Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ntjf8nKIITKhjtu6xnVZZgDiKMI.roa
File: Ntjf8nKIITKhjtu6xnVZZgDiKMI.roa (raw, json)
Hash identifier: tXS7ridfQuAJHskdoTqn48UuIFjSmUrXwourXr1zBTI=
Subject key identifier: 36:D8:DF:F2:72:88:21:32:A1:8E:DB:BA:C6:75:59:66:00:E2:28:C2
Certificate issuer: /CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Certificate serial: 018D36D7D86B5E753286A2A906A06851B20B
Authority key identifier: 12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ntjf8nKIITKhjtu6xnVZZgDiKMI.roa
Signing time: Tue 23 Jan 2024 15:02:11 +0000
ROA not before: Tue 23 Jan 2024 15:02:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 62.3.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 10:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:36:d7:d8:6b:5e:75:32:86:a2:a9:06:a0:68:51:b2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Validity
Not Before: Jan 23 15:02:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36d8dff272882132a18edbbac675596600e228c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:90:20:1d:90:ce:55:96:62:16:2f:e8:45:9a:
cc:63:5d:b1:71:db:c9:64:a9:c3:27:d3:63:bc:cf:
47:1d:d6:98:a6:d9:6d:e2:54:d8:80:11:c4:b9:14:
52:d1:42:79:cb:70:0a:77:a3:41:92:ed:e6:cd:fd:
9a:54:ba:57:ce:3e:9e:00:34:25:cc:02:37:d4:3f:
11:70:eb:d9:2e:5f:ac:c6:ae:c1:bb:29:ae:e7:90:
14:d0:65:a3:01:fe:5a:3e:41:84:98:6e:28:6b:bc:
1b:a5:19:57:15:7c:7a:1c:25:45:6b:6f:2f:04:49:
ce:3f:eb:e6:43:50:c1:f1:2b:8f:b7:6c:58:f8:2a:
04:bb:0c:8a:09:13:4c:a0:7a:c2:34:b3:60:91:33:
23:07:80:cb:a4:3f:b0:43:39:21:18:23:6b:d4:b3:
15:b9:25:ef:36:11:9c:c9:2c:49:73:e9:ad:76:8e:
99:9a:1a:24:f2:b6:39:20:51:cd:4b:4c:79:65:f5:
c3:b4:e5:e0:07:a6:42:b3:a2:92:50:c7:03:44:77:
f0:ba:f0:99:e0:72:72:71:86:e0:2f:c0:8b:ff:d7:
dc:97:59:18:48:3b:83:ef:6b:4b:87:15:f1:bc:d5:
45:c8:cb:f5:1c:19:a5:01:7c:e9:1a:7e:94:ce:dc:
91:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D8:DF:F2:72:88:21:32:A1:8E:DB:BA:C6:75:59:66:00:E2:28:C2
X509v3 Authority Key Identifier:
keyid:12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ntjf8nKIITKhjtu6xnVZZgDiKMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.54.0/24
Signature Algorithm: sha256WithRSAEncryption
33:be:dc:0a:7b:39:45:a2:10:d8:4c:c9:d4:36:33:11:fc:c6:
43:6e:b6:75:9d:f5:38:32:3a:34:3b:f3:9b:93:e4:25:bb:21:
49:e3:43:be:e5:7b:14:8e:ee:1b:14:fe:bb:a5:fd:03:ba:45:
47:b3:83:1b:82:61:67:2e:ba:aa:b8:6d:13:e0:c0:8a:f0:8c:
1a:11:f8:7e:fd:69:d6:9d:74:59:98:60:f3:a6:e0:3b:82:8c:
a0:93:5a:4f:ac:8f:a7:af:74:29:ed:87:28:1d:d6:78:24:4f:
aa:e3:85:aa:03:8d:00:f8:f7:22:08:58:0a:57:43:ab:ee:f5:
d7:53:5d:8e:5c:54:58:33:35:8b:03:09:40:20:fa:bc:cc:e6:
24:a5:88:59:a3:aa:62:2d:fb:a6:c9:78:52:af:5b:08:b7:53:
1f:f3:86:fc:5c:9a:92:43:8c:43:f8:28:62:8c:4c:de:49:5b:
71:2f:46:29:36:02:6c:6c:db:73:34:2d:75:96:ad:c2:7f:e7:
91:9e:09:6e:40:00:85:c6:07:c2:69:7e:28:8f:80:79:16:04:
b0:8d:05:a7:a3:52:f5:2b:72:f6:66:d4:1d:f4:92:c3:c7:98:
20:55:b6:9f:83:43:1a:17:2e:0a:13:33:46:f8:0c:49:c6:51:
d6:be:42:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 15:04:26 2024 by rpki-client on console-fra.rpki-client.org