Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/95mWXVGS9AeUFTbwBqsclp2_Wvc.roa
File: 95mWXVGS9AeUFTbwBqsclp2_Wvc.roa (raw, json)
Hash identifier: h04E66dHR1JaHLxcf9GGgAOviODZ1Ic0IcUvSpzI1SU=
Subject key identifier: F7:99:96:5D:51:92:F4:07:94:15:36:F0:06:AB:1C:96:9D:BF:5A:F7
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 019049083AB97732D882C3DDB2777F508850
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/95mWXVGS9AeUFTbwBqsclp2_Wvc.roa
Signing time: Mon 24 Jun 2024 06:56:34 +0000
ROA not before: Mon 24 Jun 2024 06:56:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40940
IP address blocks: 62.60.216.0/23 maxlen: 24
213.176.72.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 06:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:49:08:3a:b9:77:32:d8:82:c3:dd:b2:77:7f:50:88:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 24 06:56:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f799965d5192f407941536f006ab1c969dbf5af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:89:af:dc:15:3f:a6:60:18:c3:91:ac:00:25:
dc:ba:84:d7:fd:6e:19:c5:20:5b:24:48:86:ce:df:
f9:50:70:bf:96:47:b4:8c:c5:66:08:32:ff:16:1e:
b4:a1:e0:2c:a3:8e:b6:01:92:5d:13:f9:cd:e6:2c:
16:ad:92:59:df:6d:a8:d4:47:01:a5:bc:06:73:e3:
3f:c4:20:5a:ff:a1:d0:9e:f0:f9:fd:77:ea:62:0f:
93:98:c2:63:8f:0d:22:6f:72:c2:43:5f:f2:c5:52:
2e:06:06:76:b4:ee:78:73:14:07:b8:ac:8c:cd:65:
fc:3c:24:d2:d1:3a:1a:25:5d:92:ad:ce:12:af:72:
bd:e3:55:be:99:0f:48:4e:f0:19:fb:89:c4:2a:60:
77:0c:f7:5a:2d:ad:1f:68:6d:c9:8e:c5:3f:58:35:
ab:d9:9a:4f:50:dd:47:51:d7:6d:89:fa:5c:b2:28:
02:e5:6c:e1:5f:0f:d3:22:ff:fe:14:ca:6b:5b:b7:
e7:bf:28:ea:64:48:ab:18:48:c5:fc:60:4b:57:af:
63:d9:98:d9:ba:ba:1d:1b:7f:f8:75:02:20:5e:11:
a1:bf:cd:ab:76:a5:cf:b3:de:ab:9b:29:83:0f:42:
97:a2:76:cd:6a:fe:5a:23:33:1f:7b:46:19:b2:d9:
d5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:99:96:5D:51:92:F4:07:94:15:36:F0:06:AB:1C:96:9D:BF:5A:F7
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/95mWXVGS9AeUFTbwBqsclp2_Wvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.216.0/23
213.176.72.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:d4:b4:38:3a:04:23:e2:e5:77:10:46:f4:2c:7c:d0:5f:87:
74:25:be:b0:0c:97:bf:27:79:d1:8b:f5:7a:ba:96:7f:be:38:
6d:9e:e0:83:29:04:f0:3a:1c:3f:0f:45:1e:f3:41:12:63:40:
0a:b7:27:86:9d:c4:71:fb:b3:ff:14:ad:44:c2:64:a2:a9:ba:
2e:97:28:3a:fa:75:1c:a2:07:f7:0e:82:73:83:de:69:7d:7b:
91:28:2f:70:e9:95:2f:89:9e:dd:c8:4b:38:86:fa:44:61:d5:
89:52:87:99:f5:13:99:fc:71:70:ed:13:ee:94:8d:53:e9:8c:
be:9d:b7:e8:a5:cd:37:de:84:e8:2a:7f:2e:1f:10:25:40:21:
b9:c2:04:eb:01:9c:85:1a:4d:bb:46:2f:50:54:df:07:e1:ca:
55:1d:8b:00:de:8a:15:3d:8b:13:54:c0:ad:60:2c:44:17:71:
ba:e3:cf:fb:63:ee:2c:23:77:34:bf:e0:b7:db:1f:67:e8:40:
71:d6:c5:f3:da:8f:b0:4b:1e:e9:4d:2d:f6:98:27:27:c7:0c:
2e:46:5a:3c:18:b2:12:24:96:44:a5:48:73:08:ba:09:9f:45:
6e:fd:4e:8b:57:07:f6:c8:73:c1:86:bc:7a:6c:a0:d0:f8:46:
ef:57:a3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 12:08:03 2024 by rpki-client on console-fra.rpki-client.org