Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/DAYbk6h4WagcBXP-u4MV7XLogwQ.roa
File: DAYbk6h4WagcBXP-u4MV7XLogwQ.roa (raw, json)
Hash identifier: Ps2hsJZ5IArvZrBbDXmmWx+vZY3I2kUChypzW6OGtFo=
Subject key identifier: 0C:06:1B:93:A8:78:59:A8:1C:05:73:FE:BB:83:15:ED:72:E8:83:04
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018875D98EABC9F04CC57E849F3B154599F0
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/DAYbk6h4WagcBXP-u4MV7XLogwQ.roa
Signing time: Thu 01 Jun 2023 07:26:12 +0000
ROA not before: Thu 01 Jun 2023 07:26:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 07:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:d9:8e:ab:c9:f0:4c:c5:7e:84:9f:3b:15:45:99:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jun 1 07:26:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c061b93a87859a81c0573febb8315ed72e88304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9a:27:ea:26:53:30:47:54:63:b1:d7:b0:50:
51:96:b8:cd:72:01:f7:d3:c5:35:3c:ea:32:31:b1:
64:b8:a2:fa:9e:c0:ef:5f:04:ed:83:94:35:f9:18:
1f:4f:33:43:86:3a:80:63:9c:03:5a:99:7e:cc:8c:
12:39:19:d4:67:86:ef:99:51:aa:00:42:39:4f:b6:
24:a7:f2:d0:18:72:ea:b0:92:74:f7:b2:92:14:9d:
c8:9e:af:be:a1:1e:b9:d6:5a:61:53:5f:da:e0:aa:
b1:59:5f:7b:bd:ad:5a:26:65:26:30:59:0a:d7:0d:
76:57:41:34:ef:81:38:d9:7b:91:63:b0:5d:05:27:
24:db:35:6c:00:0d:a6:d4:6d:33:82:a7:35:ab:7c:
32:e7:ea:84:eb:11:d0:88:8d:e3:a2:67:83:ea:cc:
bf:22:82:b3:a5:3f:98:51:00:1b:4c:62:20:5f:81:
c8:59:20:ac:47:ae:43:af:66:c6:18:b6:03:c7:71:
a7:96:4e:aa:1b:40:3a:f8:34:0b:24:99:34:2a:0a:
ce:a3:b3:b3:78:d2:47:d2:fb:8f:1f:8b:1b:1f:9f:
82:07:fd:b2:fc:81:8f:8f:96:75:09:bb:b7:bb:05:
ca:e2:9e:08:20:5d:b3:96:8a:93:5e:63:39:5a:32:
3a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:06:1B:93:A8:78:59:A8:1C:05:73:FE:BB:83:15:ED:72:E8:83:04
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/DAYbk6h4WagcBXP-u4MV7XLogwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
c0:43:7b:20:64:5e:66:ac:56:c9:c3:07:ed:b5:eb:b6:43:21:
ae:80:e3:ed:46:95:8a:8c:ea:ff:39:22:90:0e:23:2f:cb:39:
b0:b6:40:45:a8:90:c4:8e:2e:36:3a:4e:76:4d:53:9f:c8:e2:
95:d4:91:61:fc:74:87:48:4a:27:00:a5:17:23:c6:b2:8d:72:
f4:86:09:98:59:dc:d9:63:55:fe:7a:f4:df:89:4e:1a:af:23:
b4:81:c9:da:89:f5:59:77:08:92:98:29:88:4a:5b:e5:31:3c:
48:be:1b:1b:95:e4:36:33:9a:e4:98:63:cf:b3:fb:4e:ac:ae:
9b:08:ab:5c:eb:56:6d:3a:0c:69:07:e5:b9:30:60:6e:74:d2:
25:60:b7:b7:94:83:87:0e:1c:e6:90:aa:00:b9:97:d4:1e:89:
62:23:04:9a:f0:96:2a:8f:04:25:2d:0f:e4:1d:5a:88:d6:b1:
63:2e:2c:76:5a:8c:85:55:ec:1b:7b:b7:1f:e9:60:c4:db:c8:
95:c9:a1:47:66:40:e0:86:51:ae:32:2f:72:0a:08:b5:eb:38:
e2:7d:d1:0d:37:d2:f1:90:9c:f9:ee:51:88:3a:73:e5:04:bc:
98:0f:16:e1:e2:3e:48:43:c1:55:5a:9f:5b:99:6b:38:d9:ca:
27:19:83:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org