Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/_eqEVdASsh1vlyT3RtO9qNAOijU.roa
File: _eqEVdASsh1vlyT3RtO9qNAOijU.roa (raw, json)
Hash identifier: QffyS6q4UdCyWzu/YU9ewcTDBV0ZtSPkaR7JfY4AB+w=
Subject key identifier: FD:EA:84:55:D0:12:B2:1D:6F:97:24:F7:46:D3:BD:A8:D0:0E:8A:35
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018730DD1B41E33390E6B772B6AB4D625712
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/_eqEVdASsh1vlyT3RtO9qNAOijU.roa
Signing time: Thu 30 Mar 2023 04:53:29 +0000
ROA not before: Thu 30 Mar 2023 04:53:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22168
IP address blocks: 162.249.64.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:30:dd:1b:41:e3:33:90:e6:b7:72:b6:ab:4d:62:57:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 30 04:53:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdea8455d012b21d6f9724f746d3bda8d00e8a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:0b:91:b4:54:f9:34:71:dc:f1:12:bf:cd:
bd:49:42:69:b9:c1:b8:7a:dc:71:9f:70:3d:ed:56:
d7:67:ea:31:8e:76:58:c4:14:e1:5e:68:8d:02:c2:
7f:6c:73:0b:c3:84:9c:7b:78:18:7b:75:c3:3e:58:
4c:af:ea:35:55:21:7b:a5:c2:98:16:9a:42:4e:05:
15:0c:ed:40:46:ea:b1:98:8b:c3:9a:0f:34:37:66:
2d:56:27:11:02:65:07:59:ca:7a:62:18:06:54:e1:
85:01:2e:28:f2:8b:d9:6a:35:3c:fe:c3:2e:40:a6:
e0:74:bf:aa:25:6c:87:57:94:8b:3e:27:05:fb:06:
5a:2a:d2:ff:00:41:fc:27:84:dd:ac:0f:44:d1:15:
d0:a3:46:ae:26:84:8a:0a:62:3f:d9:81:02:68:61:
12:24:6a:80:0d:5e:fd:7b:28:f6:80:2f:74:4d:63:
e7:e4:79:0c:86:56:1b:b8:79:53:42:a1:d1:b7:53:
4d:ff:a9:40:d0:c2:82:33:c7:22:2b:4f:48:5f:81:
0d:34:e5:a5:4c:18:2b:07:17:9d:0b:7a:df:74:c2:
0b:91:7c:3f:d2:ef:ae:6c:92:70:48:a4:6e:ee:c8:
bd:3c:9e:b9:bd:50:7b:81:1c:cc:5d:52:c5:4e:9f:
9c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EA:84:55:D0:12:B2:1D:6F:97:24:F7:46:D3:BD:A8:D0:0E:8A:35
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/_eqEVdASsh1vlyT3RtO9qNAOijU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
162.249.64.0/21
Signature Algorithm: sha256WithRSAEncryption
95:f3:e9:d3:2c:0e:06:1c:c2:6c:9a:77:43:fb:5e:74:23:0b:
c1:d2:fc:f3:c9:75:f3:a7:e7:73:24:3d:d2:18:69:cf:61:d8:
2a:e6:2b:ed:67:2f:29:38:41:b2:3d:44:92:3b:52:e4:30:da:
d0:5a:23:a7:db:e1:59:03:5e:ce:76:c9:10:d7:d8:5a:01:d0:
6c:d2:64:e0:11:9f:f7:cc:77:2e:ae:f4:fb:84:5c:30:0c:0f:
11:13:b7:e9:ab:50:fc:4d:43:cf:b1:85:73:b4:8e:85:cb:c2:
0d:35:b5:ec:07:09:14:0d:60:d2:d2:1c:9c:60:1c:29:de:d6:
11:18:39:25:e2:84:39:af:85:d1:44:05:3b:60:d7:02:88:c6:
67:29:1a:52:53:c2:33:7d:0b:10:03:0b:24:f6:38:d2:9e:30:
83:be:1b:af:72:d1:ff:4f:75:fa:88:cd:9e:cf:d2:90:17:b9:
57:b7:e4:07:18:19:24:08:11:c0:a3:a7:6e:97:8c:26:2f:17:
bb:d7:95:7d:9b:f7:5c:40:b1:0f:54:c4:7e:a1:ca:9e:49:16:
01:69:78:7a:e1:3d:89:b5:d8:e5:de:d6:5e:a5:7b:3b:b7:10:
81:44:0a:73:50:ab:b5:5a:84:a2:60:1c:29:e2:79:5f:1a:28:
90:79:a8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:12 2024 by rpki-client on console-ams.rpki-client.org