Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/148c6c-ba10-43a3-8482-5a1daa94de42/1/SRfYp66xzgc9aziUMg2D9FQXBhQ.roa
File: SRfYp66xzgc9aziUMg2D9FQXBhQ.roa (raw, json)
Hash identifier: YvqubT3r/uISGrHZuaS9Go1cflsbhlS/fRjZwqZv2zg=
Subject key identifier: 49:17:D8:A7:AE:B1:CE:07:3D:6B:38:94:32:0D:83:F4:54:17:06:14
Certificate issuer: /CN=c14d63d39707d45a8c683cb52e47171d136ce508
Certificate serial: 0185729EFE0C07F22B817153F94266B5ACD5
Authority key identifier: C1:4D:63:D3:97:07:D4:5A:8C:68:3C:B5:2E:47:17:1D:13:6C:E5:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wU1j05cH1FqMaDy1LkcXHRNs5Qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/148c6c-ba10-43a3-8482-5a1daa94de42/1/SRfYp66xzgc9aziUMg2D9FQXBhQ.roa
Signing time: Mon 02 Jan 2023 13:15:00 +0000
ROA not before: Mon 02 Jan 2023 13:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47886
IP address blocks: 62.3.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:fe:0c:07:f2:2b:81:71:53:f9:42:66:b5:ac:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c14d63d39707d45a8c683cb52e47171d136ce508
Validity
Not Before: Jan 2 13:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4917d8a7aeb1ce073d6b3894320d83f454170614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8b:af:ef:5d:c4:f8:e3:02:45:c2:27:dc:ee:
f8:1d:d3:f8:c9:3a:48:4d:e0:c7:1e:cb:0d:51:a7:
34:87:65:66:90:7f:f3:a2:79:80:3a:59:bd:d4:4d:
5c:14:9b:c2:67:5f:9e:fe:53:f5:8a:05:a7:4b:25:
da:5a:90:fb:42:a1:bd:6d:73:94:1c:23:85:60:09:
0d:81:d2:c6:8b:b4:51:11:15:ad:39:fa:04:18:da:
53:24:a2:6b:da:2f:ff:f6:50:a2:99:bc:cd:18:d2:
0e:0c:43:56:79:91:50:42:9c:ab:cd:aa:53:d6:24:
89:57:db:24:4a:95:3c:57:9e:34:47:0f:2c:90:24:
ea:01:70:03:16:27:95:38:37:9e:ab:ad:11:2e:86:
f0:80:46:f8:58:4a:4e:cd:bc:a4:9e:d8:41:e4:16:
13:1b:bd:8e:33:36:37:3c:f1:4c:71:32:4c:df:5d:
0d:1f:61:ea:84:02:7c:92:07:bb:48:7f:e3:83:9f:
bf:13:75:24:8e:f3:17:b6:08:73:e5:8b:f2:e6:e8:
e6:33:ab:2e:44:17:37:a2:21:00:ec:01:16:b4:03:
76:07:19:82:21:df:f1:f9:07:c7:ec:fa:3e:62:d9:
c3:d2:81:6c:80:8f:87:ad:04:5a:ce:be:b2:22:70:
55:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:17:D8:A7:AE:B1:CE:07:3D:6B:38:94:32:0D:83:F4:54:17:06:14
X509v3 Authority Key Identifier:
keyid:C1:4D:63:D3:97:07:D4:5A:8C:68:3C:B5:2E:47:17:1D:13:6C:E5:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wU1j05cH1FqMaDy1LkcXHRNs5Qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/148c6c-ba10-43a3-8482-5a1daa94de42/1/SRfYp66xzgc9aziUMg2D9FQXBhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/148c6c-ba10-43a3-8482-5a1daa94de42/1/wU1j05cH1FqMaDy1LkcXHRNs5Qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.19.0/24
Signature Algorithm: sha256WithRSAEncryption
13:cb:07:43:2e:54:30:09:dc:b8:75:e2:a6:4f:94:32:76:86:
53:26:f5:7c:dd:fb:83:01:01:58:71:12:d7:2f:81:d5:27:c4:
d0:0d:7c:8c:83:e2:1a:f0:c8:d2:2f:4f:4b:e1:33:ba:d0:b0:
37:36:32:e1:a2:99:b3:3c:a9:56:e3:2e:74:5c:4d:bb:97:9f:
63:27:ba:48:cc:9d:ac:26:93:5b:b9:cb:df:6a:b2:4a:de:a8:
a3:ff:33:35:e0:98:98:a4:17:bc:28:9d:77:b4:a5:6e:9e:0e:
32:ec:69:aa:d7:8a:2e:ca:1e:6a:ef:e3:0f:a2:5a:79:70:d5:
13:95:41:f5:5c:9c:6f:03:89:81:1d:7b:63:20:0e:16:10:41:
9e:35:db:75:69:71:e8:97:ce:e8:47:a5:c2:6e:bc:ad:cb:fb:
ad:29:3e:b5:22:4c:b0:57:09:b8:82:a8:f7:34:99:c4:25:20:
19:7e:5e:b5:f1:8c:39:90:a4:01:fb:68:28:d1:58:ab:73:92:
1f:f1:3d:9c:b4:b6:65:e0:ff:88:fa:81:7e:6c:34:ce:65:5c:
42:19:39:f2:d6:41:7e:fa:1c:79:b4:d8:dc:8c:f8:38:f4:9f:
09:7e:85:64:32:07:06:be:72:d6:2a:b3:b7:45:d7:b1:f3:7b:
52:a4:ab:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:44 2024 by rpki-client on console-ams.rpki-client.org