Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/PFNgzfBs2eVGkV6vrsRgyBEVFAQ.roa
File: PFNgzfBs2eVGkV6vrsRgyBEVFAQ.roa (raw, json)
Hash identifier: B0YieWhhfiwl64SM6YXFmU4RDLh9rhfbJm9JYVbbcro=
Subject key identifier: 3C:53:60:CD:F0:6C:D9:E5:46:91:5E:AF:AE:C4:60:C8:11:15:14:04
Certificate issuer: /CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Certificate serial: 018C743B83093AE5EC801446C35F4E42B210
Authority key identifier: 64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/PFNgzfBs2eVGkV6vrsRgyBEVFAQ.roa
Signing time: Sat 16 Dec 2023 20:05:06 +0000
ROA not before: Sat 16 Dec 2023 20:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 62.3.61.0/24 maxlen: 24
91.218.48.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 18 Dec 2023 12:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:74:3b:83:09:3a:e5:ec:80:14:46:c3:5f:4e:42:b2:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Validity
Not Before: Dec 16 20:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c5360cdf06cd9e546915eafaec460c811151404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:01:cc:46:d8:f5:36:a5:9b:b0:6d:f8:68:f8:
60:fc:f9:56:49:88:55:ef:01:2a:57:fe:62:9a:6c:
c8:35:32:17:10:c1:a6:23:3d:c1:f6:b9:c7:32:b0:
41:43:ac:61:b8:d6:72:21:96:0f:35:ba:db:8d:96:
b0:ad:cf:8b:42:6b:7c:36:54:1d:ed:f3:a2:36:18:
05:a3:ac:e9:89:c7:cb:ff:12:d3:9a:83:25:6e:92:
01:ca:ba:d2:3a:e8:b9:df:66:91:30:f8:5e:06:9c:
f5:d3:d6:13:85:58:41:7e:22:8e:b7:80:5b:1e:86:
f5:49:01:0e:92:f1:93:98:a3:73:95:1a:6f:27:84:
ed:2d:5c:63:c7:38:a2:a3:29:e9:7f:e2:46:86:80:
a4:e4:f4:8a:da:8f:14:60:f2:8e:e1:73:4d:0a:c7:
60:e3:83:04:d5:62:0e:31:52:3b:3c:44:5c:a4:a5:
a2:8c:a1:75:bd:cb:7b:e0:1c:d7:78:49:d9:1a:99:
ef:0d:cb:8e:a5:78:0a:ce:fa:27:d7:a9:31:40:f9:
c5:4f:a3:f3:34:46:67:a0:b3:46:6b:0c:07:c1:42:
32:b0:13:b4:97:53:57:f6:37:c9:12:f3:c5:47:ed:
78:76:c2:f7:21:1d:f4:70:3b:8c:58:f7:57:8f:7c:
b1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:53:60:CD:F0:6C:D9:E5:46:91:5E:AF:AE:C4:60:C8:11:15:14:04
X509v3 Authority Key Identifier:
keyid:64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/PFNgzfBs2eVGkV6vrsRgyBEVFAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.61.0/24
91.218.48.0/22
Signature Algorithm: sha256WithRSAEncryption
17:02:b7:43:b8:2d:06:4d:8e:e5:17:3e:e6:5d:58:5c:31:c2:
be:3f:46:48:c1:17:cb:25:a5:29:60:79:04:ec:64:f5:ed:5a:
c0:e3:3d:8f:ff:13:37:96:d4:4a:6f:21:3b:c2:d8:6a:5f:ba:
1d:57:d9:f4:4e:c1:d9:84:b3:25:b1:a0:61:2e:68:63:0b:59:
06:ce:cd:37:0d:23:6d:c5:0e:1c:4d:1e:5d:45:9c:0d:f0:a5:
97:75:e6:7c:ef:f4:14:7f:f0:3f:2b:2c:3a:e6:59:4e:2f:da:
13:8b:6d:52:47:5e:40:5f:2f:1e:3b:aa:50:90:90:99:f4:d9:
3e:44:24:45:1b:7e:f1:2f:ec:ec:b1:b3:7b:b2:9d:ad:7a:08:
1b:7d:4c:2a:bd:e2:e9:f1:45:75:66:03:46:45:ee:b1:32:e4:
03:2a:e8:38:70:11:af:9e:98:24:e9:d0:04:20:58:24:7b:f6:
30:58:9d:f9:f7:a4:bd:8a:ec:17:26:25:4d:81:e0:c5:7b:6d:
cc:12:b5:ec:28:64:df:8c:2a:d4:4b:a2:fb:50:d5:56:bf:f2:
06:4a:1b:c0:1f:8c:c0:a7:fa:31:8e:66:8b:48:55:4d:98:e8:
1a:b6:2f:21:dd:8e:1f:9a:2c:b8:81:88:84:9e:b6:29:4d:33:
c8:f1:bc:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:23 2024 by rpki-client on console-ams.rpki-client.org