Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/cd39a7-ed1a-4bf3-b5a6-40d836c62829/1/b3k41-KJg2KVWywxxNlP1vdy6nE.roa
File: b3k41-KJg2KVWywxxNlP1vdy6nE.roa (raw, json)
Hash identifier: Y4Z8PNQBFUFTzbbPm58hrOSOwchvAogP0tVYT4LbvgU=
Subject key identifier: 6F:79:38:D7:E2:89:83:62:95:5B:2C:31:C4:D9:4F:D6:F7:72:EA:71
Certificate issuer: /CN=5d644b902caa17a99d65c46cb3a6f8d939cd98b5
Certificate serial: 01856F6FEB35FEEA8B5C56244ABC8C6591B4
Authority key identifier: 5D:64:4B:90:2C:AA:17:A9:9D:65:C4:6C:B3:A6:F8:D9:39:CD:98:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWRLkCyqF6mdZcRss6b42TnNmLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/cd39a7-ed1a-4bf3-b5a6-40d836c62829/1/b3k41-KJg2KVWywxxNlP1vdy6nE.roa
Signing time: Sun 01 Jan 2023 22:24:43 +0000
ROA not before: Sun 01 Jan 2023 22:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49321
IP address blocks: 62.3.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:eb:35:fe:ea:8b:5c:56:24:4a:bc:8c:65:91:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d644b902caa17a99d65c46cb3a6f8d939cd98b5
Validity
Not Before: Jan 1 22:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f7938d7e2898362955b2c31c4d94fd6f772ea71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b5:8c:e4:2c:d8:f1:42:a3:b4:7a:33:61:c5:
bf:00:ec:5b:04:fc:af:d2:3c:29:f9:aa:e7:bf:b2:
e2:cc:88:6d:33:73:5f:b5:4a:85:f6:5a:31:e3:de:
15:d1:bd:34:39:ac:37:5a:c5:0e:25:b7:f1:b0:8c:
0c:51:c4:22:fa:39:58:d0:e2:db:73:3d:94:82:85:
ff:f5:94:84:68:b9:3e:7e:79:2d:20:6e:d8:e5:6d:
88:f5:46:1b:c1:3b:2b:3d:c7:cd:cd:3a:e9:d9:0f:
f3:74:70:52:b5:b7:93:b2:21:56:9f:01:21:3c:a1:
e1:84:90:74:80:b3:7a:f4:87:4e:51:09:d2:cf:bf:
8a:ed:19:31:0e:8d:11:1f:9a:00:45:49:91:73:f0:
4a:c7:cc:ad:4a:39:b7:ff:55:45:e9:21:e5:44:33:
c1:b1:aa:28:9f:b7:8c:47:cb:80:cd:eb:8e:95:1b:
e6:56:9b:17:b9:dd:7e:ab:bc:af:01:11:9b:f0:5e:
0c:ff:27:e1:a3:8e:d9:ba:5c:f1:22:8d:63:36:f5:
42:c5:e4:59:e2:f0:2a:c0:a4:79:c4:ea:7b:6f:97:
45:b3:e7:d2:5d:b6:44:b5:a6:29:3f:5e:ef:05:6a:
12:2b:c2:a3:9c:87:d8:ed:4a:7f:f5:6c:55:1b:7e:
68:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:79:38:D7:E2:89:83:62:95:5B:2C:31:C4:D9:4F:D6:F7:72:EA:71
X509v3 Authority Key Identifier:
keyid:5D:64:4B:90:2C:AA:17:A9:9D:65:C4:6C:B3:A6:F8:D9:39:CD:98:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWRLkCyqF6mdZcRss6b42TnNmLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/cd39a7-ed1a-4bf3-b5a6-40d836c62829/1/b3k41-KJg2KVWywxxNlP1vdy6nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/cd39a7-ed1a-4bf3-b5a6-40d836c62829/1/XWRLkCyqF6mdZcRss6b42TnNmLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.43.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:d1:36:a2:8a:52:05:74:98:d0:11:59:8a:18:aa:4b:97:31:
10:f0:56:4c:e1:e0:4c:28:c0:2f:19:ec:52:1e:9c:cb:33:4a:
31:f3:ca:b7:03:28:8e:27:64:96:87:ae:ae:6a:1d:6c:36:60:
f1:70:c1:1e:ba:45:d7:9a:4e:a9:98:0c:18:0d:e2:ab:a1:69:
56:28:3c:83:ae:a0:01:c0:1a:20:91:a6:18:ae:a4:08:2a:18:
1c:6e:87:4e:f8:e1:0f:0c:ef:d9:13:9e:8d:8d:07:5e:1a:7d:
5c:75:c6:20:08:15:6c:f9:4a:99:3b:da:b3:79:3d:bb:90:56:
b2:54:2a:c9:d2:25:0e:e5:05:b2:00:f0:1c:8c:bb:ed:59:db:
55:aa:7e:0a:44:19:b4:e5:d0:d2:3f:66:0f:7a:37:66:8e:b1:
b4:df:7d:8b:88:ab:54:82:01:1e:a9:4e:c3:56:49:22:69:97:
63:55:01:8a:7b:83:bb:ea:48:4c:bf:63:10:f2:4c:1b:97:b2:
9d:41:67:ac:10:6c:93:f5:02:17:c9:eb:28:0a:47:e5:37:62:
57:dd:5e:49:a6:c3:d1:62:4e:24:17:14:52:83:2e:5c:6f:d2:
9b:05:51:35:74:25:8d:fa:f4:ad:64:b1:3d:fd:d0:db:fa:46:
58:9a:53:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:35 2024 by rpki-client on console-fra.rpki-client.org