Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/krwqjG5uBubMKZht2tsRRoQAd5E.roa
File: krwqjG5uBubMKZht2tsRRoQAd5E.roa (raw, json)
Hash identifier: JFBAEHwt5pOZY5o9Vz+xqniN24ptA+MYxEBgm2BlGEA=
Subject key identifier: 92:BC:2A:8C:6E:6E:06:E6:CC:29:98:6D:DA:DB:11:46:84:00:77:91
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018B70433C10125055B6E7E48B69C90B64DF
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/krwqjG5uBubMKZht2tsRRoQAd5E.roa
Signing time: Fri 27 Oct 2023 08:32:16 +0000
ROA not before: Fri 27 Oct 2023 08:32:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203701
IP address blocks: 62.106.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:43:3c:10:12:50:55:b6:e7:e4:8b:69:c9:0b:64:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Oct 27 08:32:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92bc2a8c6e6e06e6cc29986ddadb114684007791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9c:c6:42:7a:5a:ce:ae:e5:1c:89:06:21:cb:
1a:75:f0:a9:4a:35:e4:a7:d2:84:8e:ef:12:a3:d6:
98:b1:79:c7:c3:9a:28:9e:fe:a8:11:3f:8f:36:92:
46:72:aa:14:83:fc:d3:dc:96:71:86:30:4f:93:aa:
0a:e5:d2:38:83:5d:30:fc:fc:50:2c:bd:9c:5a:12:
87:8e:04:2a:2a:b8:16:78:8c:52:b8:8e:d0:e5:e9:
df:d9:50:6c:a3:29:e3:8a:51:45:65:0d:8f:7a:32:
89:55:0f:78:1f:cc:02:42:3f:0e:c7:2d:dd:dc:69:
de:3c:69:f6:ba:7a:93:b8:e4:45:12:91:1c:99:9c:
e0:a9:6c:d5:25:9b:ee:f0:c9:51:53:c0:0d:44:74:
87:02:05:75:01:a7:9b:b1:6f:ed:76:a5:a0:49:69:
70:b2:4b:ca:67:d5:f1:32:d4:7a:1e:d2:6e:66:be:
8c:39:04:d0:f5:93:5c:d1:01:d4:6b:0c:54:d2:bf:
75:bb:51:00:2a:96:03:cf:a7:f5:73:0e:b8:1a:f7:
42:f5:d1:10:8e:3b:f3:e1:a7:0e:15:03:84:7f:8b:
bd:c2:1a:25:fd:87:1a:c4:f1:fd:5f:5a:c7:1d:85:
00:19:06:9a:21:d1:9c:4b:13:a5:0a:31:f8:fd:e0:
9b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:BC:2A:8C:6E:6E:06:E6:CC:29:98:6D:DA:DB:11:46:84:00:77:91
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/krwqjG5uBubMKZht2tsRRoQAd5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.106.86.0/24
Signature Algorithm: sha256WithRSAEncryption
20:a6:ae:df:4e:7f:5a:b1:32:da:80:d8:45:17:2d:1a:2d:22:
0d:f5:96:ce:4b:f8:f4:8f:6c:3d:75:66:d7:60:78:e1:fc:d7:
a9:3b:c6:bb:e0:cb:50:14:69:38:b2:8d:38:8a:a1:d3:a1:99:
83:6e:94:b8:6b:81:dd:bd:c5:a7:98:86:97:3b:20:6c:10:7f:
eb:2a:fd:df:7b:2d:61:68:33:1b:93:55:55:87:fd:6c:67:87:
63:c9:0e:30:57:45:34:9c:a0:78:bc:fa:16:02:96:10:fd:b2:
5f:0c:f1:d3:f0:d3:de:a0:39:02:14:7c:8f:39:e6:a1:00:c3:
0c:68:26:78:d3:38:eb:68:82:ba:18:59:53:c5:ad:69:1d:c8:
11:3f:74:b1:d7:22:3b:cd:25:5b:dd:49:1c:ae:28:7a:39:bd:
b8:60:33:2d:3b:32:8a:ef:37:99:67:ae:a9:f0:2e:a1:44:7d:
89:5d:eb:4b:67:67:e7:2a:ad:7c:c2:3d:cf:40:72:4c:21:a3:
13:02:c0:60:f6:57:0c:4b:01:2b:5d:13:78:db:9d:3b:a7:af:
9a:b2:8d:8a:dd:7c:0b:a5:d5:f2:93:e7:41:34:f9:bf:c1:64:
ee:78:43:b2:df:32:90:25:68:5b:52:01:9a:60:cc:4a:7c:a6:
8a:46:17:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 13 14:04:00 2023 by rpki-client on console-fra.rpki-client.org