Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/0ijKj_UdSKCzrkoVD8c1AGtb-Cg.roa
File: 0ijKj_UdSKCzrkoVD8c1AGtb-Cg.roa (raw, json)
Hash identifier: NxHUE1cONj/QwNispeAixnptHalxicS+tdbgr0h6BnU=
Subject key identifier: D2:28:CA:8F:F5:1D:48:A0:B3:AE:4A:15:0F:C7:35:00:6B:5B:F8:28
Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Certificate serial: 018D89D3CCCCFC203B8E2E703CCB17C4919D
Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/0ijKj_UdSKCzrkoVD8c1AGtb-Cg.roa
Signing time: Thu 08 Feb 2024 17:46:15 +0000
ROA not before: Thu 08 Feb 2024 17:46:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7922
IP address blocks: 62.164.240.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 20 Mar 2024 16:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:89:d3:cc:cc:fc:20:3b:8e:2e:70:3c:cb:17:c4:91:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4
Validity
Not Before: Feb 8 17:46:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d228ca8ff51d48a0b3ae4a150fc735006b5bf828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:58:59:92:61:3b:4b:4e:57:a3:67:79:ea:b0:
25:3c:7c:f3:9e:30:4b:ea:5a:4e:9a:f0:27:0f:20:
29:de:98:1b:e6:17:61:55:d4:66:25:f5:dd:86:ea:
19:92:1f:8b:58:ad:20:b3:39:ba:aa:ca:cd:8f:4c:
4d:62:d8:4c:cd:90:4b:b9:67:b2:3a:b8:48:28:28:
f9:e3:d5:60:e5:41:87:d4:51:8f:b0:e7:5f:78:1a:
f1:b6:6b:85:57:47:1e:06:6b:d0:b3:0a:21:5e:43:
62:61:2a:0f:a1:59:67:c1:95:d7:d5:49:87:ea:8c:
e7:8d:1e:0f:de:2f:3f:46:e2:b3:10:44:83:0c:95:
46:5e:f6:74:d2:73:12:58:59:0d:41:c2:07:b5:81:
64:53:59:08:a2:81:98:57:8d:05:f6:67:db:82:09:
5e:93:a5:23:5f:a2:16:0f:1a:7a:8a:22:47:3a:fc:
7b:1f:ca:e4:44:04:e7:94:d2:6e:db:17:8b:3b:d9:
71:35:37:21:3e:c8:af:4a:fe:06:6c:7a:50:54:7a:
4d:a8:12:41:ce:29:57:b7:77:a6:fc:e8:8c:8e:6c:
1f:4f:23:51:97:61:a7:7d:97:ec:79:1a:3a:a2:0d:
67:cb:6e:01:53:b2:a8:8a:99:dd:4a:e1:c3:fa:9f:
ba:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:28:CA:8F:F5:1D:48:A0:B3:AE:4A:15:0F:C7:35:00:6B:5B:F8:28
X509v3 Authority Key Identifier:
keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/0ijKj_UdSKCzrkoVD8c1AGtb-Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.240.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:f2:4a:31:65:0f:ed:ea:cb:0a:0f:1f:3a:12:a5:91:85:16:
46:0b:84:b3:48:04:f5:d0:ba:e1:72:15:cf:da:8b:1f:93:14:
cd:32:d5:8d:a4:ed:5b:65:a2:e1:44:09:40:c5:59:09:a7:d9:
ac:6c:2f:bb:62:79:7b:75:a4:21:83:05:0c:a2:ca:51:05:4b:
92:6d:69:67:53:c2:b6:b7:fa:9b:a1:60:06:55:8f:a0:97:7c:
c4:44:db:3f:a6:44:f9:86:2c:c9:59:a7:b3:65:68:af:f5:50:
0c:15:72:d1:a9:df:14:2c:a0:1a:69:77:88:05:fa:2f:09:cc:
4d:6a:57:d6:7c:a1:89:01:5e:9a:7b:8b:19:34:f7:4b:e9:65:
0d:52:d8:d0:e4:fd:f5:c7:83:aa:ea:c6:24:4d:40:a5:e8:72:
dd:bb:11:a4:e6:b0:46:8c:29:79:e0:72:13:01:3f:a0:54:85:
45:4e:b5:ef:62:2f:e3:3d:48:7d:ba:4c:6b:4e:91:e6:7a:55:
00:bc:9d:96:a8:18:ee:df:95:e5:6e:38:5e:cd:e5:81:2e:57:
0c:06:2c:00:16:d8:f0:88:37:c2:e6:ff:3b:ad:31:9a:cf:2a:
88:4d:ff:5a:38:83:d6:e6:15:07:a4:72:95:94:7e:01:81:ce:
de:05:aa:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 19:31:59 2024 by rpki-client on console-fra.rpki-client.org