Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/ZIjmM6bufVktvnuxfuWGKs3ezvw.roa
File: ZIjmM6bufVktvnuxfuWGKs3ezvw.roa (raw, json)
Hash identifier: nv1edo3mXX6xn36KsJ/Nse4p691WiI2Hn0k84x1tZwc=
Subject key identifier: 64:88:E6:33:A6:EE:7D:59:2D:BE:7B:B1:7E:E5:86:2A:CD:DE:CE:FC
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01908C2FC272CDCB71B7239877A040EF964F
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/ZIjmM6bufVktvnuxfuWGKs3ezvw.roa
Signing time: Sun 07 Jul 2024 07:54:18 +0000
ROA not before: Sun 07 Jul 2024 07:54:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15611
IP address blocks: 62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.224.0/24 maxlen: 24
62.60.225.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.96.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
2001:790::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Jul 2024 06:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8c:2f:c2:72:cd:cb:71:b7:23:98:77:a0:40:ef:96:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jul 7 07:54:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6488e633a6ee7d592dbe7bb17ee5862acddecefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ec:0e:d3:e3:43:34:6e:da:af:6c:aa:aa:4c:
19:de:d2:d3:c2:d3:d2:46:f9:58:59:98:4a:9f:3f:
9b:43:72:75:44:a7:64:1b:2f:4b:3d:2b:ed:42:e1:
4a:73:35:87:7d:86:6b:46:8f:74:e7:41:15:1a:17:
78:03:50:3e:98:4c:8b:3c:9e:99:5f:7b:69:98:2c:
4f:95:5b:9f:fa:16:94:81:84:94:fa:cd:69:27:eb:
c4:84:5c:e5:99:0d:b2:4e:ac:ac:d0:39:10:52:33:
26:a7:d5:55:31:62:9e:83:74:42:63:72:17:fc:d1:
b8:c3:e6:cf:71:f8:06:f9:43:94:7a:41:bd:2f:d9:
97:30:a1:75:a7:13:8a:0f:c7:a2:27:61:92:eb:be:
20:17:ad:dd:4a:c6:19:a1:91:1e:fb:0f:41:15:34:
53:f8:3d:82:ef:45:c0:29:21:7f:83:09:9b:cd:2e:
28:ab:b9:22:45:e5:b1:f8:2c:e4:d3:bd:79:16:68:
05:20:1c:93:18:58:63:f2:d9:16:87:c7:75:9e:d5:
56:29:71:ad:ac:b7:28:5e:2e:c5:2f:b6:aa:29:fd:
f6:53:38:8f:0e:a9:1a:9b:3e:8e:86:73:a8:b3:cd:
7a:db:a3:5e:ea:0f:65:00:80:f4:3a:4d:ed:4f:11:
e0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:88:E6:33:A6:EE:7D:59:2D:BE:7B:B1:7E:E5:86:2A:CD:DE:CE:FC
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/ZIjmM6bufVktvnuxfuWGKs3ezvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.140.255
62.60.142.0/24
62.60.145.0/24
62.60.147.0/24
62.60.168.0/21
62.60.224.0/23
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
IPv6:
2001:790::/32
Signature Algorithm: sha256WithRSAEncryption
a4:01:2c:eb:27:2b:fd:96:9d:33:c8:7c:fa:73:0f:5e:98:fa:
24:22:27:e9:9e:6f:23:42:0a:26:5e:11:e2:07:73:17:85:f6:
78:3b:7c:8f:07:67:6c:56:29:d9:43:da:e4:b7:c9:68:cf:b4:
63:7a:47:5b:4a:eb:5c:ed:7d:fe:b0:c8:f9:d1:9d:93:3c:48:
8b:1b:b3:2b:f5:17:fe:91:1d:37:88:94:7a:59:f8:e0:b3:2d:
7b:97:f1:98:11:05:b5:6c:91:21:c7:8a:d1:ae:dd:aa:de:29:
e1:64:81:6c:97:8d:01:9a:b2:da:7f:ee:dc:a2:54:b7:99:4f:
d6:25:29:c3:8b:a6:b0:5a:51:b0:bc:8b:dd:01:af:e1:b0:00:
70:78:04:59:0c:84:83:3c:03:fd:a3:29:86:d0:44:51:d9:f8:
fd:8a:14:7e:f1:b3:b9:79:a3:05:6a:74:7f:78:9e:84:31:d7:
b6:ea:67:c8:4f:9f:f6:6d:cf:c4:25:fc:f2:97:e8:e6:0c:d6:
14:9c:45:a3:1e:30:33:ac:52:18:87:66:a0:2f:9a:8b:85:d5:
87:21:bb:2a:c5:07:e1:1d:ca:e4:12:90:da:a9:ab:ff:e3:b2:
54:95:23:14:aa:6a:cb:55:54:19:77:d5:13:95:44:01:f0:f8:
0a:2b:07:0e
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgISAZCML8JyzctxtyOYd6BA75ZPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjQwNzA3MDc1NDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDg4ZTYzM2E2ZWU3ZDU5MmRiZTdiYjE3ZWU1ODYyYWNkZGVjZWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+wO0+NDNG7ar2yqqkwZ3tLTwtPS
RvlYWZhKnz+bQ3J1RKdkGy9LPSvtQuFKczWHfYZrRo9050EVGhd4A1A+mEyLPJ6Z
X3tpmCxPlVuf+haUgYSU+s1pJ+vEhFzlmQ2yTqys0DkQUjMmp9VVMWKeg3RCY3IX
/NG4w+bPcfgG+UOUekG9L9mXMKF1pxOKD8eiJ2GS674gF63dSsYZoZEe+w9BFTRT
+D2C70XAKSF/gwmbzS4oq7kiReWx+Czk0715FmgFIByTGFhj8tkWh8d1ntVWKXGt
rLcoXi7FL7aqKf32UziPDqkamz6OhnOos81626Ne6g9lAID0Ok3tTxHg7QIDAQAB
o4ICZjCCAmIwHQYDVR0OBBYEFGSI5jOm7n1ZLb57sX7lhirN3s78MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvWklqbU02YnVmVmt0dm51eGZ1V0dLczNlenZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUMAwDBAI+PIQD
BAE+PIgwDAMEAD48iwMEAD48jAMEAD48jgMEAD48kQMEAD48kwMEAz48qAMEAT48
4AMEAdWwBAMEANWwYDAMAwQB1bB6AwQB1bB8MA0EAgACMAcDBQAgAQeQMA0GCSqG
SIb3DQEBCwUAA4IBAQCkASzrJyv9lp0zyHz6cw9emPokIifpnm8jQgomXhHiB3MX
hfZ4O3yPB2dsVinZQ9rkt8loz7RjekdbSutc7X3+sMj50Z2TPEiLG7Mr9Rf+kR03
iJR6Wfjgsy17l/GYEQW1bJEhx4rRrt2q3inhZIFsl40BmrLaf+7colS3mU/WJSnD
i6awWlGwvIvdAa/hsABweARZDISDPAP9oymG0ERR2fj9ihR+8bO5eaMFanR/eJ6E
Mde26mfIT5/2bc/EJfzyl+jmDNYUnEWjHjAzrFIYh2agL5qLhdWHIbsqxQfhHcrk
EpDaqav/47JUlSMUqmrLVVQZd9UTlUQB8PgKKwcO
-----END CERTIFICATE-----
Generated at Wed Jul 17 08:08:13 2024 by rpki-client on console-fra.rpki-client.org