Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/IV10ZVQ7qGqw_Mj99hFtBNBKCoo.roa
File: IV10ZVQ7qGqw_Mj99hFtBNBKCoo.roa (raw, json)
Hash identifier: 6PsFfrBfddvL3uOfbbLLvG+CrMAB6yzDmIpbLCKskUA=
Subject key identifier: 21:5D:74:65:54:3B:A8:6A:B0:FC:C8:FD:F6:11:6D:04:D0:4A:0A:8A
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018EEACD980BE208B789360A5986BE78D67B
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/IV10ZVQ7qGqw_Mj99hFtBNBKCoo.roa
Signing time: Wed 17 Apr 2024 06:45:26 +0000
ROA not before: Wed 17 Apr 2024 06:45:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44947
IP address blocks: 62.60.216.0/22 maxlen: 24
62.60.224.0/19 maxlen: 24
213.176.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 12:11:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ea:cd:98:0b:e2:08:b7:89:36:0a:59:86:be:78:d6:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Apr 17 06:45:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=215d7465543ba86ab0fcc8fdf6116d04d04a0a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:68:26:b5:d5:27:0e:bd:f8:4e:fd:26:5e:e8:
01:a8:c5:b4:2a:0a:7d:90:f3:ee:30:51:8e:bb:7d:
67:d6:d3:bb:b9:ee:a8:7f:fb:1b:0c:98:54:44:5c:
4f:8b:10:5c:3b:af:6e:14:ca:77:14:aa:b8:e3:7d:
2b:a9:04:1c:55:10:ba:96:b8:52:00:7e:aa:a0:57:
5e:6c:37:8d:ce:b1:e9:d5:3e:29:e5:00:7c:ed:cb:
41:b3:f2:37:8f:35:c0:c6:db:8c:bd:ed:59:39:51:
9d:1b:fd:5b:2a:95:43:a6:6e:f0:81:8d:5c:53:c3:
35:31:25:79:52:75:21:71:0b:79:61:64:65:70:c5:
16:c9:53:60:c2:aa:1d:27:ef:86:bf:50:00:05:85:
55:6e:b4:e8:4a:10:a0:26:0c:9a:74:bd:bf:88:84:
8a:dd:20:dc:6f:6e:cb:8e:14:aa:95:8e:61:fd:d8:
e3:f0:9e:f8:35:4b:e5:f4:d0:15:1b:e7:51:c0:9c:
40:5b:7b:a4:85:95:fd:ab:9c:a6:9b:2d:25:fc:4d:
36:9c:e4:cc:42:de:70:1f:7f:f4:ee:1f:1b:9a:1f:
56:b9:9b:e1:34:51:c1:41:92:23:a1:63:47:a1:8c:
10:4e:5a:c6:ec:22:43:e2:bb:41:f1:19:bf:be:f3:
1d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:5D:74:65:54:3B:A8:6A:B0:FC:C8:FD:F6:11:6D:04:D0:4A:0A:8A
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/IV10ZVQ7qGqw_Mj99hFtBNBKCoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.216.0/22
62.60.224.0/19
213.176.64.0/22
Signature Algorithm: sha256WithRSAEncryption
97:3a:3b:03:37:a1:0a:ae:98:30:04:04:6f:54:4c:a7:42:cd:
83:6f:06:ec:b3:35:d7:0d:9b:0c:18:1d:11:71:cc:be:33:46:
cb:3d:2b:55:08:0c:58:49:55:6e:c6:f5:63:ed:ae:e8:8e:bf:
dc:0f:08:df:44:fd:84:ab:6c:28:70:8b:6c:55:16:7f:72:e1:
c9:13:28:d5:43:b0:0a:a0:46:17:0c:81:eb:55:92:61:2a:e6:
e6:60:61:3e:2e:36:b5:b5:cc:2c:04:53:e8:a0:4d:8a:25:ad:
76:93:c9:8c:c2:da:42:ff:b3:5d:72:39:7f:f2:68:f2:d2:21:
00:af:9e:7b:a5:7b:0c:b1:dd:9d:a0:93:69:68:75:45:7a:b9:
6a:7b:d7:95:f4:d4:84:eb:41:b2:06:c5:1e:66:99:a3:4b:46:
40:9a:39:bf:af:50:92:ad:3d:fe:4f:bd:30:ad:59:cf:a0:92:
7d:7a:c6:b8:34:93:4e:9f:3b:ed:2f:1b:1b:2b:4a:9b:65:86:
c6:cd:64:6b:99:d4:3b:92:bd:52:ff:c2:6f:6c:4e:b1:52:98:
1b:9a:ce:65:7e:c3:91:c9:31:fa:70:c5:7f:2f:65:34:2b:71:
c0:35:c9:df:0e:99:60:e7:ea:b1:4c:fa:56:a4:e3:97:24:e3:
25:7f:47:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org