Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/DlExTj35M24dBQeGiIOk9CDYOhg.roa
File: DlExTj35M24dBQeGiIOk9CDYOhg.roa (raw, json)
Hash identifier: OE4guRnQEMxncE1lQiBgZO5NAr73QvNKfQbSeExOrVg=
Subject key identifier: 0E:51:31:4E:3D:F9:33:6E:1D:05:07:86:88:83:A4:F4:20:D8:3A:18
Certificate issuer: /CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Certificate serial: 018CC56E5024BB2CA34171BA1CE933E5ADC8
Authority key identifier: 49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/DlExTj35M24dBQeGiIOk9CDYOhg.roa
Signing time: Mon 01 Jan 2024 14:29:50 +0000
ROA not before: Mon 01 Jan 2024 14:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212477
IP address blocks: 62.233.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:50:24:bb:2c:a3:41:71:ba:1c:e9:33:e5:ad:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Validity
Not Before: Jan 1 14:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e51314e3df9336e1d0507868883a4f420d83a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f7:0c:97:ff:45:74:02:f9:6f:1d:28:f4:ad:
1f:07:76:de:6a:fb:25:b9:1a:81:b6:8b:a8:04:85:
73:e0:c7:b4:e3:ba:b6:85:36:de:2c:c7:a0:a1:36:
1f:0f:e8:eb:0d:c9:69:66:d1:a2:8a:3a:9d:a5:bc:
0e:d0:46:21:ca:6b:da:ef:b2:f0:58:76:f4:fe:d7:
b6:72:54:c1:cd:c9:ee:d4:d7:9e:2b:bb:5d:37:a5:
68:ce:61:b9:ed:b7:eb:0c:8f:25:70:39:19:76:ab:
b3:b9:bb:f0:16:98:d1:99:5f:39:93:fd:23:0d:d2:
13:8a:a2:f8:e5:7c:15:06:10:0b:df:c6:9c:89:b9:
39:0a:06:9f:64:14:2c:85:66:19:96:03:1c:ea:20:
b6:26:ad:f5:1b:be:09:4f:78:59:8b:2a:3e:ca:00:
86:99:65:20:2a:38:f9:35:6f:13:6c:13:d2:83:18:
17:77:74:c2:47:8c:57:a6:90:9e:35:c3:1e:87:d7:
cd:7a:84:b1:52:3b:9d:19:47:04:11:d8:ea:bd:11:
c8:e5:e6:f5:61:84:4d:a2:0e:73:23:07:c3:bc:48:
4c:87:24:07:00:a9:fc:6f:84:57:e1:2c:38:d1:3c:
6d:26:b7:78:90:1a:dc:09:ae:8c:93:82:c4:54:0e:
04:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:51:31:4E:3D:F9:33:6E:1D:05:07:86:88:83:A4:F4:20:D8:3A:18
X509v3 Authority Key Identifier:
keyid:49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/DlExTj35M24dBQeGiIOk9CDYOhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.36.0/24
Signature Algorithm: sha256WithRSAEncryption
31:b1:e3:5a:3d:d6:7a:2c:40:39:cb:9a:d8:45:d9:62:d7:3b:
40:80:97:df:32:d5:1d:37:67:0a:3e:4a:ae:94:9c:39:98:1d:
3c:27:ca:81:9a:4c:70:d9:7f:62:b7:a1:da:95:d0:f0:d0:d2:
2e:c9:47:14:d7:39:7b:53:8f:fb:1b:79:ba:72:e0:7d:73:e7:
8f:78:83:44:9f:e9:39:53:45:ec:de:f5:2b:b1:df:eb:70:1b:
bc:73:d7:d2:d4:43:fe:16:21:bc:25:d2:c5:7a:80:cc:02:5a:
19:92:2c:8c:46:59:45:ca:4b:58:f0:51:44:6a:22:d4:99:03:
5d:41:95:94:43:31:1b:d5:7e:f5:b4:14:e1:4d:45:9b:59:6d:
6c:92:77:dc:eb:c1:20:02:15:b8:4b:89:b7:e6:a4:e6:71:e4:
da:8a:d6:2b:c6:f0:f2:87:3c:b7:d0:1a:e1:14:38:49:46:fa:
66:e3:05:18:8e:74:e1:ae:21:44:da:6a:7d:cd:6c:02:ec:41:
59:c6:da:4f:53:6a:b2:b8:fa:e5:e6:99:51:0f:53:17:ff:d8:
bc:4a:0b:71:aa:5a:ea:e5:2f:ce:69:e0:88:9e:1a:c6:29:18:
d2:89:c3:fd:ec:56:42:25:32:6d:64:2f:86:ea:e2:cd:7e:d6:
eb:a5:3c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:04 2025 by rpki-client