Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/8fe938-97e7-4bf1-9b1d-92fcdcfc0e08/1/IDsu1ELczRijLkrMWpnOFaSZ6vw.roa
File: IDsu1ELczRijLkrMWpnOFaSZ6vw.roa (raw, json)
Hash identifier: Pipu7N/CoZ7clREMC0+27T79wZxIWD7hvxYuqxIvqvw=
Subject key identifier: 20:3B:2E:D4:42:DC:CD:18:A3:2E:4A:CC:5A:99:CE:15:A4:99:EA:FC
Certificate issuer: /CN=7ccc95c952551b0f9054c74f7c139043bd3f6211
Certificate serial: 018CC94CE2A257E3E3DA44DD4E5747789481
Authority key identifier: 7C:CC:95:C9:52:55:1B:0F:90:54:C7:4F:7C:13:90:43:BD:3F:62:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fMyVyVJVGw-QVMdPfBOQQ70_YhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/8fe938-97e7-4bf1-9b1d-92fcdcfc0e08/1/IDsu1ELczRijLkrMWpnOFaSZ6vw.roa
Signing time: Tue 02 Jan 2024 08:31:48 +0000
ROA not before: Tue 02 Jan 2024 08:31:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9026
IP address blocks: 62.212.0.0/19 maxlen: 24
185.120.40.0/22 maxlen: 24
2a02:20::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Apr 2024 08:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:e2:a2:57:e3:e3:da:44:dd:4e:57:47:78:94:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ccc95c952551b0f9054c74f7c139043bd3f6211
Validity
Not Before: Jan 2 08:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=203b2ed442dccd18a32e4acc5a99ce15a499eafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:10:c1:82:da:12:5b:87:44:f1:44:bb:fe:ad:
7d:fe:90:95:9a:06:00:cc:f3:8b:16:e7:e3:67:11:
42:23:cc:56:c9:74:67:a5:2d:93:87:4d:23:b2:ba:
95:06:d3:40:9d:d9:05:a7:78:f5:15:4e:05:2b:4c:
c0:44:30:d2:4d:66:ec:f7:40:8f:fc:9b:5b:d9:7b:
59:4d:15:d9:1c:df:05:91:77:94:c2:96:83:b9:bc:
d2:e3:d3:04:2d:d5:cb:8d:c3:1b:36:cb:64:c7:0f:
1a:88:6d:21:9b:97:d7:44:35:65:72:35:07:59:e4:
ee:9b:51:4d:9c:31:5a:33:81:27:6f:6c:2e:2f:51:
be:46:73:03:8a:23:31:b7:f0:f7:e4:5c:0d:46:4d:
e5:b7:1a:aa:c7:d1:2e:09:03:22:d3:a8:89:01:9a:
4c:03:84:fa:d4:b9:05:16:c9:28:65:e6:41:fb:d8:
05:51:b1:0f:f4:67:7f:54:0e:25:b6:e0:6f:c6:37:
da:cb:c4:71:32:9f:43:78:b8:27:df:ec:f2:2a:6f:
7e:5f:e5:43:ff:d7:dd:e1:40:11:0b:17:60:7c:2c:
39:62:99:af:20:f9:b0:48:cb:08:c7:e6:3d:0a:77:
aa:ac:25:d7:f3:59:0b:ac:8c:8a:4a:e0:2a:c1:54:
18:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3B:2E:D4:42:DC:CD:18:A3:2E:4A:CC:5A:99:CE:15:A4:99:EA:FC
X509v3 Authority Key Identifier:
keyid:7C:CC:95:C9:52:55:1B:0F:90:54:C7:4F:7C:13:90:43:BD:3F:62:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fMyVyVJVGw-QVMdPfBOQQ70_YhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/8fe938-97e7-4bf1-9b1d-92fcdcfc0e08/1/IDsu1ELczRijLkrMWpnOFaSZ6vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/8fe938-97e7-4bf1-9b1d-92fcdcfc0e08/1/fMyVyVJVGw-QVMdPfBOQQ70_YhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.212.0.0/19
185.120.40.0/22
IPv6:
2a02:20::/32
Signature Algorithm: sha256WithRSAEncryption
20:a2:a4:63:d2:d2:fb:73:4f:25:c5:69:75:6f:51:0e:71:fe:
40:ec:21:97:82:ff:d5:54:73:f1:96:a2:7f:61:27:86:81:63:
d7:6e:ff:a4:a6:06:b7:72:c0:d6:67:01:d8:4a:a0:dd:f8:d1:
98:a5:7b:f4:fb:07:07:ad:a0:67:0e:83:b4:af:a5:2a:33:c9:
9f:6d:60:a8:f7:14:d2:9f:e5:0c:80:a7:7d:e8:c6:8d:f1:a8:
3b:e7:4a:df:fa:65:54:85:59:4c:36:58:d9:5c:f0:08:90:2e:
77:f1:4a:61:83:fa:39:26:de:9d:ff:97:41:c3:c8:da:9d:7b:
f1:fe:5e:25:1d:b1:78:1b:88:8c:72:d3:d0:44:36:30:3a:af:
d8:01:75:e3:a3:bf:f5:0e:5e:30:40:83:a5:4e:be:12:c1:b2:
3d:9d:78:da:5e:d4:14:9f:98:ae:63:64:58:db:d9:3e:d3:f8:
ae:90:4f:fb:3c:2d:0b:7f:01:bd:22:e9:f3:f1:08:d5:31:62:
4a:d7:21:a3:34:95:95:be:46:73:21:fb:30:5f:bf:d5:62:22:
9a:85:e7:92:c3:fe:2f:12:b4:6b:c4:9e:2b:df:ac:55:2c:3b:
a3:b2:54:c4:89:8b:87:39:e9:59:89:4e:3a:c6:89:bf:6b:1b:
46:02:24:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:18 2024 by rpki-client on console-ams.rpki-client.org