Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/8Irna4nQ3roZ1UpKapJKXfr59Lo.roa
File: 8Irna4nQ3roZ1UpKapJKXfr59Lo.roa (raw, json)
Hash identifier: T9ALND8txnI42946S+ytp3nggLwnTizdYU1lMru98l0=
Subject key identifier: F0:8A:E7:6B:89:D0:DE:BA:19:D5:4A:4A:6A:92:4A:5D:FA:F9:F4:BA
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018F2877FB1F383E7F6EC638230182040940
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/8Irna4nQ3roZ1UpKapJKXfr59Lo.roa
Signing time: Mon 29 Apr 2024 06:08:22 +0000
ROA not before: Mon 29 Apr 2024 06:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15611
IP address blocks: 62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
62.60.156.0/22 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.184.0/22 maxlen: 24
62.60.216.0/22 maxlen: 24
62.60.220.0/22 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.96.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
2001:790::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Apr 2024 11:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:28:77:fb:1f:38:3e:7f:6e:c6:38:23:01:82:04:09:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Apr 29 06:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f08ae76b89d0deba19d54a4a6a924a5dfaf9f4ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:00:d8:d1:d3:53:36:11:73:fc:97:11:5a:
d9:dc:55:d1:76:60:f8:de:a5:5d:1c:14:17:c8:30:
f0:f9:c9:57:f0:bb:4e:4e:d9:85:48:9f:82:59:3c:
ca:29:cb:e9:4a:24:97:50:18:8b:56:9c:94:e0:62:
56:b5:bb:af:a5:b1:fb:00:25:f9:2c:8c:49:2c:8e:
65:df:29:1c:75:c5:65:e9:1f:14:02:63:9d:5c:d8:
07:50:23:dd:b3:48:e1:38:c8:36:04:a6:0d:b4:d8:
1f:8d:9f:75:86:a9:fe:96:10:82:7d:32:cd:79:a6:
b2:04:b2:89:ed:de:77:eb:ec:c5:d0:86:e0:cd:10:
84:ce:72:b5:a0:5b:bc:64:20:ad:be:a6:19:38:3d:
05:b9:ba:fc:b0:e7:21:8e:89:b7:50:fa:0d:03:25:
c9:1d:3e:7f:e7:d5:35:3c:63:ec:ee:86:b1:a4:fa:
23:a7:36:60:14:54:87:c1:d4:0b:27:0b:75:49:23:
82:fa:e2:f3:c2:4a:7f:33:46:36:ba:19:c7:30:7e:
33:c4:5c:15:4a:c9:e5:43:e0:ea:df:06:49:71:ab:
8c:c8:1a:79:ec:45:b4:4e:8e:cc:c9:17:08:68:0f:
9d:eb:67:9b:5c:8a:83:a7:84:cb:c5:ea:34:94:b3:
e5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8A:E7:6B:89:D0:DE:BA:19:D5:4A:4A:6A:92:4A:5D:FA:F9:F4:BA
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/8Irna4nQ3roZ1UpKapJKXfr59Lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.140.255
62.60.142.0/24
62.60.145.0/24
62.60.147.0/24
62.60.152.0/21
62.60.168.0/21
62.60.184.0/22
