Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AJaEjZzRgi9qv6wMtJkfMUywDvU.roa
File: AJaEjZzRgi9qv6wMtJkfMUywDvU.roa (raw, json)
Hash identifier: W1nZBDP+xVHkOO59muOLPXlQG1tCt0sJQ4iHJC1BPRo=
Subject key identifier: 00:96:84:8D:9C:D1:82:2F:6A:BF:AC:0C:B4:99:1F:31:4C:B0:0E:F5
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018FE85914D4EA17DA59C1437417E4B7098F
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AJaEjZzRgi9qv6wMtJkfMUywDvU.roa
Signing time: Wed 05 Jun 2024 12:21:43 +0000
ROA not before: Wed 05 Jun 2024 12:21:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 62.60.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 06:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:59:14:d4:ea:17:da:59:c1:43:74:17:e4:b7:09:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 5 12:21:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0096848d9cd1822f6abfac0cb4991f314cb00ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:63:84:d2:f3:7d:c6:58:88:7a:b4:df:08:b1:
28:b0:e9:19:67:43:4c:3c:f5:d8:13:15:32:c7:80:
40:5d:7c:ba:7a:b3:5f:ac:7e:56:06:52:f9:21:ec:
53:a2:20:db:7f:f3:13:43:0e:5a:62:cd:eb:46:bb:
ae:71:2e:e1:86:28:ae:0a:4e:4f:20:59:41:b2:e4:
90:d7:75:e1:76:02:04:64:75:96:6c:05:ad:fe:da:
df:93:19:23:93:66:d0:25:19:41:f2:91:4a:74:35:
3d:66:ff:b3:1b:34:14:74:ee:d1:7e:c6:62:dd:50:
0d:d8:82:5f:78:49:ed:77:ef:3c:09:76:1f:72:23:
a7:6b:2b:09:b6:d0:08:6f:73:47:6f:e5:af:d6:c7:
ce:74:53:30:77:8f:81:cf:7f:c1:cf:79:97:8c:38:
4e:41:72:ac:1e:53:fa:05:2d:63:62:98:8a:a8:c4:
5c:27:e6:e8:b2:fd:d2:f2:95:b3:ff:0e:bb:60:ff:
5c:76:d8:53:79:1f:3e:79:5a:f4:85:00:8e:88:24:
14:be:d3:52:bf:e2:d3:e6:85:1f:4d:25:90:cc:05:
eb:5a:a1:69:2b:eb:10:b0:22:10:26:b1:d2:fc:09:
b2:23:76:66:9a:41:c0:fd:3b:10:ee:36:79:5b:58:
19:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:96:84:8D:9C:D1:82:2F:6A:BF:AC:0C:B4:99:1F:31:4C:B0:0E:F5
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AJaEjZzRgi9qv6wMtJkfMUywDvU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:fb:4d:bc:e3:b4:5c:ed:ce:2f:c4:5b:f4:56:f4:9b:b5:79:
cc:2e:f4:da:28:c0:80:3f:d1:e3:a7:90:be:2d:9e:52:10:9f:
04:de:cb:3d:e8:b4:8a:09:c3:ee:9d:62:93:83:fe:6a:85:78:
4e:63:16:02:19:af:ec:5d:db:15:43:ea:7b:bc:ef:9b:a3:e6:
3c:b0:c4:a0:65:5a:c5:a7:b4:26:ae:a0:87:24:4c:8b:b8:65:
2e:d2:c9:7a:1e:03:b0:f1:d8:bf:6d:bf:d4:d5:7f:7b:d6:6a:
e0:f8:0a:31:10:fb:ba:04:5f:56:77:2f:84:42:38:46:4b:42:
4b:f8:83:b5:4a:84:10:20:ae:cd:eb:5c:12:72:3c:e8:c9:64:
9f:e8:bc:79:e9:a3:9e:7b:08:1b:b8:b0:bc:4e:4f:35:ff:c4:
4f:15:80:ba:d9:48:ef:ab:4e:4d:52:92:35:da:92:8d:cf:11:
8c:67:55:e4:70:05:50:0f:31:94:eb:1e:dd:74:cb:05:b3:15:
51:ed:88:f4:7c:bd:44:5d:96:e9:69:d4:a6:8b:58:69:9a:76:
9d:3c:3a:2c:2d:94:95:d9:5d:24:82:1d:e4:87:8f:dd:bb:3c:
61:e0:b8:26:03:df:70:1b:e9:bc:d7:bf:a9:ca:25:1b:4a:5d:
3f:d4:71:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/oWRTU6hfaWcFDdBfktwmPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjQwNjA1MTIyMTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDk2ODQ4ZDljZDE4MjJmNmFiZmFjMGNiNDk5MWYzMTRjYjAwZWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGOE0vN9xliIerTfCLEosOkZZ0NM
PPXYExUyx4BAXXy6erNfrH5WBlL5IexToiDbf/MTQw5aYs3rRruucS7hhiiuCk5P
IFlBsuSQ13XhdgIEZHWWbAWt/trfkxkjk2bQJRlB8pFKdDU9Zv+zGzQUdO7RfsZi
3VAN2IJfeEntd+88CXYfciOnaysJttAIb3NHb+Wv1sfOdFMwd4+Bz3/Bz3mXjDhO
QXKsHlP6BS1jYpiKqMRcJ+bosv3S8pWz/w67YP9cdthTeR8+eVr0hQCOiCQUvtNS
v+LT5oUfTSWQzAXrWqFpK+sQsCIQJrHS/AmyI3ZmmkHA/TsQ7jZ5W1gZVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFACWhI2c0YIvar+sDLSZHzFMsA71MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvQUphRWpaelJnaTlxdjZ3TXRKa2ZNVXl3RHZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPjzEMA0G
CSqGSIb3DQEBCwUAA4IBAQAO+02847Rc7c4vxFv0VvSbtXnMLvTaKMCAP9Hjp5C+
LZ5SEJ8E3ss96LSKCcPunWKTg/5qhXhOYxYCGa/sXdsVQ+p7vO+bo+Y8sMSgZVrF
p7QmrqCHJEyLuGUu0sl6HgOw8di/bb/U1X971mrg+AoxEPu6BF9Wdy+EQjhGS0JL
+IO1SoQQIK7N61wScjzoyWSf6Lx56aOeewgbuLC8Tk81/8RPFYC62Ujvq05NUpI1
2pKNzxGMZ1XkcAVQDzGU6x7ddMsFsxVR7Yj0fL1EXZbpadSmi1hpmnadPDosLZSV
2V0kgh3kh4/duzxh4LgmA99wG+m817+pyiUbSl0/1HHp
-----END CERTIFICATE-----
Generated at Sat Aug 17 09:09:22 2024 by rpki-client on console-fra.rpki-client.org