Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/IYMpnc2lVudH0IxWZCQHmwtIdHU.roa
File: IYMpnc2lVudH0IxWZCQHmwtIdHU.roa (raw, json)
Hash identifier: I1IDc9F3Izx495dS1yTIyBu1voFNpu4cbuOgqxpJVZs=
Subject key identifier: 21:83:29:9D:CD:A5:56:E7:47:D0:8C:56:64:24:07:9B:0B:48:74:75
Certificate issuer: /CN=a6f13d680ce480591bf8b37ddca0faeb3bbe744e
Certificate serial: 018B8B6FFE6BFB00C107004237F7C7A18632
Authority key identifier: A6:F1:3D:68:0C:E4:80:59:1B:F8:B3:7D:DC:A0:FA:EB:3B:BE:74:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/IYMpnc2lVudH0IxWZCQHmwtIdHU.roa
Signing time: Wed 01 Nov 2023 15:10:54 +0000
ROA not before: Wed 01 Nov 2023 15:10:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15480
IP address blocks: 109.32.0.0/13 maxlen: 13
62.140.128.0/20 maxlen: 20
62.72.192.0/19 maxlen: 19
62.140.140.0/23 maxlen: 23
62.140.156.0/23 maxlen: 23
31.136.0.0/14 maxlen: 14
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:6f:fe:6b:fb:00:c1:07:00:42:37:f7:c7:a1:86:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f13d680ce480591bf8b37ddca0faeb3bbe744e
Validity
Not Before: Nov 1 15:10:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2183299dcda556e747d08c566424079b0b487475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:21:4f:e3:9e:65:c2:51:db:2a:f9:1a:e9:27:
1d:19:40:4e:f6:44:c0:c8:62:82:db:f5:5d:63:d2:
3d:f7:3c:1b:90:48:0b:f1:0c:20:48:7a:60:04:c7:
ca:51:88:76:4a:05:36:4a:5c:0f:17:49:5b:d5:9e:
e7:97:c4:7e:69:e0:14:01:33:4a:b8:b8:2d:50:9c:
6c:58:7e:a7:05:59:b4:88:d4:9b:3f:ab:74:1e:b4:
12:9c:b1:02:3b:71:81:b4:6b:0a:5d:b8:f1:b3:c5:
cf:45:65:84:f1:f8:45:34:99:af:b2:be:94:2a:c2:
c6:dd:f3:75:a2:5b:84:32:07:9a:53:f6:51:f0:1a:
83:af:1b:8b:21:ee:21:b1:02:44:29:9b:37:f3:22:
27:bf:d5:7f:ce:bd:e8:d5:5f:94:3c:b4:04:dd:6e:
50:ba:b7:f7:85:3b:76:59:b9:5b:6e:b2:f1:b1:cb:
30:a7:88:f3:de:f2:47:94:e3:d8:0f:90:4c:7e:0c:
12:58:c7:7e:b7:95:dc:97:11:28:25:3f:35:dd:ac:
2d:84:1e:34:11:c0:14:77:bb:60:06:22:36:cf:d0:
56:d0:55:c8:3a:31:6f:2a:3c:51:53:d6:c5:b8:52:
25:a2:b9:d9:9a:50:ae:fc:a7:52:21:ac:5a:fb:77:
19:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:83:29:9D:CD:A5:56:E7:47:D0:8C:56:64:24:07:9B:0B:48:74:75
X509v3 Authority Key Identifier:
keyid:A6:F1:3D:68:0C:E4:80:59:1B:F8:B3:7D:DC:A0:FA:EB:3B:BE:74:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvE9aAzkgFkb-LN93KD66zu-dE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/IYMpnc2lVudH0IxWZCQHmwtIdHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8d1b02-b0f9-4e0e-a457-30bdb48da521/1/pvE9aAzkgFkb-LN93KD66zu-dE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.136.0.0/14
62.72.192.0/19
62.140.128.0/20
62.140.156.0/23
109.32.0.0/13
Signature Algorithm: sha256WithRSAEncryption
41:b5:75:a2:2f:43:c2:36:14:52:84:da:60:9f:88:3b:75:ba:
c9:41:72:c6:9e:58:58:21:0e:4a:9b:34:30:82:f2:6d:ea:fb:
ba:ea:53:76:a7:36:d6:c2:3e:df:3a:fd:8e:5b:e2:04:bb:7e:
26:01:a6:f6:24:e4:d9:6d:ed:da:7b:ee:65:ee:f5:14:2d:38:
38:4b:3f:68:cd:aa:f1:27:5f:11:b6:3c:4a:27:34:3b:4d:ba:
8d:b2:26:06:b1:ab:4b:7a:56:1f:fa:24:02:4c:97:7c:cf:8d:
81:15:71:c8:58:46:dc:84:15:70:06:2f:4e:e5:ae:4b:a0:dd:
42:1e:6a:e8:eb:31:27:a9:43:d3:d3:be:c8:f5:57:1a:b1:3b:
14:3d:68:72:df:9f:52:99:0b:ad:1c:8c:d1:66:23:fe:a5:af:
99:fc:49:4e:0f:23:0f:d3:43:af:c7:fb:d6:95:27:98:73:ac:
8c:f0:8d:97:0e:cd:af:9e:5c:d7:81:24:bc:0f:d0:a7:81:14:
4b:19:83:ab:29:1c:35:bd:a7:66:62:ba:aa:ab:38:1b:2f:e2:
82:6f:66:ab:48:08:06:f7:cf:15:83:ad:e6:1d:05:3b:b6:6a:
bb:b2:11:53:4f:67:a4:b3:1d:27:62:f2:d8:f1:05:4b:30:19:
14:f3:0b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:02 2024 by rpki-client on console-ams.rpki-client.org