Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/El5VKWwYBpm0qQ-H97kISpBlIVw.roa
File: El5VKWwYBpm0qQ-H97kISpBlIVw.roa (raw, json)
Hash identifier: ++gRdIZPg+7T0My8C21bEqFrC5Wo9cv0JrgaEICOl5M=
Subject key identifier: 12:5E:55:29:6C:18:06:99:B4:A9:0F:87:F7:B9:08:4A:90:65:21:5C
Certificate issuer: /CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Certificate serial: 01856D81B776094BB3E2C591BF2A187773F4
Authority key identifier: 1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/El5VKWwYBpm0qQ-H97kISpBlIVw.roa
Signing time: Sun 01 Jan 2023 13:24:55 +0000
ROA not before: Sun 01 Jan 2023 13:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42334
IP address blocks: 62.84.64.0/24 maxlen: 24
62.84.65.0/24 maxlen: 24
62.84.69.0/24 maxlen: 24
62.84.68.0/24 maxlen: 24
62.84.67.0/24 maxlen: 24
62.84.66.0/24 maxlen: 24
62.84.71.0/24 maxlen: 24
62.84.70.0/24 maxlen: 24
62.84.78.0/24 maxlen: 24
62.84.77.0/24 maxlen: 24
62.84.72.0/24 maxlen: 24
62.84.76.0/24 maxlen: 24
62.84.75.0/24 maxlen: 24
62.84.74.0/24 maxlen: 24
62.84.73.0/24 maxlen: 24
62.84.79.0/24 maxlen: 24
62.84.83.0/24 maxlen: 24
62.84.82.0/24 maxlen: 24
62.84.80.0/24 maxlen: 24
62.84.85.0/24 maxlen: 24
62.84.84.0/24 maxlen: 24
62.84.91.0/24 maxlen: 24
62.84.86.0/24 maxlen: 24
62.84.90.0/24 maxlen: 24
62.84.89.0/24 maxlen: 24
62.84.87.0/24 maxlen: 24
62.84.93.0/24 maxlen: 24
62.84.92.0/24 maxlen: 24
62.84.95.0/24 maxlen: 24
62.84.94.0/24 maxlen: 24
185.114.253.0/24 maxlen: 24
185.114.252.0/24 maxlen: 24
185.114.255.0/24 maxlen: 24
185.114.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b7:76:09:4b:b3:e2:c5:91:bf:2a:18:77:73:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e75106771c4295e3d3ecfa04cb97f631623e5bf
Validity
Not Before: Jan 1 13:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=125e55296c180699b4a90f87f7b9084a9065215c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3d:46:21:4e:9b:a8:b1:d8:2f:e8:66:a9:d5:
51:96:fc:5f:2a:8c:13:fe:fb:f7:34:4e:8d:29:09:
59:7d:61:d1:1b:6f:0f:94:9a:48:8b:ae:ea:e2:2b:
7b:65:00:6e:1e:02:dc:6b:33:f2:34:ac:60:73:5b:
9a:80:2e:66:1f:b4:e5:cc:9a:89:c7:c9:a4:6a:2c:
96:82:6d:f8:31:7e:b3:e7:cd:6f:5b:10:e0:73:ed:
43:44:22:de:53:2e:20:8f:9d:10:c8:e5:67:e9:71:
ee:2c:b4:0b:d7:c9:ff:c2:0e:18:81:50:eb:e0:67:
d7:89:fe:1b:d5:a6:88:78:b3:06:b5:bb:4a:e6:f0:
ef:7b:ca:3b:f7:51:e2:8f:ec:f4:e2:62:00:9d:d3:
63:fb:e4:fd:80:ce:d9:ae:9a:56:5e:a8:ca:02:65:
d5:62:d5:28:92:20:1f:39:25:91:bf:c3:bf:9d:b2:
9a:99:56:9c:db:b7:79:04:b1:fe:cf:ae:7e:c4:8e:
bd:90:2a:c5:ca:43:60:4c:ab:43:03:b1:f3:06:09:
cf:0d:fd:7b:bc:03:30:3b:51:6c:2a:a2:d4:3c:19:
ac:1b:6e:6c:8e:78:01:9e:09:4f:35:b5:ae:8c:1d:
76:4f:7a:1b:72:d9:fe:4d:4b:9e:2e:b4:ce:6b:1c:
22:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:5E:55:29:6C:18:06:99:B4:A9:0F:87:F7:B9:08:4A:90:65:21:5C
X509v3 Authority Key Identifier:
