Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/aobx2xVandpvUjJ00XGtYvAzTm8.roa
File: aobx2xVandpvUjJ00XGtYvAzTm8.roa (raw, json)
Hash identifier: H38gW8yXfRdntuilMHxWpBcvOTgUpf+00elTVfelFNo=
Subject key identifier: 6A:86:F1:DB:15:5A:9D:DA:6F:52:32:74:D1:71:AD:62:F0:33:4E:6F
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018585F3221F945D96F57A5BBEBDFA0EB267
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/aobx2xVandpvUjJ00XGtYvAzTm8.roa
Signing time: Fri 06 Jan 2023 07:19:41 +0000
ROA not before: Fri 06 Jan 2023 07:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 62.60.220.0/22 maxlen: 24
213.176.64.0/22 maxlen: 24
213.176.88.0/22 maxlen: 24
213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
213.176.20.0/22 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Jan 2023 05:28:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:85:f3:22:1f:94:5d:96:f5:7a:5b:be:bd:fa:0e:b2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 6 07:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a86f1db155a9dda6f523274d171ad62f0334e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:c4:33:89:58:0e:05:b7:17:24:22:62:34:
ac:ac:67:11:40:26:aa:5b:fb:cc:5e:f2:e7:85:b6:
fa:3a:14:2d:e3:f6:79:f5:6f:03:d7:b6:bc:f0:cf:
0b:f5:1e:ac:3f:fa:f0:5b:ff:a9:ab:78:0f:5c:96:
13:7c:82:99:fe:20:a5:74:74:a9:91:fb:98:b5:f9:
b1:da:95:aa:c7:91:95:b0:d1:a5:6b:16:c4:ec:25:
b8:13:7c:31:1a:39:62:1a:6e:ce:90:ca:c1:66:fc:
ef:5d:f3:f0:c7:26:77:61:db:d7:36:72:16:07:0c:
84:ee:21:e6:93:33:dc:e7:37:97:b8:35:4f:63:ad:
aa:c7:8d:3f:9a:2f:31:58:8d:98:65:a5:01:c6:a4:
e5:fc:da:5a:0f:4f:21:0d:48:05:cc:00:e9:b7:7a:
f2:45:eb:33:ed:3f:f8:10:38:e0:a0:e7:53:c6:44:
97:f6:27:57:0c:74:dd:a2:8f:c5:11:6e:a6:05:98:
0f:56:17:3f:00:9d:23:33:f0:1b:2d:81:2b:3f:6a:
ff:e1:38:1b:63:99:01:6c:13:f3:b5:14:09:47:2c:
79:4f:d8:db:b1:fb:60:ca:ff:53:ea:17:a0:06:31:
c1:11:00:c6:2b:10:4b:78:00:f5:89:b5:aa:40:8c:
75:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:86:F1:DB:15:5A:9D:DA:6F:52:32:74:D1:71:AD:62:F0:33:4E:6F
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/aobx2xVandpvUjJ00XGtYvAzTm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.152.0/22
62.60.208.0/22
62.60.220.0/22
213.176.4.0/23
213.176.20.0/22
213.176.64.0/22
213.176.88.0/22
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
70:0d:39:a2:2a:a4:dc:22:b3:a1:81:5f:9c:d2:e5:d4:4e:3f:
15:e3:c7:46:8c:da:1a:e9:82:d3:51:d1:72:1c:b6:50:6d:bb:
cc:a8:dc:74:c0:30:1d:de:8e:96:41:c0:f5:0e:1f:77:8a:65:
0e:37:d9:0d:f0:7b:b8:02:39:c5:97:8b:e5:b0:19:b4:c2:53:
01:7e:43:d4:a8:09:10:45:61:87:1c:b9:0c:35:a4:f4:50:40:
19:f9:75:f9:2e:55:50:42:12:23:44:39:d7:79:7c:3f:b4:5c:
5f:6a:13:5e:03:62:01:54:b7:ca:36:cb:cf:6f:e3:14:cd:88:
d5:84:d2:36:48:fc:4a:9b:66:6f:96:a7:40:b3:6d:0f:c2:3c:
e7:bd:9e:3f:e8:27:8e:0c:fd:47:58:36:55:06:6e:e4:a3:76:
42:de:3c:a4:ec:74:41:d7:02:60:7d:a2:01:4a:b5:45:d0:c0:
88:18:80:7b:a4:c6:9d:fb:2f:f5:41:e6:3b:03:7e:1d:b9:9c:
bd:6f:64:b7:18:69:9c:a2:ba:bc:df:43:d5:fc:ec:0b:96:d8:
fa:09:ca:0b:9b:56:3e:fd:67:48:17:34:b9:5d:f2:fe:16:b4:
30:ca:0b:09:ea:2d:04:2d:8b:bc:a1:ae:8a:c6:78:1c:f6:b8:
5a:95:64:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org