Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/K0UeJCL2r5tPDbWNH8z1gLIWnco.roa
File: K0UeJCL2r5tPDbWNH8z1gLIWnco.roa (raw, json)
Hash identifier: jT2+0LKf6Apc8vvJ327xziaKXb1pesQVSB5Hx4DYX0g=
Subject key identifier: 2B:45:1E:24:22:F6:AF:9B:4F:0D:B5:8D:1F:CC:F5:80:B2:16:9D:CA
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018B8EA84D76A3F86F91B5C685DE4083A0BF
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/K0UeJCL2r5tPDbWNH8z1gLIWnco.roa
Signing time: Thu 02 Nov 2023 06:11:16 +0000
ROA not before: Thu 02 Nov 2023 06:11:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197715
IP address blocks: 62.106.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8e:a8:4d:76:a3:f8:6f:91:b5:c6:85:de:40:83:a0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Nov 2 06:11:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b451e2422f6af9b4f0db58d1fccf580b2169dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a2:79:3a:97:b5:59:66:46:50:26:d5:63:a2:
3d:ef:52:f3:9c:25:f1:21:3c:d1:9b:91:a9:3b:68:
42:b6:92:f5:be:84:38:76:b4:0b:8c:70:c1:6e:f8:
ae:2a:be:d3:15:0a:b3:bd:ae:d2:93:63:cd:c3:0b:
e7:ca:48:46:25:b5:20:91:77:a0:f8:28:f4:1a:03:
9b:0c:a6:86:88:10:f0:05:c7:d5:6c:43:41:a5:3b:
12:b0:77:b3:35:f6:91:fd:f0:a4:a1:72:dc:10:11:
79:fc:cd:b3:b6:de:43:ca:eb:df:fb:d8:fb:72:5f:
56:20:22:98:48:24:7b:94:dd:68:9b:de:47:54:ba:
42:0b:e0:74:fe:d8:22:bc:f2:13:72:20:39:b5:44:
d9:42:f3:36:15:6a:56:f5:81:22:50:22:c7:b8:3c:
a7:9d:10:b3:e8:0a:b7:11:db:b0:ad:5e:cc:48:27:
89:42:73:29:56:fa:e1:b0:d5:ad:0b:8e:24:4d:d6:
80:6e:05:e8:88:0f:18:16:bb:4d:a8:ec:5e:7b:6c:
bb:44:95:45:31:b2:dd:44:12:01:0f:c2:51:5c:40:
a5:60:76:0b:e6:95:38:8c:5a:81:6c:7e:58:b9:80:
58:39:ce:57:d9:09:7f:11:d2:40:32:a6:bc:85:94:
18:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:45:1E:24:22:F6:AF:9B:4F:0D:B5:8D:1F:CC:F5:80:B2:16:9D:CA
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/K0UeJCL2r5tPDbWNH8z1gLIWnco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.89.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:c7:23:82:e5:4e:4c:35:e8:c1:8a:1b:77:ec:0e:21:7a:cc:
6b:b3:2e:b7:9c:c6:32:a8:63:6a:3f:21:2c:6f:e0:d1:9f:c8:
d0:45:d8:30:88:27:6c:50:df:12:52:93:b5:ba:ec:74:08:06:
83:33:07:22:9f:92:30:8b:e9:7b:ed:b0:b1:26:01:75:11:30:
ae:75:ed:74:f8:57:21:35:3b:03:ee:c4:3e:00:21:d6:bd:a9:
b1:b3:68:35:87:f9:fb:34:44:67:d3:a9:26:58:81:60:31:f4:
89:75:1d:29:40:b1:4d:6f:2a:7a:02:81:73:9b:7a:ce:78:19:
76:ac:ed:81:5c:35:73:e9:98:92:2a:d2:a5:a5:7d:b7:43:eb:
0a:ef:26:7d:ac:d4:56:3b:f3:5b:28:97:84:d5:11:c6:ec:60:
d3:e8:bb:fe:12:f4:7f:70:86:6e:d5:03:6b:d5:19:5b:2d:d5:
6f:3f:63:d9:57:5e:21:b6:b1:51:67:d5:2b:87:89:f4:79:0d:
b5:fd:a6:79:93:5c:03:e1:cb:e8:31:7e:5c:0c:5f:19:6a:d2:
a3:f8:4f:7a:ae:64:ea:51:5a:79:c6:68:33:4c:c3:2c:a9:ae:
48:23:3b:2d:ee:c4:64:21:0a:72:f4:c8:5d:d2:42:19:cb:6f:
89:17:79:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:28 2024 by rpki-client on console-fra.rpki-client.org