Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/JqY6GK7-ADGdXnwD01hNAOpTRRY.roa
File: JqY6GK7-ADGdXnwD01hNAOpTRRY.roa (raw, json)
Hash identifier: rU5R+vsDMlFPoynEkOyz/R5CPhBzcezDsS7QvtSc74c=
Subject key identifier: 26:A6:3A:18:AE:FE:00:31:9D:5E:7C:03:D3:58:4D:00:EA:53:45:16
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018570B06D7AFE3E8030929C6C9416021450
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/JqY6GK7-ADGdXnwD01hNAOpTRRY.roa
Signing time: Mon 02 Jan 2023 04:14:48 +0000
ROA not before: Mon 02 Jan 2023 04:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 07:19:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:6d:7a:fe:3e:80:30:92:9c:6c:94:16:02:14:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 2 04:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26a63a18aefe00319d5e7c03d3584d00ea534516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:1c:ca:e7:e3:25:13:cb:f2:52:e5:9c:d1:
de:e8:c1:a9:b4:ba:22:25:a0:84:38:4d:4b:88:8e:
fb:bd:45:80:75:fa:a8:3c:2c:02:e2:30:5e:41:64:
1f:24:61:53:df:25:3c:44:a1:75:1f:29:38:10:27:
d4:36:77:f6:37:be:53:cc:e8:d7:d3:4c:cf:fa:f6:
34:b5:73:bf:ed:21:dc:ba:eb:f8:17:e4:3d:8f:60:
e3:2d:0c:72:99:16:66:18:9e:54:13:16:e2:7a:c2:
78:0a:cc:0f:01:0f:e4:f3:78:3e:7a:5e:6d:a6:b5:
b6:c8:25:55:93:ba:1c:b0:a0:a7:92:8c:3e:da:78:
a9:1f:61:ea:d0:4e:c2:7d:f4:cd:d1:72:b4:1e:39:
c3:b9:f3:24:b3:e6:db:d8:1b:2f:80:9e:9d:bf:0d:
b4:2e:f7:fb:1a:90:21:aa:30:5e:8d:96:1c:2f:a8:
04:e4:8b:df:7f:ad:5d:0d:2c:5f:8f:0e:51:5b:ac:
92:99:45:b3:ad:10:ca:dc:34:9b:c8:28:08:5e:c9:
6d:c7:28:e2:04:98:fb:17:2b:ba:75:1b:ea:5a:24:
f5:eb:ec:bf:4e:78:73:e3:4c:44:54:57:49:e4:c3:
bb:a6:e5:3f:04:b9:37:fe:0e:31:25:a9:48:c8:29:
cc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A6:3A:18:AE:FE:00:31:9D:5E:7C:03:D3:58:4D:00:EA:53:45:16
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/JqY6GK7-ADGdXnwD01hNAOpTRRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.152.0/22
62.60.208.0/22
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
5a:28:e4:58:c4:cb:35:34:44:b8:f1:f0:57:41:f2:cb:8c:99:
e5:05:c6:b5:1a:d0:da:fe:80:09:80:32:08:45:c0:c8:e7:ed:
8f:a0:93:fe:a1:53:32:44:b3:a7:71:0a:cf:1f:53:3d:50:0b:
36:62:e6:06:e5:56:48:c7:67:f6:51:8b:00:b2:a7:01:76:c3:
b1:47:e3:cb:c4:8e:cd:4a:62:ba:8c:b3:60:c0:17:34:e4:93:
e7:fa:45:61:92:1d:1e:c6:1d:61:92:a8:a6:9b:50:ed:a9:51:
9e:e6:4f:6f:38:0a:9f:82:7a:b6:71:0d:38:71:b7:7f:ba:09:
9c:34:ca:dd:7b:77:38:8f:46:12:e2:46:8e:fe:19:11:cf:f4:
7f:73:60:8f:66:5b:31:9f:ae:a7:46:24:de:fc:22:4d:10:d3:
75:02:e9:b8:07:b3:dd:d5:41:10:5b:24:73:67:32:09:0d:b8:
c4:79:c1:60:73:95:4b:b6:4b:3e:67:e7:9e:5e:28:dd:7a:34:
72:52:34:5a:b4:34:a5:3d:4a:cb:78:cc:2a:bd:31:04:7f:f4:
10:bd:fa:e7:34:9e:aa:56:8a:6d:5e:21:1c:41:15:2c:1c:7a:
23:4e:e4:0f:2b:29:73:52:9b:b1:17:39:29:3d:6f:2f:fd:b2:
c9:61:86:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org