Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/djFqWhrPMhXNtVHTUqkzTssEsj0.roa
File: djFqWhrPMhXNtVHTUqkzTssEsj0.roa (raw, json)
Hash identifier: eacqQDa1hdpA8yFLXd+1D1iPUcp3yr9qoVIRhgDMDoQ=
Subject key identifier: 76:31:6A:5A:1A:CF:32:15:CD:B5:51:D3:52:A9:33:4E:CB:04:B2:3D
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 01895368E8A203003D8C3DCA25F91A1E3490
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/djFqWhrPMhXNtVHTUqkzTssEsj0.roa
Signing time: Fri 14 Jul 2023 07:58:51 +0000
ROA not before: Fri 14 Jul 2023 07:58:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206492
IP address blocks: 62.65.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:68:e8:a2:03:00:3d:8c:3d:ca:25:f9:1a:1e:34:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Jul 14 07:58:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76316a5a1acf3215cdb551d352a9334ecb04b23d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4c:f9:1b:e0:2b:e4:f5:68:8a:eb:10:d6:56:
ac:df:56:87:3b:f3:f6:92:8f:ac:6e:4e:f1:ff:f4:
49:9a:bb:76:9b:8c:a8:a6:5f:6e:c8:e2:77:a5:49:
32:7f:bc:16:88:2d:4f:cc:ae:52:5c:7b:c7:19:60:
ba:cf:0a:97:f5:ba:1b:60:8a:ef:9d:2d:ab:d1:ed:
22:82:6e:26:3f:bc:e1:53:ae:c5:90:7a:23:2a:ce:
27:5a:f4:22:dd:9f:ca:6b:84:0c:00:3c:4b:9c:1f:
22:06:91:dc:c3:7b:d4:2a:fb:ae:de:49:52:3d:47:
fd:b8:e8:0d:c6:38:64:fb:e7:db:44:1d:b3:b2:49:
13:6a:2e:6e:ea:9d:88:63:c7:b1:1b:46:54:d8:82:
f3:e5:2d:a3:62:6c:fd:fa:b7:b3:ca:a1:ad:3b:9a:
43:8f:09:bc:b1:10:59:e8:4b:f0:2a:32:4e:a3:c8:
07:ed:f5:b8:ca:dd:07:62:60:64:76:da:7d:96:09:
4e:d6:1c:4b:98:3e:d5:5a:6b:9d:d4:0f:68:58:fe:
08:84:1b:fe:74:60:eb:0c:ed:6b:49:56:0e:b7:fa:
cf:f1:1f:f8:45:be:83:c3:f1:a4:09:b8:77:a9:0f:
6e:4a:6d:c2:89:81:ee:83:11:fd:1c:5b:4e:5c:7b:
6b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:31:6A:5A:1A:CF:32:15:CD:B5:51:D3:52:A9:33:4E:CB:04:B2:3D
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/djFqWhrPMhXNtVHTUqkzTssEsj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.137.0/24
Signature Algorithm: sha256WithRSAEncryption
21:3f:f6:cd:0a:64:fb:1d:96:25:b1:3d:70:44:d6:7e:2e:2c:
06:76:94:7d:73:dd:f0:7a:64:a0:f0:23:ef:eb:61:51:c1:0d:
77:3e:1b:7d:29:bd:16:a4:4a:a0:ee:34:2f:60:1f:42:cb:ae:
40:ea:60:ca:74:8b:37:f4:b4:3c:fb:27:25:c7:44:81:98:27:
53:df:d0:80:10:1b:14:31:d9:76:45:0b:0a:09:23:40:d5:53:
b8:e6:74:69:de:4e:dd:eb:bf:a9:6d:a5:e3:72:65:9c:75:10:
95:a5:82:0b:ae:58:e1:3b:74:a5:e3:ef:c2:00:af:6a:81:a5:
18:cd:b4:af:de:40:01:8b:8f:b3:b5:c1:c4:c7:19:27:b3:30:
59:64:07:86:ee:66:c3:18:a3:b8:71:76:e3:45:eb:05:b6:04:
a0:34:64:93:d8:28:dd:99:ff:98:61:b8:b0:65:c5:c6:e5:32:
6b:bb:d7:be:50:bb:7d:a0:a2:65:95:39:27:07:b1:8e:f9:c0:
c5:ee:fb:58:1a:e1:3e:39:4e:ad:8e:12:59:00:ad:c8:1a:e5:
c7:3e:6d:94:13:fd:ca:3c:89:12:c8:67:08:5b:f6:8d:cf:ba:
e7:cd:a6:02:39:9b:da:ea:83:aa:bf:d0:f5:6b:20:4b:ac:16:
6a:4b:4c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:28 2024 by rpki-client on console-fra.rpki-client.org