Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3123b0-93e3-465d-80e4-040407a290d9/1/iuo1TemlrICDZasFiJrMIjqkQaI.roa
File: iuo1TemlrICDZasFiJrMIjqkQaI.roa (raw, json)
Hash identifier: 52nzph2rOLZh/lICzBohJgFR1YDnvQ1Yi5cJezqSqsg=
Subject key identifier: 8A:EA:35:4D:E9:A5:AC:80:83:65:AB:05:88:9A:CC:22:3A:A4:41:A2
Certificate issuer: /CN=62efff88bf665ec86a9e356b79d06ba5940c383c
Certificate serial: 0192BFA8645F5E854FAD70C27860379768CC
Authority key identifier: 62:EF:FF:88:BF:66:5E:C8:6A:9E:35:6B:79:D0:6B:A5:94:0C:38:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yu__iL9mXshqnjVredBrpZQMODw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3123b0-93e3-465d-80e4-040407a290d9/1/iuo1TemlrICDZasFiJrMIjqkQaI.roa
Signing time: Thu 24 Oct 2024 17:52:16 +0000
ROA not before: Thu 24 Oct 2024 17:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 170.62.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 20:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bf:a8:64:5f:5e:85:4f:ad:70:c2:78:60:37:97:68:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62efff88bf665ec86a9e356b79d06ba5940c383c
Validity
Not Before: Oct 24 17:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8aea354de9a5ac808365ab05889acc223aa441a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:cc:9c:fe:6d:71:74:d3:d9:06:f5:46:47:
53:e6:40:8f:d4:62:b8:b6:02:f6:44:a3:53:61:ef:
a3:56:c2:30:b7:6c:a7:a4:19:66:16:e3:90:48:47:
9d:b8:fd:60:4e:23:35:fc:4b:ab:e1:35:fb:00:7a:
31:db:6c:ef:29:be:71:71:2f:f7:43:53:8e:f8:58:
36:09:6f:83:1a:96:46:4f:60:25:01:86:49:d8:25:
9f:ca:3b:98:f9:10:56:b9:bc:8c:7b:6d:7b:5d:89:
d7:4b:aa:29:75:da:5f:65:65:aa:61:43:50:83:83:
fc:6d:c1:a7:83:0f:be:ec:9c:55:b3:0a:3a:06:ad:
9b:d9:f2:3a:45:3d:73:57:c1:29:38:64:96:f8:5e:
1f:fe:d7:97:24:19:16:7a:71:c0:e5:02:b6:0d:4c:
4f:cd:d4:79:07:ea:f8:26:16:50:e0:ba:5f:50:95:
47:3d:77:9a:19:a6:94:77:0f:5b:90:05:06:f2:f7:
9d:68:12:ab:50:22:f0:bb:21:1d:17:73:10:e0:1d:
14:01:52:68:3b:27:b2:3b:5f:21:4a:b3:33:1d:e4:
8e:c2:11:a2:eb:f3:52:e0:b6:bf:ae:ea:94:38:fe:
c9:bd:6e:9a:a0:d3:16:77:c2:45:27:44:31:70:01:
eb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EA:35:4D:E9:A5:AC:80:83:65:AB:05:88:9A:CC:22:3A:A4:41:A2
X509v3 Authority Key Identifier:
keyid:62:EF:FF:88:BF:66:5E:C8:6A:9E:35:6B:79:D0:6B:A5:94:0C:38:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yu__iL9mXshqnjVredBrpZQMODw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3123b0-93e3-465d-80e4-040407a290d9/1/iuo1TemlrICDZasFiJrMIjqkQaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3123b0-93e3-465d-80e4-040407a290d9/1/Yu__iL9mXshqnjVredBrpZQMODw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.190.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:5a:bd:19:9c:1e:09:f4:4c:5e:dd:34:1d:15:c3:90:53:28:
1c:f9:72:c2:e2:00:39:d0:11:3a:18:e6:a7:4c:f3:d5:9b:35:
f4:7f:bd:a5:b9:68:60:73:b6:87:60:2d:02:ac:f6:41:f1:6c:
99:da:77:73:34:37:d3:78:df:f7:f0:f0:ad:1a:50:03:dd:66:
96:8b:b3:09:79:ec:93:15:e6:6c:17:a9:e0:fa:84:46:ad:5e:
4c:d6:fd:52:34:b5:b4:18:12:4f:5c:ae:31:99:ad:04:36:d8:
d5:e7:31:0e:ff:fa:1b:f8:af:ba:50:e8:25:44:e8:73:ec:07:
b3:6f:a5:f2:87:28:34:2f:6c:b9:66:29:0f:d3:25:a7:7e:3d:
8b:93:09:1f:e9:a4:38:07:f4:62:ff:c8:ba:bf:76:73:d5:6e:
8e:da:50:ce:fe:b4:53:85:13:ae:b7:70:f8:ed:31:6c:2f:66:
08:79:6a:67:0f:82:ce:2d:ec:64:26:f6:89:34:48:31:47:40:
4c:6a:d7:0c:3d:91:fa:4a:64:77:a2:30:43:af:e3:25:e7:15:
3c:bf:0a:17:93:08:7e:86:8f:3b:a7:5a:7f:79:af:22:b1:a5:
48:36:5e:c9:d6:ef:e7:bb:17:ea:54:4f:ca:a8:51:1a:97:5e:
97:2e:44:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 22:39:05 2024 by rpki-client on console-fra.rpki-client.org