Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/XyZU6u017POVgdubTFOAFHEjYVE.roa
File: XyZU6u017POVgdubTFOAFHEjYVE.roa (raw, json)
Hash identifier: tQq/zTTRrCFMDihoqWPomrRbzFwRWtlGiMVtz9kUWfs=
Subject key identifier: 5F:26:54:EA:ED:35:EC:F3:95:81:DB:9B:4C:53:80:14:71:23:61:51
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018B05128D68D9058C3360D01486574A56D3
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/XyZU6u017POVgdubTFOAFHEjYVE.roa
Signing time: Fri 06 Oct 2023 12:59:43 +0000
ROA not before: Fri 06 Oct 2023 12:59:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.188.0/22 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.148.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
213.176.126.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Oct 2023 13:02:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:05:12:8d:68:d9:05:8c:33:60:d0:14:86:57:4a:56:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Oct 6 12:59:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f2654eaed35ecf39581db9b4c53801471236151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6c:14:06:e0:81:92:07:86:47:59:8f:a2:7c:
39:fb:0f:9d:45:c6:49:26:08:f8:be:0c:12:79:cc:
a4:5f:79:a7:db:68:b8:fb:53:c7:80:30:44:08:74:
05:15:80:15:c0:dd:4d:cc:44:0f:52:40:0e:84:91:
eb:21:c5:41:f3:59:8d:88:cc:c7:d1:71:38:b7:40:
a7:c2:f0:e5:07:d2:d6:77:80:fa:8a:7d:c6:db:c8:
17:de:19:13:3a:37:85:8f:cb:42:e0:85:bb:ba:6d:
b5:6e:90:01:77:42:80:0c:0f:56:1f:e8:d8:82:54:
46:ec:89:5d:61:10:7c:9b:1e:71:78:57:11:68:cf:
2c:46:d1:c6:98:24:8c:4f:41:d8:84:21:8e:18:ca:
56:84:82:c8:bd:b6:7f:10:22:fe:7b:28:ce:bd:a4:
e8:58:ac:96:c5:7b:e9:dc:11:b4:86:b4:ec:9f:41:
63:a0:d0:5c:4c:da:df:b3:f5:39:95:1a:e3:e8:1d:
ae:94:86:27:bd:53:1a:66:bb:f6:1d:f7:58:5b:75:
63:f4:d3:01:08:0e:2d:26:6f:91:5e:55:f8:04:43:
16:61:df:f2:ae:28:b6:fd:ae:aa:22:87:91:00:e3:
26:97:c8:e1:67:ff:8a:a9:a9:a0:7a:3e:cd:f7:64:
44:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:26:54:EA:ED:35:EC:F3:95:81:DB:9B:4C:53:80:14:71:23:61:51
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/XyZU6u017POVgdubTFOAFHEjYVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.142.255
62.60.145.0/24
62.60.147.0-62.60.151.255
62.60.168.0/21
62.60.188.0/22
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.127.255
Signature Algorithm: sha256WithRSAEncryption
3d:87:53:0b:66:62:7e:57:2d:a2:51:33:32:2b:1a:37:85:1a:
d9:52:cc:c4:07:3d:ed:df:ec:53:05:86:cf:93:55:52:84:ad:
11:77:0f:0b:c6:b7:33:33:e2:f3:22:1c:38:d0:12:e7:7f:24:
25:09:b2:8a:81:b3:36:f9:67:54:3e:e7:93:9b:dd:42:bf:e2:
3e:a8:9a:1b:19:69:93:c7:40:d5:6a:6f:3f:b9:85:48:b9:5c:
83:dd:0d:6b:e8:b8:ae:93:af:77:a3:98:7b:82:e4:c9:6a:fe:
f1:46:67:f5:1e:30:48:02:fd:6a:f5:d3:74:f7:52:09:c3:ba:
be:b0:5d:11:57:cb:bf:2b:5f:9e:d9:02:7a:0b:0c:8b:2d:7a:
12:5a:b8:26:71:88:7e:9c:4c:c2:e1:2c:2c:bb:ca:56:aa:20:
a1:49:e1:3b:6d:96:37:e4:e3:c1:dd:69:95:e0:9c:bb:76:92:
e5:b1:38:66:fd:41:c8:4c:7e:9d:67:9d:cc:7c:c4:9d:a3:5e:
98:fb:3c:de:05:3a:47:fe:ab:c0:ea:ec:37:02:fb:0d:dc:ac:
c4:59:a4:9c:11:01:30:09:ca:f7:e8:3d:cb:55:95:4a:c6:97:
33:4d:a5:db:70:39:a7:e7:cd:c0:66:f8:3c:95:a2:9d:00:c8:
9c:8d:d2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org