keyid:1E:75:10:67:71:C4:29:5E:3D:3E:CF:A0:4C:B9:7F:63:16:23:E5:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/El5VKWwYBpm0qQ-H97kISpBlIVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94a0f2-c806-4b55-bbe7-a2fdb938ca2d/1/HnUQZ3HEKV49Ps-gTLl_YxYj5b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.64.0-62.84.80.255
62.84.82.0-62.84.87.255
62.84.89.0-62.84.95.255
185.114.252.0/22
Signature Algorithm: sha256WithRSAEncryption
13:2a:59:8b:82:83:7e:8c:2b:b9:d9:5a:55:d8:e9:63:31:f9:
bf:46:be:29:b9:c6:57:e5:b9:66:8f:b1:66:7c:21:50:48:c1:
0f:19:78:b4:b0:0f:1a:76:0c:cf:ab:e6:f1:00:22:da:d9:05:
f6:6f:7f:99:e5:6a:37:71:45:f0:b4:6a:a8:16:b3:3f:0a:8a:
ab:a4:5c:6a:0c:b0:0c:d3:a0:ef:82:41:db:eb:90:c2:19:49:
32:64:9c:fd:8a:e3:39:39:59:7c:1a:8f:cd:21:b0:75:5f:06:
88:21:b0:1c:c4:f6:2c:44:d3:6b:17:80:21:bf:7c:8a:42:35:
06:bc:e2:b5:59:29:59:3f:6a:55:d1:c7:75:07:9f:16:53:3b:
66:3e:02:79:e0:f3:08:6b:eb:1c:5c:9e:a5:5a:10:e4:f6:13:
2c:40:3e:b6:35:bf:3c:88:10:83:85:34:d9:3d:43:2f:d0:59:
81:af:12:cc:a4:e6:ca:d5:82:4f:b4:30:7a:c2:04:a9:95:2f:
3a:be:e3:03:29:46:b5:48:51:32:2e:89:28:63:7f:8d:fb:60:
4f:4d:0b:e7:50:e7:6b:2c:3f:6a:f8:57:75:d3:59:bb:02:72:
bb:2b:24:f6:a0:44:03:bb:65:39:62:e5:d6:f9:28:b7:6f:98:
b4:f9:b4:e7
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYVtgbd2CUuz4sWRvyoYd3P0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNzUxMDY3NzFjNDI5NWUzZDNlY2ZhMDRjYjk3ZjYzMTYy
M2U1YmYwHhcNMjMwMTAxMTMyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjVlNTUyOTZjMTgwNjk5YjRhOTBmODdmN2I5MDg0YTkwNjUyMTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoj1GIU6bqLHYL+hmqdVRlvxfKowT
/vv3NE6NKQlZfWHRG28PlJpIi67q4it7ZQBuHgLcazPyNKxgc1uagC5mH7TlzJqJ
x8mkaiyWgm34MX6z581vWxDgc+1DRCLeUy4gj50QyOVn6XHuLLQL18n/wg4YgVDr
4GfXif4b1aaIeLMGtbtK5vDve8o791Hij+z04mIAndNj++T9gM7ZrppWXqjKAmXV
YtUokiAfOSWRv8O/nbKamVac27d5BLH+z65+xI69kCrFykNgTKtDA7HzBgnPDf17
vAMwO1FsKqLUPBmsG25sjngBnglPNbWujB12T3obctn+TUueLrTOaxwiPQIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFBJeVSlsGAaZtKkPh/e5CEqQZSFcMB8GA1UdIwQY
MBaAFB51EGdxxClePT7PoEy5f2MWI+W/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG5VUVozSEVLVjQ5UHMtZ1RMbF9ZeFlqNWI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85NGEwZjItYzgwNi00YjU1LWJiZTct
YTJmZGI5MzhjYTJkLzEvRWw1VktXd1lCcG0wcVEtSDk3a0lTcEJsSVZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85NGEwZjItYzgwNi00YjU1LWJiZTctYTJmZGI5MzhjYTJk
LzEvSG5VUVozSEVLVjQ5UHMtZ1RMbF9ZeFlqNWI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwMAwDBAY+VEAD
BAA+VFAwDAMEAT5UUgMEAz5UUDAMAwQAPlRZAwQFPlRAAwQCuXL8MA0GCSqGSIb3
DQEBCwUAA4IBAQATKlmLgoN+jCu52VpV2OljMfm/Rr4pucZX5blmj7FmfCFQSMEP
GXi0sA8adgzPq+bxACLa2QX2b3+Z5Wo3cUXwtGqoFrM/CoqrpFxqDLAM06DvgkHb
65DCGUkyZJz9iuM5OVl8Go/NIbB1XwaIIbAcxPYsRNNrF4Ahv3yKQjUGvOK1WSlZ
P2pV0cd1B58WUztmPgJ54PMIa+scXJ6lWhDk9hMsQD62Nb88iBCDhTTZPUMv0FmB
rxLMpObK1YJPtDB6wgSplS86vuMDKUa1SFEyLokoY3+N+2BPTQvnUOdrLD9q+Fd1
01m7AnK7KyT2oEQDu2U5YuXW+Si3b5i0+bTn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:26 2024 by rpki-client on console-fra.rpki-client.org