Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/tNrqhq7CX90OlxhjKEog6Pjq-Ls.roa
File: tNrqhq7CX90OlxhjKEog6Pjq-Ls.roa (raw, json)
Hash identifier: 589ifNkpsPhzlGplNMKvWjHYJ+FTAOAkg/CCSk/48v0=
Subject key identifier: B4:DA:EA:86:AE:C2:5F:DD:0E:97:18:63:28:4A:20:E8:F8:EA:F8:BB
Certificate issuer: /CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Certificate serial: 01856FC286AEEA998D48B9A4EF2C12149BD1
Authority key identifier: 64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/tNrqhq7CX90OlxhjKEog6Pjq-Ls.roa
Signing time: Sun 01 Jan 2023 23:54:57 +0000
ROA not before: Sun 01 Jan 2023 23:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39757
IP address blocks: 62.3.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:86:ae:ea:99:8d:48:b9:a4:ef:2c:12:14:9b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64ee0489158fe95e1991fd5ce725ea067e11a1fb
Validity
Not Before: Jan 1 23:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4daea86aec25fdd0e971863284a20e8f8eaf8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bc:61:3e:99:5e:11:72:b3:9a:46:34:78:45:
a0:ca:ab:ce:a4:5c:28:7b:f4:af:dd:3e:9c:26:fc:
b8:59:40:e4:68:7e:4c:cd:17:05:98:27:fb:23:a5:
6f:ae:87:14:f5:79:e7:01:ef:e4:2c:91:06:bf:d9:
af:b0:e3:31:25:4f:46:4b:56:45:3e:41:b0:15:d2:
65:f3:37:43:10:6e:84:aa:07:4b:d1:cb:23:f1:81:
84:12:60:f5:3a:55:66:6b:82:f9:37:f4:6e:b3:a0:
1f:a0:34:64:2b:6f:2b:35:d4:88:7c:8f:bb:e0:1e:
ba:7b:b9:d9:89:fa:56:94:8d:64:9a:27:08:52:ca:
1c:21:a7:2a:b8:c9:65:02:fc:74:c1:a1:f1:d5:63:
3d:28:19:2e:0a:bd:ae:12:b5:cb:ff:b4:38:64:21:
7d:64:25:05:3e:af:6e:5e:91:a4:ca:41:99:91:4c:
2d:a9:91:0c:dc:9f:f7:de:da:f4:7c:d0:95:fc:0b:
59:6d:08:0d:7a:a8:98:81:72:34:71:e0:6c:3c:1b:
c5:6b:b7:1a:a8:bb:49:e8:76:0e:1e:1d:f0:41:83:
31:6b:a2:11:86:50:86:13:50:d9:2b:56:6d:93:bc:
5f:17:e8:82:e3:91:9f:6e:1e:dd:b1:a1:a6:cd:45:
9f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DA:EA:86:AE:C2:5F:DD:0E:97:18:63:28:4A:20:E8:F8:EA:F8:BB
X509v3 Authority Key Identifier:
keyid:64:EE:04:89:15:8F:E9:5E:19:91:FD:5C:E7:25:EA:06:7E:11:A1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/tNrqhq7CX90OlxhjKEog6Pjq-Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/18ae02-e72d-4430-85d8-473c5ba55362/1/ZO4EiRWP6V4Zkf1c5yXqBn4Rofs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.61.0/24
Signature Algorithm: sha256WithRSAEncryption
63:2b:14:c7:f0:35:12:2a:fd:e1:5e:84:fb:80:66:2a:4a:18:
