Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/b49EdA0lzF2mcyZxhv6IlSzwoT0.roa
File: b49EdA0lzF2mcyZxhv6IlSzwoT0.roa (raw, json)
Hash identifier: bF3eVJ7pSId0e17rDMPjkL9jll4uKGEW2GnE7sIYCXI=
Subject key identifier: 6F:8F:44:74:0D:25:CC:5D:A6:73:26:71:86:FE:88:95:2C:F0:A1:3D
Certificate issuer: /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial: 01857255B1F9C0012B24F5024B6641BBB403
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/b49EdA0lzF2mcyZxhv6IlSzwoT0.roa
Signing time: Mon 02 Jan 2023 11:54:56 +0000
ROA not before: Mon 02 Jan 2023 11:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202117
IP address blocks: 62.228.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:b1:f9:c0:01:2b:24:f5:02:4b:66:41:bb:b4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Validity
Not Before: Jan 2 11:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f8f44740d25cc5da673267186fe88952cf0a13d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3d:0a:cc:ed:a9:28:67:ec:78:00:4f:65:e6:
fd:49:6e:08:e4:ad:60:31:d7:07:1b:fe:5d:77:44:
25:6b:43:d7:19:34:b8:2b:41:d3:7c:18:81:6f:f8:
ed:e0:a7:71:9e:70:7a:91:79:4e:6b:96:2e:7b:30:
eb:4c:7b:20:43:c8:fd:70:03:98:c6:a4:0a:cc:d8:
4b:1f:fe:4c:d4:53:c8:96:66:11:29:59:7c:6f:b6:
01:69:96:13:ee:39:e3:ca:ab:87:a3:c9:0f:aa:e0:
f2:e4:c2:f5:cc:60:43:84:4f:99:2a:7f:0c:57:f9:
23:64:fe:ef:fc:99:5e:c7:f0:b6:03:fd:27:7b:3a:
fd:1c:c5:02:c1:7e:39:25:8c:59:7a:63:dc:4a:f6:
da:f9:2a:55:39:c0:ba:27:42:2e:57:c2:79:77:a3:
16:6d:53:5c:78:29:98:58:08:f5:90:b3:89:3c:0b:
06:6c:03:41:75:6a:5d:0c:c3:cc:79:85:86:b4:ca:
c4:f3:43:73:cc:ad:8c:de:50:db:bd:54:59:e1:91:
64:a4:c3:9d:35:e5:aa:30:57:cf:32:b8:dc:ad:75:
ed:03:23:20:da:2a:a2:6d:5d:4c:6b:06:aa:b1:27:
b5:a6:8f:74:03:f6:6b:a7:33:89:1d:b5:e4:85:23:
26:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8F:44:74:0D:25:CC:5D:A6:73:26:71:86:FE:88:95:2C:F0:A1:3D
X509v3 Authority Key Identifier:
keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/b49EdA0lzF2mcyZxhv6IlSzwoT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.228.249.0/24
Signature Algorithm: sha256WithRSAEncryption
68:7d:2b:1a:a9:99:d7:0b:7a:24:b2:28:73:73:fc:0d:3f:49:
60:38:fe:f9:ab:d9:2d:f6:df:ae:68:1f:ae:81:ef:82:37:e3:
72:83:c5:82:ee:d5:2f:ba:c5:d4:31:48:9f:46:b5:52:aa:ac:
a1:44:1e:38:d7:72:a8:d6:29:29:5e:eb:14:0e:b8:2f:e8:96:
32:6d:1f:6e:44:56:91:84:f8:0e:5b:8d:18:63:1a:a0:d0:4a:
67:bf:73:70:5b:dd:87:cc:24:cb:59:f9:da:b4:75:9c:1f:83:
11:fb:d0:0c:65:d8:83:4b:9c:e5:e2:05:8e:70:e3:75:4f:f3:
07:ab:5e:48:5f:64:22:21:09:71:01:60:ef:47:2b:89:cb:a3:
1b:2b:9d:40:29:60:e4:14:1b:fb:66:87:3e:45:b3:66:5b:ed:
15:ba:9c:71:c4:0d:f4:91:c0:6f:0f:1a:e4:bd:d0:de:ed:ff:
61:de:2a:ca:39:41:30:0b:04:3e:08:75:4d:54:de:cb:6d:b2:
4f:c0:0d:1d:a3:e8:84:96:ad:36:b7:15:29:39:3b:aa:fa:c1:
ca:72:f9:94:bf:ad:ab:76:05:c0:d3:14:d6:52:c6:a2:5a:8a:
cd:e3:28:b0:e6:ae:41:6d:50:f1:85:72:49:9b:62:3b:db:3c:
2d:c3:2a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:14 2024 by rpki-client on console-fra.rpki-client.org