Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/gVd9sckiEm9PZOld7DTkTLDGLGo.roa
File: gVd9sckiEm9PZOld7DTkTLDGLGo.roa (raw, json)
Hash identifier: k84+ERlxWUKzZj1teA08Mj+8QcbcaM5p2K8MUWw6F6M=
Subject key identifier: 81:57:7D:B1:C9:22:12:6F:4F:64:E9:5D:EC:34:E4:4C:B0:C6:2C:6A
Certificate issuer: /CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Certificate serial: 018DD071628EC5585879E1037F145EF9D42C
Authority key identifier: 12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/gVd9sckiEm9PZOld7DTkTLDGLGo.roa
Signing time: Thu 22 Feb 2024 10:51:48 +0000
ROA not before: Thu 22 Feb 2024 10:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.3.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 11:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:71:62:8e:c5:58:58:79:e1:03:7f:14:5e:f9:d4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Validity
Not Before: Feb 22 10:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81577db1c922126f4f64e95dec34e44cb0c62c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:39:4d:bc:7e:b0:8e:cb:a0:6b:28:1d:6c:4a:
10:ad:99:22:1d:b7:e6:02:55:f8:2c:d5:99:e4:00:
cb:99:91:8e:72:58:24:ae:cb:b8:95:b4:78:c1:f8:
30:e5:42:a3:40:bc:f4:64:16:75:e7:ee:67:d4:8e:
06:aa:89:94:fb:31:a4:84:41:38:44:6e:bd:07:e1:
46:57:33:e8:84:5c:48:06:b1:c9:90:ce:5c:c5:34:
7d:ef:46:e6:bb:d2:94:2b:ca:f1:a9:92:3a:31:00:
91:d5:cd:66:df:7b:be:6f:73:bb:cf:2a:22:b3:82:
2f:6c:9e:ed:6d:dd:ae:e0:87:8d:0a:32:77:e4:2e:
65:0b:d2:f1:59:4e:dc:33:3e:f5:72:36:c6:94:87:
dd:03:58:38:1e:a7:37:b5:c5:f8:bc:f2:35:3e:00:
91:ba:23:7c:b7:c0:bd:5e:ae:4f:d1:9d:77:15:13:
2d:5f:9e:84:f0:d6:c1:77:e6:9f:f1:e5:59:f3:c6:
cc:bd:70:c2:bb:ee:f3:d5:d9:af:86:90:2b:62:7c:
15:55:8b:28:2c:6c:5e:33:03:68:86:f9:34:de:24:
ff:f5:c6:81:a4:bd:5e:3c:43:70:36:37:e1:50:a8:
ce:14:aa:cd:39:72:f1:58:0f:69:2f:41:ba:ee:c0:
12:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:57:7D:B1:C9:22:12:6F:4F:64:E9:5D:EC:34:E4:4C:B0:C6:2C:6A
X509v3 Authority Key Identifier:
keyid:12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/gVd9sckiEm9PZOld7DTkTLDGLGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.54.0/24
Signature Algorithm: sha256WithRSAEncryption
18:94:a5:38:76:7c:8a:e2:5b:a3:80:4a:de:73:93:5b:87:30:
2a:70:e4:6f:38:4c:a5:4e:48:e8:b5:09:6f:e9:0e:d2:e2:f8:
12:e9:b9:c6:cd:7d:e4:18:2e:02:da:bb:dd:bf:52:5d:88:b4:
87:35:8b:d6:1d:47:8b:84:25:f3:2f:b4:16:9a:3b:cb:ee:d5:
c2:cf:15:a3:90:1a:b3:66:93:c8:8d:be:80:1e:95:15:3c:f0:
44:c6:ab:a8:47:6a:68:63:de:97:00:85:c5:54:48:33:6f:68:
d3:5b:cd:af:79:6c:90:4e:21:a8:d3:de:9e:f5:a9:ec:e0:03:
cf:1f:80:a1:bd:88:40:9c:96:0b:bb:83:9a:67:ec:69:65:88:
71:c2:6e:5d:3a:66:86:b9:7b:f0:13:01:ce:5a:0a:d5:fd:54:
8d:e6:aa:a0:1f:bd:9a:fd:ed:06:2c:f3:96:5d:82:b6:ed:4c:
65:77:3f:50:0b:f4:df:27:e6:cd:ff:29:56:e9:ec:a0:76:f5:
08:a9:74:02:cb:fb:89:1e:d9:0e:2c:99:bb:6f:d6:f9:da:b6:
14:0a:f3:47:6f:44:9a:9b:bd:ad:97:cc:05:70:16:24:e9:0f:
6b:81:c6:38:85:cb:4e:21:90:f2:39:f8:89:ff:1f:21:be:06:
6c:ed:76:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:49 2024 by rpki-client on console-fra.rpki-client.org