bd:ba:13:9e:d7:22:93:83:08:77:4c:cd:4e:ca:03:61:93:88:
a2:9b:eb:e3:a7:b6:33:10:16:88:9f:2d:8d:92:27:a6:8b:a3:
65:f7:7d:77:95:c3:0b:8e:c7:a1:01:18:38:a8:97:1c:df:07:
ed:ad:09:e2:33:07:f4:0d:25:71:20:73:a8:a1:a4:45:e7:f2:
48:99:2a:49:92:38:41:74:a4:cb:c5:f4:f5:73:59:71:fd:cb:
4e:4d:cb:f5:99:98:45:a7:28:33:25:3a:e3:45:68:7a:29:16:
42:7e:7f:86:de:19:99:5a:50:5f:ac:be:e3:f9:ad:d3:4e:9e:
27:ae:d8:40:1e:32:10:14:64:a6:92:10:f9:7f:78:89:0a:59:
06:22:99:49:be:ce:55:78:41:19:f0:70:f5:4f:6f:ad:93:30:
ad:dd:14:db:4f:45:1b:20:c8:94:a5:43:ba:c6:e8:5b:f2:45:
b2:9a:77:52:9b:6d:8a:59:8b:6a:35:41:de:25:8a:27:86:b1:
90:87:92:60:e3:3d:18:f7:18:f4:c1:6c:a8:2b:e1:f9:18:6e:
4e:f3:2e:08:15:ca:6d:1a:64:f1:fa:e5:c5:63:31:91:1b:02:
1b:0d:4d:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwoau6pmNSLmk7ywSFJvRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZWUwNDg5MTU4ZmU5NWUxOTkxZmQ1Y2U3MjVlYTA2N2Ux
MWExZmIwHhcNMjMwMTAxMjM1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGRhZWE4NmFlYzI1ZmRkMGU5NzE4NjMyODRhMjBlOGY4ZWFmOGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLxhPpleEXKzmkY0eEWgyqvOpFwo
e/Sv3T6cJvy4WUDkaH5MzRcFmCf7I6VvrocU9XnnAe/kLJEGv9mvsOMxJU9GS1ZF
PkGwFdJl8zdDEG6EqgdL0csj8YGEEmD1OlVma4L5N/Rus6AfoDRkK28rNdSIfI+7
4B66e7nZifpWlI1kmicIUsocIacquMllAvx0waHx1WM9KBkuCr2uErXL/7Q4ZCF9
ZCUFPq9uXpGkykGZkUwtqZEM3J/33tr0fNCV/AtZbQgNeqiYgXI0ceBsPBvFa7ca
qLtJ6HYOHh3wQYMxa6IRhlCGE1DZK1Ztk7xfF+iC45Gfbh7dsaGmzUWf2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLTa6oauwl/dDpcYYyhKIOj46vi7MB8GA1UdIwQY
MBaAFGTuBIkVj+leGZH9XOcl6gZ+EaH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk80RWlSV1A2VjRaa2YxYzV5WHFCbjRSb2ZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8xOGFlMDItZTcyZC00NDMwLTg1ZDgt
NDczYzViYTU1MzYyLzEvdE5ycWhxN0NYOTBPbHhoaktFb2c2UGpxLUxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy8xOGFlMDItZTcyZC00NDMwLTg1ZDgtNDczYzViYTU1MzYy
LzEvWk80RWlSV1A2VjRaa2YxYzV5WHFCbjRSb2ZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPgM9MA0G
CSqGSIb3DQEBCwUAA4IBAQBjKxTH8DUSKv3hXoT7gGYqShi9uhOe1yKTgwh3TM1O
ygNhk4iim+vjp7YzEBaIny2Nkiemi6Nl9313lcMLjsehARg4qJcc3wftrQniMwf0
DSVxIHOooaRF5/JImSpJkjhBdKTLxfT1c1lx/ctOTcv1mZhFpygzJTrjRWh6KRZC
fn+G3hmZWlBfrL7j+a3TTp4nrthAHjIQFGSmkhD5f3iJClkGIplJvs5VeEEZ8HD1
T2+tkzCt3RTbT0UbIMiUpUO6xuhb8kWymndSm22KWYtqNUHeJYonhrGQh5Jg4z0Y
9xj0wWyoK+H5GG5O8y4IFcptGmTx+uXFYzGRGwIbDU0q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:28 2024 by rpki-client on console-fra.rpki-client.org