Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/4_9nxNPm0DRQSJSFx1IF82G5Z3w.roa
File: 4_9nxNPm0DRQSJSFx1IF82G5Z3w.roa (raw, json)
Hash identifier: wAiqEBCfHGW/IoAFObemYWTfAm//i9v9VnCQBmqRKuQ=
Subject key identifier: E3:FF:67:C4:D3:E6:D0:34:50:48:94:85:C7:52:05:F3:61:B9:67:7C
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01893A1F34EEF1DC6CE505B7469A1EAD9381
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/4_9nxNPm0DRQSJSFx1IF82G5Z3w.roa
Signing time: Sun 09 Jul 2023 10:07:50 +0000
ROA not before: Sun 09 Jul 2023 10:07:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 62.60.146.0/23 maxlen: 24
213.176.2.0/23 maxlen: 24
213.176.120.0/23 maxlen: 24
62.60.184.0/22 maxlen: 24
62.60.180.0/22 maxlen: 24
213.176.126.0/23 maxlen: 24
62.60.192.0/22 maxlen: 24
62.60.188.0/22 maxlen: 24
62.60.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 07:06:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3a:1f:34:ee:f1:dc:6c:e5:05:b7:46:9a:1e:ad:93:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jul 9 10:07:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3ff67c4d3e6d03450489485c75205f361b9677c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3f:9a:b7:af:80:0e:f2:c8:f4:b5:e0:e9:89:
56:14:d8:a1:17:8a:e3:25:a6:2b:d7:0e:51:28:1a:
0e:25:2d:31:d1:bf:00:ff:c7:92:36:99:2d:9a:1a:
0c:fd:c6:56:bf:7e:1b:35:b0:43:ac:49:2d:6a:8e:
7f:0a:97:94:94:9b:19:01:90:35:31:b5:f8:62:64:
c8:a7:21:c4:17:48:0a:8b:7a:4e:33:c7:73:a0:65:
47:02:f8:f5:cc:79:1c:59:b1:22:b2:7e:86:1f:c7:
df:4c:d6:03:49:cb:26:20:ee:ec:2c:7d:06:00:cb:
1c:00:29:4f:5f:3d:2f:aa:66:5b:d1:b6:0d:f4:49:
ee:10:c7:53:07:44:81:d0:18:0e:2a:43:0d:88:cc:
33:92:f1:23:4a:06:00:a6:cd:d8:7a:a4:5d:ef:82:
80:6b:7e:2f:dc:73:e6:d6:bb:21:7e:ae:2a:7b:fc:
be:3b:cc:ec:f7:27:c5:d4:91:b6:28:1c:0a:36:e4:
9d:52:e5:d9:c1:13:d0:9b:92:db:4a:e3:ba:1c:f9:
37:2c:7e:07:58:a9:76:25:47:90:78:a4:1a:01:04:
2c:40:ab:df:77:46:2d:5b:5a:3a:c0:98:88:ed:3f:
60:25:d7:26:74:55:40:e4:5d:c5:1e:4e:fa:c7:91:
03:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FF:67:C4:D3:E6:D0:34:50:48:94:85:C7:52:05:F3:61:B9:67:7C
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/4_9nxNPm0DRQSJSFx1IF82G5Z3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.146.0/23
62.60.180.0-62.60.199.255
213.176.2.0/23
213.176.120.0/23
213.176.126.0/23
Signature Algorithm: sha256WithRSAEncryption
53:6b:b6:f5:fb:9f:6e:d8:8c:02:63:a8:e9:0a:83:41:77:2e:
68:b6:99:de:cc:b9:01:cd:e1:66:c8:58:b3:d5:2d:37:0a:c0:
3e:99:11:72:5b:bf:ea:a0:2f:17:fa:f2:d7:ff:c2:cc:ef:70:
c4:d9:8b:33:c4:f5:93:8f:dd:f3:45:18:34:90:e2:e6:0b:ea:
11:61:a9:a3:7f:fe:fb:6f:2e:55:4f:d7:1a:53:bf:dd:6a:54:
69:ef:4b:70:2a:3c:da:cc:3e:c8:56:3e:49:87:ab:b0:a7:73:
45:42:3c:b2:63:45:96:95:45:cb:38:3c:af:89:ff:48:49:31:
f1:cf:e4:a5:75:45:32:64:1e:c1:2f:3d:29:53:46:e0:24:db:
0e:a6:26:e3:7a:63:db:19:eb:ed:f0:a1:67:75:dc:aa:cf:4e:
28:09:a1:09:d3:74:53:f2:ee:8f:d1:75:ea:ac:5b:44:3a:92:
49:6b:6f:76:c8:6b:35:1e:25:73:a8:2a:23:fa:48:ab:09:0b:
04:60:27:3a:ec:fb:c3:1f:01:82:79:98:89:88:a4:b3:87:90:
1a:ad:30:60:e7:52:27:43:df:94:72:45:de:e0:a2:11:0a:5d:
bd:0d:be:d5:d4:5f:de:3f:94:07:b2:eb:66:33:6f:84:bf:0c:
e9:71:9f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org