Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/U3WLzgDJJFyyzsqqWjVg0JIBtZ8.roa
File: U3WLzgDJJFyyzsqqWjVg0JIBtZ8.roa (raw, json)
Hash identifier: p06jVeuiHAXhU5VyrY345qUSeruGE+TbeiieYPRqAoI=
Subject key identifier: 53:75:8B:CE:00:C9:24:5C:B2:CE:CA:AA:5A:35:60:D0:92:01:B5:9F
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 01857255B0C1D75D0902183448FE816322E6
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/U3WLzgDJJFyyzsqqWjVg0JIBtZ8.roa
Signing time: Mon 02 Jan 2023 11:54:56 +0000
ROA not before: Mon 02 Jan 2023 11:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200649
IP address blocks: 62.228.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:b0:c1:d7:5d:09:02:18:34:48:fe:81:63:22:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 2 11:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53758bce00c9245cb2cecaaa5a3560d09201b59f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:72:20:ba:5a:5d:28:36:63:7e:63:c5:a2:02:
c9:b8:0d:61:1b:09:69:08:45:8c:e4:6b:73:95:9d:
b4:67:98:de:3a:59:d9:10:2e:31:4e:e2:d3:40:b9:
42:e0:2a:a7:53:6f:5d:db:80:5a:81:23:f2:99:69:
44:d3:02:f4:29:b8:58:ea:7e:c8:c0:06:75:51:32:
42:be:fd:89:8d:18:e7:30:ef:e9:e1:5d:ba:d5:fa:
46:85:46:27:a8:89:8c:83:03:7d:6b:20:85:43:f2:
14:80:06:7a:b4:e1:94:33:f3:66:bd:cd:2e:48:b4:
7f:c4:8a:6a:c5:81:9c:9e:fd:0f:5d:60:64:58:32:
32:63:82:23:70:4e:1c:e5:3f:3a:19:04:6e:48:bf:
27:a6:33:3b:b0:fc:65:55:e0:58:f2:9f:25:73:6a:
9f:00:8a:bf:92:26:83:20:3d:78:36:38:c4:25:6b:
14:7a:c9:a2:ba:57:47:32:a0:ff:6d:8c:86:8f:a8:
7c:65:ce:1a:e7:ce:fa:c4:54:e0:89:43:04:43:1c:
83:de:26:e2:76:7d:72:1e:9d:cf:34:2e:e5:be:f4:
97:ef:58:9e:3e:7a:ab:49:0e:d5:cf:87:f5:3e:d3:
dd:0c:3a:65:f9:44:21:ff:a2:d9:10:60:63:2b:d4:
fc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:75:8B:CE:00:C9:24:5C:B2:CE:CA:AA:5A:35:60:D0:92:01:B5:9F
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/U3WLzgDJJFyyzsqqWjVg0JIBtZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.243.0/24
Signature Algorithm: sha256WithRSAEncryption
41:f7:16:e2:06:a5:07:4c:a2:e4:f2:e9:07:17:eb:08:34:71:
d4:6b:59:db:52:58:43:90:4c:b2:2e:cb:a6:d4:c3:a5:65:34:
7a:0a:55:73:e4:cb:c8:fe:7a:e4:79:aa:0f:57:24:10:10:1c:
75:e9:cb:86:5d:c0:21:78:48:43:50:3b:7c:e3:63:06:ec:ce:
dc:68:89:28:d0:4a:50:4f:a8:01:95:79:ad:7b:40:d8:c6:0c:
48:de:31:95:fc:14:77:bd:ee:56:c5:d5:69:d0:7a:e7:02:c8:
38:48:5e:40:72:63:47:18:2a:c1:4b:ca:55:eb:8d:ca:48:3c:
8f:bf:bb:01:7d:1d:01:79:21:2b:98:b0:e1:9b:41:c5:9d:ee:
86:96:80:b1:d3:e2:49:a9:f3:25:2a:4a:99:0b:1c:4b:03:a6:
3a:0f:9c:8b:ef:b3:97:33:ac:e3:0b:9d:41:43:fe:cf:36:b3:
10:ea:48:87:5e:54:3d:fb:12:5b:01:3f:87:f4:5b:51:4e:3e:
cb:3f:ab:bc:1c:aa:d2:b2:6c:bd:4b:04:8e:33:40:2b:fa:98:
b4:c2:de:ca:62:79:42:1d:86:ef:12:64:64:c4:f7:bb:bd:3c:
c4:42:c3:de:05:1b:fc:f5:18:b0:d2:81:30:42:ec:f0:30:59:
6c:57:6a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:17 2024 by rpki-client on console-ams.rpki-client.org