Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/2HxsW0OFMnFSsLXJPl_nM5uMUho.roa
File: 2HxsW0OFMnFSsLXJPl_nM5uMUho.roa (raw, json)
Hash identifier: Ry+Jc1LkySQUnXLBbfQjvumZb5qPbwtzX8CPghlVIxw=
Subject key identifier: D8:7C:6C:5B:43:85:32:71:52:B0:B5:C9:3E:5F:E7:33:9B:8C:52:1A
Certificate issuer: /CN=65aa451b783fc91a04b82f82f156f0b489715dc9
Certificate serial: 018570FBC324C15230C09741291108FF8C29
Authority key identifier: 65:AA:45:1B:78:3F:C9:1A:04:B8:2F:82:F1:56:F0:B4:89:71:5D:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZapFG3g_yRoEuC-C8VbwtIlxXck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/2HxsW0OFMnFSsLXJPl_nM5uMUho.roa
Signing time: Mon 02 Jan 2023 05:37:05 +0000
ROA not before: Mon 02 Jan 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60631
IP address blocks: 62.3.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:c3:24:c1:52:30:c0:97:41:29:11:08:ff:8c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65aa451b783fc91a04b82f82f156f0b489715dc9
Validity
Not Before: Jan 2 05:37:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d87c6c5b4385327152b0b5c93e5fe7339b8c521a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7b:14:8c:98:07:01:eb:94:17:0f:14:7d:f8:
fa:1b:91:f8:d0:ad:b6:f8:47:6f:3a:ea:a7:2e:43:
df:52:14:96:18:c0:b6:e2:1e:7a:85:12:c3:63:0f:
d5:11:f7:4b:74:0e:c6:99:93:93:44:07:89:f5:86:
92:ba:f2:97:5f:be:2f:ac:81:2a:f2:4b:cf:8c:8c:
5c:e2:9e:29:41:ad:d2:6b:c0:b2:24:11:59:6a:16:
0d:90:75:21:54:3b:6e:4b:8b:f3:d5:3a:c0:aa:31:
ab:46:c2:2a:ee:81:53:ce:9c:84:af:6b:63:44:37:
75:d4:a1:61:a1:ca:3a:fb:b6:e1:17:3a:f4:59:cb:
4a:f1:58:b9:33:20:ef:b0:76:40:96:e3:13:eb:9c:
75:95:a7:54:d6:12:3d:d1:11:d1:3a:c2:76:11:3b:
74:14:f1:55:ef:30:23:26:93:54:18:98:48:69:a7:
e9:6a:80:f0:7f:7d:2c:2c:3a:e8:dc:2b:cf:97:8c:
42:83:bf:ff:21:d0:d0:1e:41:02:a2:4f:2d:d8:38:
ad:0f:32:e0:32:e1:4c:51:b7:37:71:10:7a:06:1a:
3b:33:6f:12:c4:95:56:e8:3d:df:07:45:a7:9d:35:
a4:fc:af:32:3f:0f:eb:14:08:dd:3d:0f:6a:0a:39:
e9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:7C:6C:5B:43:85:32:71:52:B0:B5:C9:3E:5F:E7:33:9B:8C:52:1A
X509v3 Authority Key Identifier:
keyid:65:AA:45:1B:78:3F:C9:1A:04:B8:2F:82:F1:56:F0:B4:89:71:5D:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZapFG3g_yRoEuC-C8VbwtIlxXck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/2HxsW0OFMnFSsLXJPl_nM5uMUho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b2e1ef-75b4-4fe9-871b-3bc3df7a298a/1/ZapFG3g_yRoEuC-C8VbwtIlxXck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.41.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:43:3b:3b:d5:c3:ec:ba:f5:84:30:4a:92:30:e0:3b:a1:37:
34:6f:38:61:8e:2f:19:e8:da:94:ef:3b:35:02:d9:09:6c:5a:
fd:01:3b:bf:3c:30:45:b8:d1:ef:40:46:84:d8:e1:00:22:58:
07:76:ba:a1:ef:47:03:4c:f2:6b:2e:57:b7:9a:09:58:32:03:
18:12:43:bd:fd:56:3f:a3:f2:b2:e5:b6:ee:7a:d7:74:26:73:
24:34:91:d7:03:fd:65:85:ad:07:94:7c:4d:86:f0:06:af:3b:
09:d9:79:d6:1a:c1:15:3b:aa:2f:a6:f4:db:2d:f9:51:8d:d5:
ce:ef:b2:33:4f:a7:c3:4d:40:82:31:b3:02:51:68:46:eb:eb:
b2:d8:fe:42:ab:30:c3:2a:3f:05:17:71:0a:6c:49:28:a4:5c:
3a:95:23:5d:5f:18:73:15:49:97:cb:6e:2a:95:d9:e6:72:8c:
a9:2f:fc:40:c3:94:67:0d:ad:6c:96:29:16:fb:0e:20:1d:fc:
9f:9d:76:d4:e9:3e:6f:f6:1e:12:5e:c9:b4:99:7d:4d:94:3b:
5d:40:0b:ca:1c:4e:da:5d:52:c4:40:9b:ec:33:4c:1b:37:e6:
53:0a:73:aa:52:c0:21:29:7a:04:b5:34:ad:66:d7:c4:57:e2:
6e:d5:1a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:53 2024 by rpki-client on console-fra.rpki-client.org