Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/LAOTuHYHRVJzQ0lLWwuTC3w2duk.roa
File: LAOTuHYHRVJzQ0lLWwuTC3w2duk.roa (raw, json)
Hash identifier: NBe150RfXF2wHprCMgSiXitMGQgi5627VZoNHMr3eJs=
Subject key identifier: 2C:03:93:B8:76:07:45:52:73:43:49:4B:5B:0B:93:0B:7C:36:76:E9
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE650F30ED91A205C89C9F7787F11D7
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/LAOTuHYHRVJzQ0lLWwuTC3w2duk.roa
Signing time: Sun 01 Jan 2023 10:35:11 +0000
ROA not before: Sun 01 Jan 2023 10:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29084
IP address blocks: 62.73.112.0/23 maxlen: 23
62.73.112.0/22 maxlen: 22
62.73.112.0/24 maxlen: 24
62.73.116.0/23 maxlen: 23
62.73.113.0/24 maxlen: 24
62.73.117.0/24 maxlen: 24
62.73.115.0/24 maxlen: 24
62.73.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Oct 2023 08:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:50:f3:0e:d9:1a:20:5c:89:c9:f7:78:7f:11:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c0393b8760745527343494b5b0b930b7c3676e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e2:b2:0c:4a:88:b3:9d:cb:33:ae:cd:f9:6c:
9b:7c:17:26:9c:68:2d:7f:76:a9:da:ac:90:b4:3d:
e9:a2:9a:fa:24:e8:73:a6:92:59:60:c3:ef:27:35:
a7:94:f0:c4:6e:ab:e2:04:d9:d5:c7:01:b6:65:5e:
b3:45:50:e2:df:85:35:e8:84:bf:1d:af:43:ec:91:
5d:b5:ea:f8:0b:52:84:b4:ae:d2:f7:3e:1e:05:da:
98:b9:c3:71:d3:ec:42:da:d6:d2:1c:e8:d1:77:57:
18:92:60:ac:0d:6f:31:5e:2a:a0:c4:5c:df:4d:0b:
a8:43:19:41:fe:c9:0f:52:75:41:ad:50:2b:fa:f0:
8f:ea:74:53:cf:c5:83:6b:3a:6b:8b:01:c4:cd:39:
b5:40:c5:fb:d2:4c:ce:12:ce:e2:65:0c:77:1a:eb:
58:ab:ac:3b:c7:b5:1d:7c:7b:73:d6:27:42:65:0c:
d8:32:c6:14:1d:87:3f:78:7d:50:7a:62:ee:b6:c7:
34:6c:f4:c9:48:91:72:73:b9:fe:34:3b:81:a7:9c:
30:22:61:36:de:23:93:a6:b6:99:54:d2:9d:2d:1a:
b9:c6:2e:60:39:29:2d:e3:15:57:21:5c:f5:fc:66:
4a:1c:2e:75:ab:1a:0f:f5:9f:04:fa:19:b6:e6:c8:
5f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:03:93:B8:76:07:45:52:73:43:49:4B:5B:0B:93:0B:7C:36:76:E9
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/LAOTuHYHRVJzQ0lLWwuTC3w2duk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.112.0-62.73.117.255
Signature Algorithm: sha256WithRSAEncryption
73:64:b0:27:e3:a6:df:cd:dd:b2:d7:51:c3:b7:27:ce:a4:7d:
8a:fb:69:a0:9d:d3:49:e2:cd:25:2e:51:b6:42:16:91:a3:3c:
12:ad:f4:a8:be:2e:99:0d:59:a1:0d:fe:e8:9d:d8:7b:51:77:
e5:bc:3f:40:37:ab:b5:44:7b:df:ce:d5:06:06:97:64:e3:f8:
a6:2a:93:42:bf:47:d8:ba:4c:40:b8:76:a2:e9:99:3b:d3:f5:
25:8d:6e:6b:19:f6:b1:7e:5c:fa:c3:a2:93:6b:90:c6:45:99:
57:5e:38:ab:52:4f:24:42:2a:74:c4:16:e7:d0:c7:9c:9b:06:
4f:3d:ce:2d:e9:c8:88:74:4b:71:96:a0:96:0b:74:42:3a:40:
1b:f5:43:e7:37:5a:4f:b2:54:99:f7:11:74:fc:cb:8d:88:85:
83:3a:8a:02:0c:de:95:e1:77:cd:58:dd:b1:43:31:ef:50:f2:
15:54:fb:32:17:74:7d:88:a0:38:50:f2:ad:f1:4d:64:52:06:
ff:c7:db:37:66:2a:56:77:b1:3e:f7:83:e3:a5:0d:22:79:90:
12:d8:91:ed:71:36:ac:d7:98:42:60:06:69:d2:bb:56:a8:8f:
19:19:fe:4a:23:f1:0f:e6:d6:ff:28:c1:66:19:c3:05:b0:56:
a4:dc:dc:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org