62.60.216.0/21
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
213.176.127.0/24
IPv6:
2001:790::/32
Signature Algorithm: sha256WithRSAEncryption
2a:d7:d2:79:35:bc:6f:a0:a0:25:b7:9b:1b:e5:be:ef:9f:7a:
1b:95:cb:9a:a1:22:8e:ad:83:bc:b7:c8:23:d6:d6:fe:64:fb:
c0:d3:70:0d:f9:35:ec:0c:49:96:94:6b:bf:6e:ff:9d:98:45:
ba:f8:cd:f9:75:7c:d5:9b:ed:da:4f:98:f5:5d:79:93:9d:f1:
6e:6d:73:3d:70:ba:ea:2d:d6:01:40:26:be:d6:e8:92:f9:d7:
1a:9a:d5:c5:be:87:5a:b6:ff:a8:be:e5:e6:f8:b0:92:58:d4:
d1:a3:37:55:fb:c5:f2:91:a7:b9:de:76:aa:45:9c:e6:ee:4c:
f3:fc:d4:e6:1e:0d:b5:f7:84:bf:0a:67:7c:08:75:b3:c8:42:
3a:46:33:f2:31:fe:e6:73:be:6b:88:74:ca:75:fe:1f:62:59:
cd:cb:91:41:2a:27:76:06:7e:ad:65:cf:c8:c2:90:43:b8:fc:
e4:3e:a7:6d:1f:66:19:dc:73:ff:a9:13:3a:89:a0:ab:3a:4b:
93:1b:c6:4d:80:c1:3f:a0:27:de:5b:34:a4:aa:4c:2f:ae:b3:
96:e1:45:d0:3c:9a:b8:00:43:78:a0:0e:61:4f:d5:36:7e:e0:
19:09:25:b8:66:80:44:a0:ca:61:1c:5b:7a:9c:12:31:8d:db:
db:8a:d2:31
-----BEGIN CERTIFICATE-----
MIIFbTCCBFWgAwIBAgISAY8od/sfOD5/bsY4IwGCBAlAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjQwNDI5MDYwODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDhhZTc2Yjg5ZDBkZWJhMTlkNTRhNGE2YTkyNGE1ZGZhZjlmNGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynoA2NHTUzYRc/yXEVrZ3FXRdmD4
3qVdHBQXyDDw+clX8LtOTtmFSJ+CWTzKKcvpSiSXUBiLVpyU4GJWtbuvpbH7ACX5
LIxJLI5l3ykcdcVl6R8UAmOdXNgHUCPds0jhOMg2BKYNtNgfjZ91hqn+lhCCfTLN
eaayBLKJ7d536+zF0IbgzRCEznK1oFu8ZCCtvqYZOD0Fubr8sOchjom3UPoNAyXJ
HT5/59U1PGPs7oaxpPojpzZgFFSHwdQLJwt1SSOC+uLzwkp/M0Y2uhnHMH4zxFwV
SsnlQ+Dq3wZJcauMyBp57EW0To7MyRcIaA+d62ebXIqDp4TLxeo0lLPlmwIDAQAB
o4ICeTCCAnUwHQYDVR0OBBYEFPCK52uJ0N66GdVKSmqSSl36+fS6MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvOElybmE0blEzcm9aMVVwS2FwSktYZnI1OUxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGOBggrBgEFBQcBBwEB/wR/MH0wbAQCAAEwZjAMAwQCPjyE
AwQBPjyIMAwDBAA+PIsDBAA+PIwDBAA+PI4DBAA+PJEDBAA+PJMDBAM+PJgDBAM+
PKgDBAI+PLgDBAM+PNgDBAHVsAQDBADVsGAwDAMEAdWwegMEAdWwfAMEANWwfzAN
BAIAAjAHAwUAIAEHkDANBgkqhkiG9w0BAQsFAAOCAQEAKtfSeTW8b6CgJbebG+W+
7596G5XLmqEijq2DvLfII9bW/mT7wNNwDfk17AxJlpRrv27/nZhFuvjN+XV81Zvt
2k+Y9V15k53xbm1zPXC66i3WAUAmvtbokvnXGprVxb6HWrb/qL7l5viwkljU0aM3
VfvF8pGnud52qkWc5u5M8/zU5h4NtfeEvwpnfAh1s8hCOkYz8jH+5nO+a4h0ynX+
H2JZzcuRQSondgZ+rWXPyMKQQ7j85D6nbR9mGdxz/6kTOomgqzpLkxvGTYDBP6An
3ls0pKpML66zluFF0DyauABDeKAOYU/VNn7gGQkluGaARKDKYRxbepwSMY3b24rS
MQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org