Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AjIeVqYkhoXn4Gs0mONEhX1aAzk.roa
File: AjIeVqYkhoXn4Gs0mONEhX1aAzk.roa (raw, json)
Hash identifier: vq2i7R/XTlPJ5l0Li11hk2GuKiCdSdOFXhylS9RLbFQ=
Subject key identifier: 02:32:1E:56:A6:24:86:85:E7:E0:6B:34:98:E3:44:85:7D:5A:03:39
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018CCA29C13672E7DF989A18FC2905681A79
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AjIeVqYkhoXn4Gs0mONEhX1aAzk.roa
Signing time: Tue 02 Jan 2024 12:33:03 +0000
ROA not before: Tue 02 Jan 2024 12:33:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35372
IP address blocks: 62.60.138.0/24 maxlen: 24
62.60.144.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.160.0/22 maxlen: 24
213.176.0.0/24 maxlen: 24
213.176.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:c1:36:72:e7:df:98:9a:18:fc:29:05:68:1a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 2 12:33:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02321e56a6248685e7e06b3498e344857d5a0339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:f2:21:08:4b:ae:00:7e:e8:4a:ad:4a:21:
c2:da:70:4b:a4:4e:0a:d1:66:1e:a7:52:d9:95:9d:
b5:15:0e:a4:8a:00:e0:60:24:2e:70:56:72:db:3e:
9d:f5:d3:58:20:3d:2f:0b:df:5a:be:3b:35:2f:62:
12:a9:73:01:ed:2a:d7:9b:d4:c2:59:43:b5:ba:1c:
4a:60:bb:51:33:96:89:2c:29:81:26:a6:19:0f:13:
0d:ac:84:ae:bf:89:7a:44:2c:e8:95:41:ad:d7:aa:
d2:0f:67:4b:b4:7b:16:91:b5:e3:c6:2e:97:05:8c:
8d:b6:ab:6c:d2:0b:b6:61:d7:03:d6:b7:11:aa:05:
5c:e8:b6:02:c5:30:0f:0a:c3:a7:5f:a2:6c:13:e1:
b5:ef:c9:c0:0d:e1:16:76:00:71:d5:29:45:44:06:
ab:0d:d0:2b:6d:7e:57:63:b1:9c:5a:25:db:f3:c1:
e2:eb:4a:f2:09:e5:e4:74:a0:2e:f0:a8:02:53:bc:
c6:4d:a3:d6:42:7b:52:9f:40:6a:9f:07:d5:0f:5f:
60:b4:07:93:9c:a7:5a:ec:89:fd:f5:1d:57:f4:e8:
32:19:19:93:3f:f4:98:78:82:d6:0f:36:ed:3f:70:
22:ca:85:ea:01:25:20:ab:5c:23:a6:08:c4:b4:9b:
78:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:32:1E:56:A6:24:86:85:E7:E0:6B:34:98:E3:44:85:7D:5A:03:39
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/AjIeVqYkhoXn4Gs0mONEhX1aAzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.138.0/24
62.60.144.0/24
62.60.147.0/24
62.60.160.0/22
213.176.0.0/24
213.176.7.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:45:41:bb:5c:0d:75:cc:5a:c2:46:b7:b8:03:12:49:3c:9e:
b7:11:79:08:a7:d3:84:a0:13:a5:da:45:48:7e:f2:f3:55:d1:
71:f1:78:e3:58:5f:ab:cd:5c:7a:cc:d8:7e:3f:27:06:77:8e:
20:8b:cb:a4:d5:4d:c4:e6:a7:41:a4:64:81:01:19:0f:7b:70:
0e:f8:0d:60:d8:2e:52:48:b8:36:d2:4b:df:98:54:d3:13:01:
e4:62:34:29:87:48:f7:96:b3:b0:7f:2c:2f:89:2c:b2:c2:b4:
f1:52:b5:32:17:c5:7e:06:66:a2:d4:00:21:84:91:93:d9:04:
35:4f:3c:0d:af:03:76:0a:1f:c1:d0:b0:67:83:c7:e8:d3:a1:
95:d4:46:3f:fe:44:c2:e1:8d:21:26:32:22:b8:2f:51:aa:a4:
1d:17:b6:cd:e7:3a:55:e7:48:f8:e5:84:13:69:5f:df:14:85:
f7:4b:25:4b:06:9d:fe:07:73:0d:9e:67:df:26:5c:83:a2:95:
a5:57:28:aa:80:93:45:35:0d:f6:42:99:ed:d9:4d:4f:a7:ae:
c9:08:9d:7b:65:68:0c:e7:d3:72:06:64:58:42:10:89:1e:12:
b5:a5:0a:59:c7:45:d1:dc:40:2e:0b:c1:d4:94:85:3e:30:a0:
b8:9c:26:08
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYzKKcE2cuffmJoY/CkFaBp5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjQwMTAyMTIzMzAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjMyMWU1NmE2MjQ4Njg1ZTdlMDZiMzQ5OGUzNDQ4NTdkNWEwMzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/jyIQhLrgB+6EqtSiHC2nBLpE4K
0WYep1LZlZ21FQ6kigDgYCQucFZy2z6d9dNYID0vC99avjs1L2ISqXMB7SrXm9TC
WUO1uhxKYLtRM5aJLCmBJqYZDxMNrISuv4l6RCzolUGt16rSD2dLtHsWkbXjxi6X
BYyNtqts0gu2YdcD1rcRqgVc6LYCxTAPCsOnX6JsE+G178nADeEWdgBx1SlFRAar
DdArbX5XY7GcWiXb88Hi60ryCeXkdKAu8KgCU7zGTaPWQntSn0BqnwfVD19gtAeT
nKda7In99R1X9OgyGRmTP/SYeILWDzbtP3AiyoXqASUgq1wjpgjEtJt4NwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFAIyHlamJIaF5+BrNJjjRIV9WgM5MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvQWpJZVZxWWtob1huNEdzMG1PTkVoWDFhQXprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAPjyKAwQA
PjyQAwQAPjyTAwQCPjygAwQA1bAAAwQA1bAHMA0GCSqGSIb3DQEBCwUAA4IBAQBs
RUG7XA11zFrCRre4AxJJPJ63EXkIp9OEoBOl2kVIfvLzVdFx8XjjWF+rzVx6zNh+
PycGd44gi8uk1U3E5qdBpGSBARkPe3AO+A1g2C5SSLg20kvfmFTTEwHkYjQph0j3
lrOwfywviSyywrTxUrUyF8V+Bmai1AAhhJGT2QQ1TzwNrwN2Ch/B0LBng8fo06GV
1EY//kTC4Y0hJjIiuC9RqqQdF7bN5zpV50j45YQTaV/fFIX3SyVLBp3+B3MNnmff
JlyDopWlVyiqgJNFNQ32Qpnt2U1Pp67JCJ17ZWgM59NyBmRYQhCJHhK1pQpZx0XR
3EAuC8HUlIU+MKC4nCYI
-----END CERTIFICATE-----
Generated at Wed Jan 3 21:11:27 2024 by rpki-client on console-fra.rpki-client.org