Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/3eyhDnIZvRrHblgcWUA0XfzSEu0.roa
File: 3eyhDnIZvRrHblgcWUA0XfzSEu0.roa (raw, json)
Hash identifier: GnF9mTbLTQoVVcYfPvXB4t3LS8j0GvbLFhZ1OPY2tz0=
Subject key identifier: DD:EC:A1:0E:72:19:BD:1A:C7:6E:58:1C:59:40:34:5D:FC:D2:12:ED
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018B3788FE92CA4F61F1750B6DD093BACCAA
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/3eyhDnIZvRrHblgcWUA0XfzSEu0.roa
Signing time: Mon 16 Oct 2023 08:10:06 +0000
ROA not before: Mon 16 Oct 2023 08:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199191
IP address blocks: 62.176.68.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:88:fe:92:ca:4f:61:f1:75:0b:6d:d0:93:ba:cc:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Oct 16 08:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddeca10e7219bd1ac76e581c5940345dfcd212ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f7:1a:96:ed:84:67:26:cf:2e:83:fc:26:90:
12:d9:1c:0e:be:84:8b:e3:c6:76:40:93:10:ee:de:
c6:7d:07:bf:59:1e:13:e1:b9:c3:88:a5:11:96:73:
51:77:5b:73:4c:68:23:96:84:a8:3c:ce:60:75:ef:
4e:ed:3b:4d:4d:6f:7e:74:5d:cc:86:ba:f4:09:a7:
15:7c:37:6b:99:6d:6b:3a:c0:17:7c:06:01:c5:10:
c1:26:36:b8:8d:c5:96:56:07:7c:85:81:b9:03:2a:
c3:fa:4b:e6:47:50:a8:7e:f1:15:35:d9:71:fb:84:
7c:6a:8b:40:3a:be:34:3e:9d:57:71:5d:fd:33:52:
96:d7:e0:74:2c:9b:0d:38:40:b7:bc:8f:e1:2e:5e:
b2:d9:00:0c:f8:87:2c:b4:ac:cf:70:5f:61:a9:0b:
e1:0c:0e:6a:87:06:65:75:a2:19:66:81:88:e5:a5:
db:48:58:f7:96:7c:3d:18:eb:c6:37:f2:e2:a2:17:
42:00:97:d2:36:bb:8a:47:68:8c:f6:49:00:ea:0a:
69:7d:c6:3e:48:94:f3:94:d0:dc:35:34:d2:cc:c5:
5b:34:3a:19:35:f5:64:de:65:c2:11:8a:9b:18:ea:
a2:89:c9:6e:91:24:aa:cc:87:85:a8:e9:3f:96:6b:
40:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EC:A1:0E:72:19:BD:1A:C7:6E:58:1C:59:40:34:5D:FC:D2:12:ED
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/3eyhDnIZvRrHblgcWUA0XfzSEu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.68.0/23
Signature Algorithm: sha256WithRSAEncryption
15:8e:37:c8:92:4c:bd:b6:e5:d9:89:fd:af:85:80:f3:f6:b1:
07:0a:8c:7a:c0:d6:69:f8:4d:49:4e:c0:0d:1c:17:cc:f1:80:
5e:2b:9f:56:ea:02:a0:65:b0:19:dc:fe:d0:b9:f5:bc:7c:ce:
52:7b:d9:dd:27:19:cb:d4:d5:9a:41:39:b0:44:96:56:e4:c9:
59:4f:1d:7e:8d:f1:ef:75:cd:17:d3:5f:b3:66:24:34:56:23:
4a:6c:39:70:01:08:52:70:aa:8b:2b:2a:21:94:8c:da:4f:0f:
3f:ee:87:e6:6a:9f:70:91:91:b4:f6:55:e5:9e:e0:a9:a2:ba:
42:fb:94:1b:45:95:77:56:d2:82:e8:40:32:b1:73:93:94:28:
f2:47:e8:27:2f:d1:c7:18:d2:7c:54:d2:80:5f:70:90:2c:b9:
ea:dd:b5:6e:51:30:04:1e:2b:bc:57:7c:83:52:f8:6e:97:bf:
68:2d:90:c7:04:4a:7c:12:ee:b0:f9:61:4a:66:e2:39:ee:2c:
5f:de:b9:f3:ea:41:8f:ea:79:e3:18:4d:dd:18:55:2b:9f:23:
3b:c9:aa:a6:41:b3:c1:33:5d:e5:68:7e:7b:7f:54:d3:55:0c:
bc:c5:8d:ac:b7:e1:99:b8:cb:5d:d2:59:87:f1:80:62:a6:84:
64:cf:ab:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org