Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/KKugCwlZvX__4kXpyvSF59WCv6o.roa
File: KKugCwlZvX__4kXpyvSF59WCv6o.roa (raw, json)
Hash identifier: nyk1v/YhJV2pRjWjf6KZqwco02NZvCHmrH1XhklHBok=
Subject key identifier: 28:AB:A0:0B:09:59:BD:7F:FF:E2:45:E9:CA:F4:85:E7:D5:82:BF:AA
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 01867F3184B2AA9969DF1EC28648EE17F23E
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/KKugCwlZvX__4kXpyvSF59WCv6o.roa
Signing time: Thu 23 Feb 2023 16:53:17 +0000
ROA not before: Thu 23 Feb 2023 16:53:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12713
IP address blocks: 62.75.58.0/24 maxlen: 24
62.75.54.0/24 maxlen: 24
62.75.64.0/24 maxlen: 24
62.75.62.0/24 maxlen: 24
62.75.3.0/24 maxlen: 24
62.75.1.0/24 maxlen: 24
62.75.2.0/24 maxlen: 24
62.75.10.0/24 maxlen: 24
62.75.8.0/24 maxlen: 24
62.75.15.0/24 maxlen: 24
62.75.16.0/23 maxlen: 23
62.75.13.0/24 maxlen: 24
62.75.24.0/23 maxlen: 23
62.75.22.0/24 maxlen: 24
62.75.23.0/24 maxlen: 24
62.75.20.0/24 maxlen: 24
62.75.21.0/24 maxlen: 24
62.75.18.0/23 maxlen: 23
62.75.107.0/24 maxlen: 24
62.75.108.0/24 maxlen: 24
2a00:1cb8:1::/48 maxlen: 48
2a00:1cb8:2:3::/64 maxlen: 64
2a00:1cb8:2:8::/64 maxlen: 64
2a00:1cb8:2:d::/64 maxlen: 64
2a00:1cb8:2::/48 maxlen: 48
2a00:1cb8:2:7::/64 maxlen: 64
2a00:1cb8:2:2::/64 maxlen: 64
2a00:1cb8:2000::/35 maxlen: 35
2a00:1cb8:2:6::/64 maxlen: 64
2a00:1cb8:2:1::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:31:84:b2:aa:99:69:df:1e:c2:86:48:ee:17:f2:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Feb 23 16:53:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28aba00b0959bd7fffe245e9caf485e7d582bfaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:63:22:54:11:45:32:72:04:cd:59:94:48:94:
40:5e:c7:ba:45:85:8c:94:e4:36:22:c9:88:8c:08:
03:6c:ab:4c:eb:0c:fc:ab:eb:f4:8f:41:ae:b9:c7:
5e:c0:df:39:b7:e4:30:70:93:f6:1a:1d:c0:bd:75:
e6:0c:1c:77:c6:29:40:0a:54:aa:c1:5b:d2:95:2e:
f9:79:1a:04:52:77:c5:f9:88:21:3a:80:d5:2a:69:
a9:66:6c:2b:e6:5f:21:4d:9a:cf:05:61:e1:5d:86:
d0:d2:e6:a4:e6:98:cf:d8:67:cc:6e:04:70:ce:8c:
a8:4e:a6:c9:10:75:b2:f0:06:a0:fe:64:6e:13:a0:
a9:52:b8:0e:64:8e:13:b8:df:2c:6d:ff:39:b7:40:
1e:f1:21:63:bc:2c:92:71:2f:af:32:ac:26:cc:09:
9a:b7:81:72:d1:50:b3:4b:57:bb:7a:a1:c3:00:28:
ff:c2:ed:22:a8:81:d9:f4:eb:c9:7b:f5:b5:a8:70:
a0:31:7d:2d:d3:ca:be:12:f1:a3:70:29:0e:f7:74:
dc:0f:a1:18:f3:c7:9e:05:d6:96:e7:e7:5a:c8:f6:
ab:65:1f:67:24:89:b5:2b:c9:b5:7e:20:ea:55:1c:
69:8b:23:ab:90:f8:5f:09:44:31:f9:9c:14:66:55:
8b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:AB:A0:0B:09:59:BD:7F:FF:E2:45:E9:CA:F4:85:E7:D5:82:BF:AA
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/KKugCwlZvX__4kXpyvSF59WCv6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.75.1.0-62.75.3.255
62.75.8.0/24
62.75.10.0/24
62.75.13.0/24
62.75.15.0-62.75.25.255
62.75.54.0/24
62.75.58.0/24
62.75.62.0/24
62.75.64.0/24
62.75.107.0-62.75.108.255
IPv6:
2a00:1cb8:1::-2a00:1cb8:2:ffff:ffff:ffff:ffff:ffff
2a00:1cb8:2000::/35
Signature Algorithm: sha256WithRSAEncryption
74:bb:40:c5:bf:6a:a5:60:4b:04:20:b7:c0:f1:ee:0b:9b:67:
e0:5f:33:0d:52:4a:3d:e3:4b:ca:84:18:99:5e:65:b6:46:11:
0a:fa:c7:db:80:27:ee:16:54:c6:29:af:2f:60:9b:3f:74:da:
37:55:d9:5b:5b:86:97:92:dc:93:64:ad:9d:df:42:23:15:90:
4a:45:5f:30:c1:c6:43:d4:8d:d1:0c:a6:3f:71:56:15:58:80:
40:8c:5d:de:80:06:a0:cb:8c:8d:df:45:9b:9e:e8:6d:0d:ac:
76:d5:03:04:7a:a8:08:78:2b:c9:9a:b7:cf:69:df:89:cf:9c:
f6:3b:d6:3c:f9:a8:a1:61:81:22:0c:85:32:c3:de:6d:00:f7:
0a:cf:c8:ab:35:91:6a:6b:50:1e:7c:a3:4f:6a:3a:f6:ca:63:
83:13:86:eb:39:3e:04:4f:62:5b:4b:5d:75:5b:54:ac:95:70:
da:dd:61:aa:74:3f:ee:00:17:4b:b5:5b:6c:f5:0c:ef:d0:8d:
96:12:8a:0a:f4:5b:70:44:3e:85:39:3e:42:db:66:34:2d:6f:
0c:19:c2:34:fb:82:20:ed:1e:07:1d:33:c2:66:60:4b:36:07:
f7:f2:fa:1b:a8:d5:df:55:9f:33:9d:f6:bb:16:03:38:9a:72:
8e:bc:61:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net