc:
58:32:01:84:c0:42:7a:3e:9b:42:c8:ba:4e:aa:25:
fb:b2:6d:f6:3f:9d:44:33:7e:bb:70:af:fb:13:57:
eb:c3:79:3a:8e:5e:f7:78:c7:9b:43:46:ab:2f:b5:
d0:26:8e:c9:ea:08:4f:fb:bb:88:2a:56:84:2a:59:
40:08:bd:da:db:72:ae:4c:3f:4c:f7:23:a0:19:d7:
f5:b8:b6:cd:f4:f9:88:71:d5:a8:18:24:95:86:32:
50:f9:c5:7c:2c:51:8d:99:2a:b9:3e:b0:52:99:c3:
54:c1:3f:b9:82:04:f4:f0:1d:34:03:b8:91:c5:c8:
be:9b:b6:e7:20:da:80:e6:76:9b:1e:aa:a5:97:ad:
f6:e3:fc:6b:40:3b:33:46:2c:0a:ac:e9:d9:15:59:
47:87:e3:0d:5a:09:85:f3:ff:dd:25:75:cf:4e:fb:
2e:6c:1f:cd:fd:14:98:3d:b0:40:d9:5e:e7:ff:f3:
2b:71:84:cf:3a:82:81:1f:27:bf:98:cc:13:ef:95:
fa:fb:22:b8:68:c1:36:f2:d9:28:82:f8:fb:5a:e8:
c6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:51:89:9A:2A:7A:2C:53:CE:52:FA:78:C8:83:10:B4:ED:D6:39:AD
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/HVGJmip6LFPOUvp4yIMQtO3WOa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.239.0/24
Signature Algorithm: sha256WithRSAEncryption
56:61:1f:32:42:6a:45:70:c4:73:56:da:ac:f4:55:1e:20:05:
4a:81:fb:1f:49:47:b5:cd:8d:ea:5d:e2:43:e4:b2:51:03:6a:
d7:a0:d8:ed:e2:48:07:03:dd:25:87:6d:95:b2:62:ff:14:f2:
4d:48:4d:be:35:7e:a6:6c:70:41:00:a4:e6:92:f4:42:92:d5:
23:86:2b:99:c1:5a:1c:7f:36:df:28:84:76:7e:ca:d6:df:ef:
2a:f9:cf:a6:ef:a8:5e:73:36:1c:f6:2d:cf:ec:1e:89:63:8b:
31:52:58:03:10:94:17:aa:eb:9f:6a:13:e3:7a:aa:8e:e9:db:
84:b5:f1:ef:e0:67:cf:ce:c9:4a:30:02:c1:b7:e7:6b:81:c5:
d0:2f:3c:f1:ff:00:c1:dc:50:b3:f0:a1:d6:b2:35:fa:bb:76:
ad:82:f2:ec:8d:0d:46:c3:e8:8c:d1:96:49:09:84:43:25:15:
8c:c6:dd:26:27:a7:02:4f:75:d5:16:4d:f1:be:4a:57:17:9e:
cf:0f:f7:a6:85:8d:f0:8d:25:e6:16:06:ed:45:7a:f6:75:c9:
29:e6:bc:8d:fc:2c:04:7f:f1:49:d1:cb:54:5a:f7:26:d8:9e:
47:3a:7a:13:bd:7b:17:ba:6b:8b:c1:e1:d3:b6:f7:99:26:a7:
35:3b:4b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:03 2024 by rpki-client on console-ams.rpki-client.org