Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/850024-84ee-44c8-b2d9-7d20eb063455/1/DVsyv_wnSATNEbf3HQ2pw6om9Xc.roa
File: DVsyv_wnSATNEbf3HQ2pw6om9Xc.roa (raw, json)
Hash identifier: gEA+PnlaZOrb3vzohGUVvSsLp8iVgCMGRAZS5t4dX6A=
Subject key identifier: 0D:5B:32:BF:FC:27:48:04:CD:11:B7:F7:1D:0D:A9:C3:AA:26:F5:77
Certificate issuer: /CN=30a55632ec9034c9b9a3f290aaecd9a07c1f26ab
Certificate serial: 01938D18C0D943CBA780E92F8B621EA3FB5B
Authority key identifier: 30:A5:56:32:EC:90:34:C9:B9:A3:F2:90:AA:EC:D9:A0:7C:1F:26:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKVWMuyQNMm5o_KQquzZoHwfJqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/850024-84ee-44c8-b2d9-7d20eb063455/1/DVsyv_wnSATNEbf3HQ2pw6om9Xc.roa
Signing time: Tue 03 Dec 2024 15:17:09 +0000
ROA not before: Tue 03 Dec 2024 15:17:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45010
IP address blocks: 62.220.224.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 04 Dec 2024 08:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8d:18:c0:d9:43:cb:a7:80:e9:2f:8b:62:1e:a3:fb:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a55632ec9034c9b9a3f290aaecd9a07c1f26ab
Validity
Not Before: Dec 3 15:17:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d5b32bffc274804cd11b7f71d0da9c3aa26f577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1c:2d:55:8c:77:40:29:32:24:10:f8:3f:94:
b2:2b:e7:91:4f:7d:56:21:c3:8d:60:67:da:9f:4e:
92:4a:8f:d8:84:47:a0:89:5d:f9:6e:db:b4:10:80:
47:74:57:7b:29:91:1c:61:a7:a6:b1:bc:71:c2:a2:
cf:3f:32:67:95:48:35:85:db:7c:22:d1:31:a9:24:
db:d8:9a:34:15:60:02:84:f2:5a:53:b9:97:1e:0e:
c8:41:ec:2e:6d:40:f3:1f:d3:5c:06:79:20:1b:db:
e6:ee:12:f2:6e:a6:64:06:47:bc:98:58:bc:f8:8b:
20:e8:b3:c6:ba:e1:5a:2c:c6:22:b0:42:bf:c6:3f:
9b:49:2e:b2:74:28:e8:92:c7:68:a5:11:da:db:de:
33:51:01:f8:c6:62:35:ea:80:0d:71:01:51:d0:25:
9c:e7:ad:65:38:cf:43:b8:59:1d:38:e2:27:2b:d1:
5a:e7:35:dc:bd:6e:f9:c0:c5:9c:2d:7b:6f:67:9d:
ee:ce:18:d0:15:c0:36:82:b1:dd:e3:d8:60:20:d1:
26:ca:97:84:88:1a:be:e5:a5:38:96:5b:30:56:c6:
b8:8c:60:96:db:9a:01:c6:0b:b1:7a:b6:a3:e7:49:
c3:78:55:5b:ea:67:e5:bb:40:f9:36:6a:d7:fc:e9:
2c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5B:32:BF:FC:27:48:04:CD:11:B7:F7:1D:0D:A9:C3:AA:26:F5:77
X509v3 Authority Key Identifier:
keyid:30:A5:56:32:EC:90:34:C9:B9:A3:F2:90:AA:EC:D9:A0:7C:1F:26:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKVWMuyQNMm5o_KQquzZoHwfJqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/850024-84ee-44c8-b2d9-7d20eb063455/1/DVsyv_wnSATNEbf3HQ2pw6om9Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/850024-84ee-44c8-b2d9-7d20eb063455/1/MKVWMuyQNMm5o_KQquzZoHwfJqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.224.0/22
Signature Algorithm: sha256WithRSAEncryption
62:85:39:8c:d2:de:9f:f4:85:d8:e6:3a:ac:ed:b6:e8:d6:4d:
2a:bd:e7:3a:3f:0b:5f:5e:70:7a:44:d9:57:3b:87:b3:bf:9d:
35:eb:bd:63:19:c5:2f:ec:0f:63:8e:9d:5b:89:3d:15:3f:fa:
90:9f:98:b3:64:d3:8b:2f:6e:3f:91:53:c6:18:ce:2b:21:c8:
a1:25:8e:12:ba:5e:f4:24:e4:5c:a5:ea:88:bf:a6:74:79:1e:
c9:3b:e1:4a:6c:93:c0:51:e5:56:44:23:a3:ca:26:60:0e:95:
19:82:7c:07:45:36:b6:bb:38:1a:ca:90:e0:02:50:5d:c2:7d:
07:3e:94:33:e2:63:4e:4b:e2:a6:d9:1a:7f:b0:c8:11:0b:9e:
dc:b6:f6:88:f0:37:7d:ba:49:ea:fb:06:23:e5:5b:4c:aa:8d:
00:86:20:09:77:d8:23:d9:16:03:11:f2:93:ba:02:09:67:c8:
1b:61:1f:c6:3e:14:77:97:14:ba:e6:0e:2b:fd:8f:83:37:0c:
75:28:78:cd:85:df:33:c0:08:1e:a4:bf:0b:a5:12:c8:f0:eb:
25:8b:4c:79:21:26:72:d5:7b:83:4e:1f:e3:43:0b:47:32:e1:
ce:68:e9:5a:2f:f2:4b:3c:01:93:ab:4c:29:00:c7:e4:e7:1f:
70:83:17:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:46:17 2025 by rpki-client