Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cZjCpU9ku7Fc_r431Ra9F1T9l-U.roa
File: cZjCpU9ku7Fc_r431Ra9F1T9l-U.roa (raw, json)
Hash identifier: YCfUJ2C7ln07Fs/jcAwXMXGA/WysNJdPKBpYMn6uNtA=
Subject key identifier: 71:98:C2:A5:4F:64:BB:B1:5C:FE:BE:37:D5:16:BD:17:54:FD:97:E5
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE66EA7C932AEA57B6D6DC39D719CB1
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cZjCpU9ku7Fc_r431Ra9F1T9l-U.roa
Signing time: Sun 01 Jan 2023 10:35:18 +0000
ROA not before: Sun 01 Jan 2023 10:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203484
IP address blocks: 62.73.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:6e:a7:c9:32:ae:a5:7b:6d:6d:c3:9d:71:9c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7198c2a54f64bbb15cfebe37d516bd1754fd97e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:41:87:ae:5e:cf:4a:7d:a6:1c:18:61:b1:5c:
a9:62:df:88:3c:f4:e7:3f:f6:bc:53:c3:ac:82:e9:
6e:d9:3b:5a:3b:17:52:18:41:de:47:91:78:c3:f7:
a3:45:0f:47:33:5e:d6:ff:d9:e8:5b:14:44:14:c6:
e2:7a:cd:cd:c9:42:bd:7c:90:6d:4e:10:ea:5f:6d:
5e:c0:e7:e9:5d:59:64:dd:90:57:a3:2a:2f:92:09:
fb:51:48:f1:9e:d7:93:4a:b1:11:6c:f6:c4:3a:08:
b8:25:19:08:58:8c:33:4b:f4:f9:8f:ed:5a:55:08:
06:ac:d4:52:19:12:3c:ee:99:8c:b0:66:3b:39:ba:
fe:42:7e:cf:78:44:af:ac:e6:2c:9b:dc:1d:1e:30:
73:cc:9a:c8:31:4a:2d:bf:4b:90:8a:d1:9b:f5:0c:
a5:36:7f:d4:80:20:b8:36:7b:7c:d7:e2:ab:2f:57:
c1:c4:75:40:62:25:7f:50:41:22:5f:9d:25:94:6c:
5f:5a:fd:eb:b3:63:dc:6b:ed:a6:1b:72:33:30:78:
66:6a:ad:68:44:bd:71:16:6f:40:ab:32:bc:b6:5e:
f7:b2:73:51:8e:99:8c:29:fe:35:2e:13:bf:dc:72:
72:3e:47:eb:ac:ac:f8:31:cb:62:de:ba:1f:a7:02:
c3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:98:C2:A5:4F:64:BB:B1:5C:FE:BE:37:D5:16:BD:17:54:FD:97:E5
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cZjCpU9ku7Fc_r431Ra9F1T9l-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.114.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5f:ce:22:c1:5f:f7:45:92:61:a6:16:f1:b3:1f:a3:45:f6:
be:0a:e2:a0:3f:c4:63:7f:68:85:86:1d:bf:c0:85:5c:03:74:
c9:a6:d3:db:1f:76:d2:0b:e0:8c:47:82:1e:a5:a9:70:29:c6:
6f:04:e5:f5:0d:53:3f:d2:31:ab:73:07:0d:97:47:1a:52:52:
44:71:a8:0a:c3:4b:bc:2a:db:84:10:e2:78:9f:d3:ac:3d:9e:
d2:5f:69:cd:4c:79:4b:39:f0:00:ee:4b:f0:aa:94:c8:21:51:
f9:d5:fa:db:b2:f1:8e:21:32:3c:75:e0:4b:4d:53:90:bb:dc:
8f:92:11:3e:26:83:d4:08:93:27:2b:0c:ba:2e:58:09:4c:15:
5e:79:2c:1c:2f:52:b7:5c:40:d6:16:44:2d:cc:f7:72:11:43:
3e:da:e1:88:39:e3:ca:61:d5:69:6c:0b:db:da:2f:7a:d0:2c:
4f:b6:71:70:f5:6b:28:07:de:f1:63:c5:a3:33:18:ef:33:0a:
3a:2c:5a:d1:a3:13:8a:02:d7:0b:66:04:94:9a:f9:e5:72:82:
c5:8e:7c:27:30:e0:20:b7:25:0d:65:08:48:e1:9c:10:36:9f:
d3:76:ac:f2:df:a0:be:f6:d3:bb:91:ae:61:66:26:f0:a7:37:
34:0e:4b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org