Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/8ONLkuGMRVgCyr-_q3MR2BAGALs.roa
File: 8ONLkuGMRVgCyr-_q3MR2BAGALs.roa (raw, json)
Hash identifier: JT2xs2xqXEGIbs2FHIac8Wik9Dt0vNGYZHe9quM6gjc=
Subject key identifier: F0:E3:4B:92:E1:8C:45:58:02:CA:BF:BF:AB:73:11:D8:10:06:00:BB
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018F2ED873F1B267FED26F321EDB27A1D881
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/8ONLkuGMRVgCyr-_q3MR2BAGALs.roa
Signing time: Tue 30 Apr 2024 11:51:28 +0000
ROA not before: Tue 30 Apr 2024 11:51:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15611
IP address blocks: 62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.96.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
2001:790::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 May 2024 04:59:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2e:d8:73:f1:b2:67:fe:d2:6f:32:1e:db:27:a1:d8:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Apr 30 11:51:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0e34b92e18c455802cabfbfab7311d8100600bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:55:d6:a9:b9:3e:9d:fe:d3:86:f8:4b:6d:81:
9f:ce:a6:07:b6:4d:90:ae:a6:e3:53:82:5b:bc:c3:
9c:1b:23:1a:02:86:93:d2:de:1f:e8:8c:dc:df:af:
81:fe:f0:97:7a:36:62:e4:8b:36:d8:c0:57:04:cc:
5d:26:ea:d8:30:6e:3b:2b:c5:05:c9:9e:e7:b2:ff:
f1:14:e9:4d:80:1c:12:fe:68:bc:e0:c5:55:c0:b2:
e9:62:b8:b2:eb:46:e5:76:37:75:94:6a:4f:15:d3:
ac:af:c9:fd:e6:d2:f6:5c:df:97:48:c2:f4:84:82:
35:1e:6f:98:a0:f7:00:e7:dd:c6:26:8e:9a:be:37:
a2:7a:e6:7d:70:82:d5:c5:ae:4b:c7:f3:76:c1:f5:
d9:df:d7:25:fb:40:96:c1:4b:80:18:d5:70:7c:59:
4c:87:0d:33:18:d4:eb:c9:13:2c:9b:a2:ee:8f:4c:
5a:2b:9a:dd:07:07:d5:71:ac:f5:9c:57:e5:fb:d7:
39:5f:b5:fd:5a:62:2c:d0:76:86:e3:34:7c:2e:bb:
bc:fb:bb:2d:c3:e2:09:fd:28:95:d2:04:b2:8b:92:
1f:81:97:6d:53:cc:4d:a3:67:d7:c4:90:4a:2a:fa:
5d:4b:c6:f5:f8:e1:c4:53:8b:0e:f8:e0:6c:24:31:
9b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E3:4B:92:E1:8C:45:58:02:CA:BF:BF:AB:73:11:D8:10:06:00:BB
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/8ONLkuGMRVgCyr-_q3MR2BAGALs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.140.255
62.60.142.0/24
62.60.145.0/24
62.60.147.0/24
62.60.168.0/21
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
213.176.127.0/24
IPv6:
2001:790::/32
Signature Algorithm: sha256WithRSAEncryption
11:ad:31:0c:97:39:d5:2d:bb:b0:43:8a:c3:ca:4f:a4:39:27:
23:a7:d8:40:00:2f:be:55:b7:c3:7d:89:5a:0f:f5:58:ce:15:
df:ca:37:88:75:ea:c9:6a:76:50:ea:07:bf:be:9c:6c:06:fe:
d4:46:a0:0e:1c:81:6c:10:6f:be:25:82:1b:38:71:8b:09:7e:
a0:e6:2c:e6:10:a1:5e:57:97:60:92:48:c3:a3:e8:d3:03:73:
8d:26:00:8c:5e:7a:86:7e:c2:fb:fd:2f:7b:37:c6:e9:b2:d5:
10:f3:c9:9d:22:8f:72:ff:ac:3d:73:f3:13:d7:b6:f6:d5:b4:
d1:45:d9:a6:b7:6a:31:6f:b8:59:e7:99:8b:3d:b4:9b:5e:7d:
78:6b:09:d6:d2:aa:5f:da:99:17:f8:7d:11:1f:1c:0e:cd:84:
ae:1b:b8:58:5f:76:55:c8:1e:c2:7e:bf:9d:57:d4:9d:9b:55:
d9:b2:10:29:d5:53:00:81:e8:1c:0e:6a:d4:56:1a:bb:8a:d0:
6f:cf:82:dd:39:e4:f4:bd:b4:30:cd:ee:28:6d:ba:97:99:50:
4c:7c:0e:e4:cf:33:ba:95:16:19:c6:ae:b2:93:a9:a8:c6:b9:
85:4d:95:97:4a:8c:03:ce:39:09:1d:e8:cd:1c:7b:50:39:c9:
40:a3:02:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org