Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/4D5weMJT5rd9mDMYxavE-O5sXv4.roa
File: 4D5weMJT5rd9mDMYxavE-O5sXv4.roa (raw, json)
Hash identifier: CbxVjIrncVPtsHqIQBDNuc0bXHyIpedRmzgzM9lhJmA=
Subject key identifier: E0:3E:70:78:C2:53:E6:B7:7D:98:33:18:C5:AB:C4:F8:EE:6C:5E:FE
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0188380D71D6CCF6503C4234D9077633DB96
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/4D5weMJT5rd9mDMYxavE-O5sXv4.roa
Signing time: Sat 20 May 2023 07:26:25 +0000
ROA not before: Sat 20 May 2023 07:26:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 62.60.216.0/22 maxlen: 24
62.60.164.0/22 maxlen: 24
213.176.2.0/23 maxlen: 24
62.60.168.0/21 maxlen: 24
213.176.6.0/23 maxlen: 24
62.60.180.0/22 maxlen: 24
62.60.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 07:28:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:38:0d:71:d6:cc:f6:50:3c:42:34:d9:07:76:33:db:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: May 20 07:26:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e03e7078c253e6b77d983318c5abc4f8ee6c5efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:bc:64:71:6f:87:2a:bc:8a:b7:ad:fb:94:
ab:ef:71:d7:11:d5:e8:7f:5d:92:cf:62:8e:82:82:
60:35:59:32:84:b4:5e:00:3f:fb:3f:0f:42:54:26:
92:8d:72:56:a1:d2:d8:f9:97:c5:d2:8d:5f:5c:03:
97:d6:fb:cf:2c:7f:22:6e:a4:ca:e6:9a:b4:ce:45:
ab:60:ea:9a:21:72:27:b2:14:16:fb:23:3b:b3:0f:
2d:c4:3e:31:9a:48:10:12:6b:fa:a0:1e:59:84:9b:
dd:50:0c:18:58:58:68:1c:04:f3:6f:82:97:d2:39:
b6:7b:10:91:af:99:eb:82:8d:1b:0f:2c:d6:11:b4:
85:b9:f1:da:e5:5e:48:90:71:0d:27:66:b8:ee:e3:
83:e0:15:76:2c:76:98:e7:01:88:23:f1:ed:5e:ba:
f7:1b:e4:ea:6a:27:db:ad:34:1b:af:fb:bf:70:c4:
eb:c1:e2:36:26:10:e7:52:86:39:c2:e5:da:4e:56:
6f:39:f7:fa:5b:7e:83:a7:2b:a6:43:a9:fb:f8:3e:
b9:9a:13:2e:cd:21:4a:a5:70:df:cd:9e:0c:c4:29:
bd:0c:74:f1:d3:1f:31:eb:ce:35:18:af:db:94:f0:
31:11:5d:e7:e8:0f:1b:69:f6:21:a5:81:e5:71:68:
64:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3E:70:78:C2:53:E6:B7:7D:98:33:18:C5:AB:C4:F8:EE:6C:5E:FE
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/4D5weMJT5rd9mDMYxavE-O5sXv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.164.0-62.60.175.255
62.60.180.0/22
62.60.188.0/22
62.60.216.0/22
213.176.2.0/23
213.176.6.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:72:b2:f5:c5:e1:da:49:cd:1e:29:a1:4e:e1:80:4f:8e:c8:
fe:74:0c:7e:c2:8e:bf:2f:0f:d2:f9:9c:ab:01:41:98:ae:ad:
28:61:61:43:d3:a0:ae:6e:f9:0f:99:b3:17:31:47:ef:10:65:
47:c1:60:10:4d:14:58:d7:56:b1:c2:3a:c6:c1:19:e6:42:df:
f5:a5:79:f3:75:1e:56:da:d9:34:78:c9:06:72:47:65:7c:25:
90:5f:3d:c3:98:50:a8:10:51:21:5e:58:e4:42:32:c0:56:eb:
fc:55:33:67:74:2d:96:67:7c:d6:cf:90:d6:fb:ec:d0:e5:6c:
21:15:c4:46:5b:22:6e:19:59:c4:d9:2b:63:4b:fe:3d:f7:67:
50:2b:57:7b:ca:09:d2:8b:3a:a0:92:71:07:3f:d1:84:c8:b5:
be:14:59:42:bd:bb:43:75:e7:11:5c:41:11:23:2f:17:a9:17:
b0:d2:ab:5b:38:60:aa:02:8b:60:a3:47:1a:12:c3:93:f9:f4:
b4:57:22:d9:72:29:38:70:f8:29:2b:9c:23:df:92:49:d7:4c:
f8:56:93:3a:bb:ed:a0:02:ea:7e:e7:a4:c2:26:51:43:0f:8a:
8c:b0:3d:38:00:e6:96:74:80:24:3c:70:03:09:7e:8a:97:40:
f5:86:11:09
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgISAYg4DXHWzPZQPEI02Qd2M9uWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMwNTIwMDcyNjI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDNlNzA3OGMyNTNlNmI3N2Q5ODMzMThjNWFiYzRmOGVlNmM1ZWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHW8ZHFvhyq8iret+5Sr73HXEdXo
f12Sz2KOgoJgNVkyhLReAD/7Pw9CVCaSjXJWodLY+ZfF0o1fXAOX1vvPLH8ibqTK
5pq0zkWrYOqaIXInshQW+yM7sw8txD4xmkgQEmv6oB5ZhJvdUAwYWFhoHATzb4KX
0jm2exCRr5nrgo0bDyzWEbSFufHa5V5IkHENJ2a47uOD4BV2LHaY5wGII/HtXrr3
G+TqaifbrTQbr/u/cMTrweI2JhDnUoY5wuXaTlZvOff6W36DpyumQ6n7+D65mhMu
zSFKpXDfzZ4MxCm9DHTx0x8x6841GK/blPAxEV3n6A8bafYhpYHlcWhkvwIDAQAB
o4ICLzCCAiswHQYDVR0OBBYEFOA+cHjCU+a3fZgzGMWrxPjubF7+MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvNEQ1d2VNSlQ1cmQ5bURNWXhhdkUtTzVzWHY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsMAwDBAI+PKQD
BAQ+PKADBAI+PLQDBAI+PLwDBAI+PNgDBAHVsAIDBAHVsAYwDQYJKoZIhvcNAQEL
BQADggEBAApysvXF4dpJzR4poU7hgE+OyP50DH7Cjr8vD9L5nKsBQZiurShhYUPT
oK5u+Q+ZsxcxR+8QZUfBYBBNFFjXVrHCOsbBGeZC3/WlefN1Hlba2TR4yQZyR2V8
JZBfPcOYUKgQUSFeWORCMsBW6/xVM2d0LZZnfNbPkNb77NDlbCEVxEZbIm4ZWcTZ
K2NL/j33Z1ArV3vKCdKLOqCScQc/0YTItb4UWUK9u0N15xFcQREjLxepF7DSq1s4
YKoCi2CjRxoSw5P59LRXItlyKThw+CkrnCPfkknXTPhWkzq77aAC6n7npMImUUMP
ioywPTgA5pZ0gCQ8cAMJfoqXQPWGEQk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org