Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HSAyFpJ_ga8vegcb2mqqE8F_RJY.roa
File: HSAyFpJ_ga8vegcb2mqqE8F_RJY.roa (raw, json)
Hash identifier: JVNCPMyCoJgYvMzaTMRQ/RzmspVBYYMe6XnHxIraMnw=
Subject key identifier: 1D:20:32:16:92:7F:81:AF:2F:7A:07:1B:DA:6A:AA:13:C1:7F:44:96
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0189BD02B4197E0965748A999FAEDCD0BE91
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HSAyFpJ_ga8vegcb2mqqE8F_RJY.roa
Signing time: Thu 03 Aug 2023 20:06:58 +0000
ROA not before: Thu 03 Aug 2023 20:06:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 62.60.220.0/22 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.148.0/22 maxlen: 24
213.176.121.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
62.60.180.0/22 maxlen: 24
62.60.184.0/22 maxlen: 24
62.60.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 08:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bd:02:b4:19:7e:09:65:74:8a:99:9f:ae:dc:d0:be:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 3 20:06:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d203216927f81af2f7a071bda6aaa13c17f4496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ed:29:e9:e5:a3:8a:31:ec:0c:49:ee:52:9c:
d4:6d:25:36:a4:aa:55:22:f1:00:72:33:72:db:3b:
bc:43:0b:dd:ec:3d:31:da:79:cf:b9:18:a8:85:b5:
89:68:97:88:ef:ef:d7:19:95:b0:fd:1c:8e:48:74:
72:63:30:84:28:1a:92:64:be:70:ef:ac:7a:0e:c3:
bf:7a:14:c1:a8:0a:72:1c:71:d0:34:c9:33:d9:dd:
04:15:36:4f:e0:ff:cb:5e:6a:5e:b3:e3:cb:f3:83:
1c:84:f4:dc:bf:51:f5:e2:ca:53:53:61:68:6e:82:
30:19:5e:a3:ec:72:4d:1d:cd:7a:49:80:4b:5b:af:
49:88:ac:7f:b7:f5:42:15:c0:17:15:94:ac:f0:8b:
e9:ab:92:2c:0b:85:7c:ae:36:b5:34:c6:91:1f:67:
73:f8:ab:83:ac:d2:f0:4d:92:b5:2d:fe:2c:48:25:
09:ee:83:42:92:57:18:94:c4:98:68:c7:5f:27:d9:
f8:80:b6:29:1c:d8:c1:57:e5:f4:74:d2:10:76:f5:
8d:85:98:27:68:9a:c2:6b:e2:1e:8a:f2:50:4c:4e:
93:c0:ef:54:b2:66:c6:e6:50:7e:da:62:10:0a:a9:
63:40:46:92:6f:ac:31:85:98:ee:f9:6a:56:7c:2c:
9a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:20:32:16:92:7F:81:AF:2F:7A:07:1B:DA:6A:AA:13:C1:7F:44:96
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/HSAyFpJ_ga8vegcb2mqqE8F_RJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.147.0-62.60.151.255
62.60.180.0-62.60.191.255
62.60.220.0/22
213.176.121.0/24
213.176.127.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:12:62:38:64:c4:b3:09:7f:5c:c3:7f:81:2b:09:a7:5f:5c:
19:83:97:0b:de:5e:d0:ca:84:e2:f7:c0:33:1c:88:5c:98:b5:
d8:bb:18:52:00:e9:6b:4a:ef:a0:2a:f5:10:7b:48:2d:da:b2:
69:c1:f3:f8:45:60:f2:7f:05:ba:ac:11:13:e0:8e:9c:ab:0c:
68:e9:45:8e:69:b8:d7:a9:e8:d2:a3:ee:4f:83:83:4f:f4:de:
32:e8:d7:13:d8:7f:0f:53:77:fd:14:88:37:cb:36:57:47:3b:
6e:e5:42:15:d5:41:77:20:0f:59:f8:1b:84:31:d3:6d:b5:04:
00:b4:39:3e:ed:af:47:a3:33:b1:cc:ef:8d:25:e2:0b:00:d1:
85:5f:3d:3d:e3:4a:87:ca:f5:0f:bc:45:c2:0c:d4:a3:83:fd:
86:ca:7b:c3:46:14:bd:60:da:b4:9d:1a:f0:c3:5e:ae:e0:e4:
cd:c3:e0:5b:ff:e3:5d:71:f3:38:97:ca:e3:45:77:79:c6:fb:
80:c8:80:01:28:19:e6:74:87:f9:03:e0:5f:b0:ec:83:d2:37:
7e:05:e4:90:4f:86:06:eb:8c:b4:b9:a4:59:9e:51:39:fc:10:
fe:08:a8:7c:20:1c:99:67:32:cb:f7:5f:63:7d:36:bc:b2:77:
17:a0:fe:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org