Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/R3kakkliOMx59ds3z7PmSEdzQYQ.roa
File: R3kakkliOMx59ds3z7PmSEdzQYQ.roa (raw, json)
Hash identifier: r5A6MP7KRDTOzC8dmbVmKESwt6DVCb3GjQaVzH5N51o=
Subject key identifier: 47:79:1A:92:49:62:38:CC:79:F5:DB:37:CF:B3:E6:48:47:73:41:84
Certificate issuer: /CN=8d6ff72d9bbc5eef67360bc717c54b2ba1b0b3e4
Certificate serial: 01856ED4D15DA99376453973727E073C0470
Authority key identifier: 8D:6F:F7:2D:9B:BC:5E:EF:67:36:0B:C7:17:C5:4B:2B:A1:B0:B3:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jW_3LZu8Xu9nNgvHF8VLK6Gws-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/R3kakkliOMx59ds3z7PmSEdzQYQ.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 62.106.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:d1:5d:a9:93:76:45:39:73:72:7e:07:3c:04:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d6ff72d9bbc5eef67360bc717c54b2ba1b0b3e4
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47791a92496238cc79f5db37cfb3e64847734184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1a:c2:eb:a7:14:7b:e8:3e:4f:88:f5:5e:fc:
d6:30:a8:ce:d6:f9:17:1e:39:84:2d:fd:3a:df:ec:
a3:af:2d:66:c3:73:d9:3d:8b:df:3d:4f:a6:89:d7:
cc:d5:23:8f:be:ad:01:11:88:69:33:e2:b0:49:93:
d4:70:55:a7:d8:95:e5:cf:35:19:3d:ac:84:20:12:
ea:aa:28:df:74:69:d0:20:4f:95:25:2f:a3:b7:64:
4c:35:e3:7d:b8:93:3a:53:8b:16:37:81:54:f6:cf:
3c:6b:87:a0:a5:9f:82:68:40:f5:6b:b3:31:93:53:
90:cc:7c:f2:3b:ad:e9:5e:5e:35:98:57:e0:b7:26:
e5:00:72:70:c3:47:17:be:2c:7e:be:97:a9:d4:92:
fa:be:10:9c:f9:61:8e:6c:44:3e:1a:0e:59:4d:eb:
71:42:2e:c0:47:8f:bc:2f:66:3a:66:6f:c1:58:e7:
27:ce:7f:1d:09:ad:92:ce:04:6c:5e:67:9f:f8:20:
6d:39:4f:9d:23:11:36:00:63:9d:f5:70:fa:d1:8d:
22:70:cc:39:af:e8:5e:9b:ba:3c:f7:98:73:42:a0:
64:80:59:fc:82:c3:28:b5:0f:81:a7:8b:90:c1:bf:
cd:51:35:54:90:2d:ef:64:5c:3c:b0:ca:a3:99:a3:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:79:1A:92:49:62:38:CC:79:F5:DB:37:CF:B3:E6:48:47:73:41:84
X509v3 Authority Key Identifier:
keyid:8D:6F:F7:2D:9B:BC:5E:EF:67:36:0B:C7:17:C5:4B:2B:A1:B0:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jW_3LZu8Xu9nNgvHF8VLK6Gws-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/R3kakkliOMx59ds3z7PmSEdzQYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/eed8dd-d596-4e48-8356-4e67d713c79c/1/jW_3LZu8Xu9nNgvHF8VLK6Gws-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.89.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:4a:eb:45:d1:16:40:1f:b8:f3:6d:d2:fc:ef:43:64:55:2a:
ff:1b:5c:bf:2d:67:92:f2:b5:2d:9a:e3:f7:bc:b5:59:96:5e:
9a:6f:b7:bf:bd:c4:d1:2d:d6:b1:dd:c1:5a:5b:d9:85:f0:cc:
e9:d1:3e:14:21:cf:c5:f7:c9:d2:40:da:e0:db:9d:65:6c:d5:
f1:c3:fe:f2:f6:ad:87:36:34:0e:4a:f6:eb:49:a5:c4:61:9e:
1f:fd:67:3f:88:ae:c1:78:6d:31:33:6f:3a:a7:59:eb:34:62:
ec:3b:93:be:73:b5:14:a5:f2:38:80:0b:a2:d8:cf:5f:97:5a:
7b:30:e1:76:c4:8f:6c:20:f9:bf:12:57:a7:ac:21:ee:4d:47:
76:36:c9:02:89:56:0d:37:e9:b3:3f:c6:10:e4:1f:9e:1a:52:
fe:b5:70:8b:c7:9c:72:37:b8:bf:83:6a:73:0f:31:2f:9d:27:
62:29:a5:eb:e5:58:78:78:8c:3f:42:66:75:cd:96:9f:fe:89:
91:26:c8:84:bf:2d:dd:e6:a8:bf:ba:48:6d:01:d4:65:8e:bb:
cb:88:ae:dc:09:b4:4b:51:ae:d8:b1:ef:f4:30:a6:b2:8f:88:
ee:7c:a7:b8:20:c2:31:09:b7:70:b1:f7:04:d2:d9:d5:c4:1c:
3c:3f:36:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-ams.rpki-client.org