Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aixhIhhafIvbbTaCKnNtZupX21I.roa
File: aixhIhhafIvbbTaCKnNtZupX21I.roa (raw, json)
Hash identifier: tHQvCy0WV4oq7iqaEx3ce/lOkoDCDzqT0+cxnMbRYlI=
Subject key identifier: 6A:2C:61:22:18:5A:7C:8B:DB:6D:36:82:2A:73:6D:66:EA:57:DB:52
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01856ED4FA1A677F10DB1D33D5A3D5A85883
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aixhIhhafIvbbTaCKnNtZupX21I.roa
Signing time: Sun 01 Jan 2023 19:35:29 +0000
ROA not before: Sun 01 Jan 2023 19:35:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204230
IP address blocks: 62.89.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:fa:1a:67:7f:10:db:1d:33:d5:a3:d5:a8:58:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 19:35:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a2c6122185a7c8bdb6d36822a736d66ea57db52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fb:dc:36:f9:30:02:ff:db:5f:e0:63:66:57:
df:14:44:31:bb:d9:0a:e1:43:e0:77:93:a8:b3:8c:
0a:9c:b1:d8:ea:06:09:08:a9:a3:c8:26:27:e0:05:
f4:d8:8e:34:8f:64:3b:b6:ac:a5:01:f7:c0:fa:2e:
e8:a7:6b:4e:fb:d1:d6:68:b3:39:35:a7:bf:31:a7:
11:28:4e:7a:fe:90:97:d8:37:72:d9:96:9d:9b:73:
3a:ba:4f:09:60:9a:89:bc:77:ad:d4:20:fb:c9:4d:
f2:3f:ee:af:da:a5:3d:41:99:34:3d:b9:88:98:99:
df:d1:a2:7e:dd:8b:cd:b0:5b:57:12:c3:8b:7b:6d:
10:ab:ef:9b:f2:a9:17:f3:2f:c1:92:4a:77:cd:ee:
28:47:8b:61:a0:0b:8d:fd:02:62:22:53:21:4e:3f:
1e:93:83:50:17:4f:4e:dc:82:ff:ef:e0:28:53:a8:
df:7a:f8:99:2f:6b:3f:ea:63:9d:e8:b7:7d:50:4d:
94:f2:00:8e:6f:9f:2d:ac:de:05:ec:b4:d5:66:0d:
13:e7:a9:e7:15:1c:b1:50:49:46:f2:87:5e:40:ef:
fc:2e:55:10:c4:4b:bb:b2:58:e5:98:ff:df:b2:dd:
7e:1f:f5:ed:8a:63:45:05:6e:d6:58:46:c0:3d:42:
d5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:2C:61:22:18:5A:7C:8B:DB:6D:36:82:2A:73:6D:66:EA:57:DB:52
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/aixhIhhafIvbbTaCKnNtZupX21I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.89.195.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:f9:b9:f2:74:76:50:57:61:be:ae:80:81:28:bb:a2:56:03:
9d:33:43:3d:f5:87:46:28:b2:3d:81:3b:b1:3d:ce:80:4e:41:
bb:7b:52:dd:d3:34:3a:e9:cd:6d:ae:91:e5:d8:80:49:69:1a:
91:20:61:57:b3:b1:40:dd:66:67:2f:4a:8d:af:2b:09:ae:e2:
2d:e5:da:2c:42:0e:9c:6c:17:51:41:0c:28:59:fc:bb:a6:b9:
a9:5f:77:25:9e:86:ca:4e:48:80:6d:5a:b0:90:5b:a6:b3:d0:
ac:3d:b8:b5:21:1f:9d:6d:c7:d1:11:8e:76:fc:66:6b:db:c8:
0d:6f:8f:55:b6:3e:c7:ae:03:6d:8d:db:af:fa:50:43:f7:85:
3e:07:aa:dd:31:e1:dd:e8:d5:a3:41:24:86:90:55:cd:ac:ab:
2b:6f:95:56:55:48:a9:f1:9b:49:14:34:a9:68:84:48:61:04:
20:d9:b3:35:af:a7:63:84:32:96:7b:6a:8a:64:77:63:24:9e:
c7:85:2f:8d:09:8b:0d:3d:60:5c:47:6f:ca:e2:64:4f:94:9f:
b4:3d:f2:ec:4e:03:e7:0a:b0:d7:ec:80:36:2b:96:4e:34:6c:
71:54:c4:c0:26:6d:c5:d9:c1:28:74:85:8b:25:2a:45:17:27:
e4:3b:6e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:35 2024 by rpki-client on console-ams.rpki-client.org