Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/O9gk4y78pixnkLfO9LiAb_StpgI.roa
File: O9gk4y78pixnkLfO9LiAb_StpgI.roa (raw, json)
Hash identifier: Zz0zvdH+dmKDT+ZprE3epcmizn0SoyLGRjeBjGAD/4w=
Subject key identifier: 3B:D8:24:E3:2E:FC:A6:2C:67:90:B7:CE:F4:B8:80:6F:F4:AD:A6:02
Certificate issuer: /CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Certificate serial: 01856F79929224DD8F2E32696599E52DF5FD
Authority key identifier: 16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/O9gk4y78pixnkLfO9LiAb_StpgI.roa
Signing time: Sun 01 Jan 2023 22:35:16 +0000
ROA not before: Sun 01 Jan 2023 22:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32787
IP address blocks: 62.255.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:92:92:24:dd:8f:2e:32:69:65:99:e5:2d:f5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Validity
Not Before: Jan 1 22:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bd824e32efca62c6790b7cef4b8806ff4ada602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b2:3c:6d:ae:80:1a:4c:33:4e:ce:25:b7:50:
3d:52:c1:2e:71:0c:a8:2b:65:8f:58:60:5c:45:8f:
fa:64:b4:13:8f:42:9e:ef:95:83:64:84:f0:e4:5d:
21:a7:b9:a1:06:24:d1:df:96:f7:ef:96:5b:73:33:
df:f7:68:c6:4a:73:60:cf:6b:23:5b:8c:d1:fc:84:
fc:02:d6:f2:b8:76:5c:8c:fb:49:3b:70:0f:6b:39:
92:d5:e0:a8:33:54:35:f1:60:5a:a9:65:f2:97:a4:
05:fe:98:ca:18:ac:7f:d7:7b:b8:a7:b4:11:e3:24:
b4:13:3c:58:ab:52:d7:31:7a:e7:7f:93:dd:ed:db:
cb:26:0a:58:89:77:b2:61:1e:8b:a0:fa:13:ac:04:
17:6a:4d:5a:ef:34:03:6d:dc:e6:c6:69:f7:f2:9f:
75:dd:34:24:74:c3:85:05:da:f8:c6:eb:2a:b0:a4:
a5:64:52:6b:d3:8e:3c:bf:85:34:dc:96:ef:04:1d:
bf:72:a9:87:dc:f8:1d:de:bf:f5:d3:ad:39:1a:0f:
3a:5d:ea:75:70:f5:04:2c:b0:f6:4c:f8:16:37:4f:
31:f9:f2:8e:f6:b0:fb:e3:9f:06:bd:b4:d5:0e:47:
97:f9:d3:39:ce:de:e2:eb:05:ef:de:dd:48:d5:d7:
c2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D8:24:E3:2E:FC:A6:2C:67:90:B7:CE:F4:B8:80:6F:F4:AD:A6:02
X509v3 Authority Key Identifier:
keyid:16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/O9gk4y78pixnkLfO9LiAb_StpgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.255.142.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b7:80:9b:ac:b2:1b:0e:28:52:3f:89:80:bf:f8:6c:84:96:
7b:dd:67:1d:26:a8:e9:99:88:18:91:fc:3e:2d:df:ed:ad:cc:
d4:e4:3b:95:31:ad:1c:94:f3:5b:e3:a5:0a:d5:1a:53:f1:ab:
f7:e1:56:1a:d8:87:fd:89:b6:dd:0b:ed:b4:7f:a9:fb:bb:cf:
69:13:78:a0:0f:86:b4:b4:e8:12:0e:88:91:df:21:1f:8a:cf:
e6:8e:02:71:e0:51:f9:3d:12:46:72:84:d9:f6:0e:d0:08:84:
2a:b9:14:83:af:be:ef:4b:51:30:07:24:64:89:60:25:b3:34:
92:33:ae:1b:0a:f5:0c:d3:73:c4:5f:1b:cf:df:37:27:c1:ca:
9a:95:e9:93:5e:a9:89:8d:8f:c3:ae:cd:81:e7:83:4b:1b:23:
33:4e:39:43:1f:9d:ed:0d:36:2e:42:2b:e1:3b:3d:68:7f:d1:
9b:dd:7f:f0:e6:27:12:b3:ca:6f:56:ce:b6:80:a3:69:55:3a:
29:88:54:00:7f:94:84:b6:84:43:28:d7:8f:b0:0d:74:6d:20:
47:9d:35:39:fd:5d:13:69:3e:00:26:57:1b:29:b0:19:44:56:
86:b5:58:2e:bf:c1:5f:b6:d1:16:4f:5b:3e:19:b8:a7:bb:bd:
99:3f:62:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:28 2024 by rpki-client on console-fra.rpki-client.org