Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/jaKz01SIjqyb6ugSzhPQi18uTOY.roa
File: jaKz01SIjqyb6ugSzhPQi18uTOY.roa (raw, json)
Hash identifier: AOWNBhHK3Yf0e7Kv8rCvVoLyzgEhRCRyk8qHcaonW4o=
Subject key identifier: 8D:A2:B3:D3:54:88:8E:AC:9B:EA:E8:12:CE:13:D0:8B:5F:2E:4C:E6
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0193903719016101F72F63368077A2F2D8DC
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/jaKz01SIjqyb6ugSzhPQi18uTOY.roa
Signing time: Wed 04 Dec 2024 05:49:10 +0000
ROA not before: Wed 04 Dec 2024 05:49:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51396
IP address blocks: 62.60.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Dec 2024 07:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:90:37:19:01:61:01:f7:2f:63:36:80:77:a2:f2:d8:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Dec 4 05:49:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8da2b3d354888eac9beae812ce13d08b5f2e4ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:19:89:8d:82:72:95:29:13:67:42:21:a5:f7:
81:c6:c6:34:a7:68:af:15:3c:d7:a5:db:fd:5d:74:
76:ad:4c:3d:0a:d5:ed:d4:b5:c8:1e:6f:82:26:a8:
5f:e8:e4:72:f7:b5:3d:43:34:26:66:65:eb:ae:41:
cb:e8:b5:70:09:f6:49:c6:11:72:3b:e2:11:61:7f:
87:9c:c7:7a:28:23:46:44:b5:a5:d6:24:93:ee:a6:
16:5e:eb:d0:2b:cc:7e:f5:ed:88:1f:55:fb:d1:82:
f7:fc:f8:f1:e7:9e:d2:f8:22:a0:76:62:7e:6a:0c:
83:b0:f3:1b:83:b2:73:81:de:99:98:0a:2d:73:5a:
11:71:25:d7:cc:6d:8f:0c:ad:d3:a2:4b:80:57:32:
37:c3:39:1a:31:36:49:cd:cf:3a:9b:ea:23:b5:e8:
70:dc:2c:9b:40:98:ef:24:1c:ae:14:69:f5:66:5d:
04:95:25:22:1b:ed:43:03:d5:07:4b:f2:02:e9:1a:
58:04:52:b1:7b:56:fe:89:2f:7e:44:6e:ac:fe:7c:
eb:6a:d2:24:98:e9:f4:10:9c:2c:3d:c9:1a:bc:03:
f2:54:84:6f:a1:1a:22:5b:10:ac:1e:ae:7b:b2:2b:
0a:9f:7d:5b:b2:e4:bd:57:24:c1:e1:b8:38:94:55:
ee:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A2:B3:D3:54:88:8E:AC:9B:EA:E8:12:CE:13:D0:8B:5F:2E:4C:E6
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/jaKz01SIjqyb6ugSzhPQi18uTOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.235.0/24
Signature Algorithm: sha256WithRSAEncryption
12:66:c8:d7:c3:0f:73:98:8b:b5:66:17:6e:fd:3e:64:07:1f:
c5:c3:f6:29:84:2d:f4:db:6b:4a:b2:d9:6e:5f:06:f5:ec:ba:
d6:74:25:18:9b:35:e5:29:10:7f:ea:a1:70:b1:8a:67:48:bb:
bd:6f:92:a5:73:89:43:5f:b2:47:ea:02:a6:56:9f:7d:52:b6:
02:7c:51:82:06:63:39:e0:e1:c3:70:91:43:91:b8:7d:0a:e1:
51:b1:03:07:e5:96:ad:1a:d8:64:59:8e:71:0f:34:86:ae:62:
98:30:5a:85:a9:53:ae:d2:d2:92:e3:92:e4:9c:80:19:91:8d:
87:f8:70:68:76:20:28:d1:72:56:3f:15:53:c4:ad:b3:b4:ce:
f5:86:d2:e2:bf:91:f3:09:37:a1:df:b4:97:4f:47:36:39:c3:
4f:17:2f:7d:5f:cf:34:61:e6:b1:c6:d4:3c:a3:3f:41:2b:aa:
57:6f:b9:f5:87:38:27:8d:f1:cf:64:f3:4a:7a:a8:58:58:cd:
d6:5e:d2:d1:2f:0a:a6:33:0b:ab:60:67:20:c2:32:a2:90:5c:
db:0c:61:0f:b1:87:0a:48:ee:ac:6b:35:01:3f:bf:4d:98:79:
af:33:ec:63:ae:4c:d2:89:58:cc:fd:0e:e2:cc:8b:46:c7:e7:
eb:d6:d1:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 15:27:49 2025 by rpki-client