Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/bWBtKZAyVMNuS1EUEcEdwl_v1Ds.roa
File: bWBtKZAyVMNuS1EUEcEdwl_v1Ds.roa (raw, json)
Hash identifier: uERsu2C9PF9AAso4hNA5ckbr4nEPtPfZsR+/ISt8SF8=
Subject key identifier: 6D:60:6D:29:90:32:54:C3:6E:4B:51:14:11:C1:1D:C2:5F:EF:D4:3B
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0186DBE5C65032015177597E6A95606FC3B3
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/bWBtKZAyVMNuS1EUEcEdwl_v1Ds.roa
Signing time: Mon 13 Mar 2023 16:55:14 +0000
ROA not before: Mon 13 Mar 2023 16:55:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.128.0/21 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.143.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.152.0/22 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Mar 2023 13:42:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:e5:c6:50:32:01:51:77:59:7e:6a:95:60:6f:c3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Mar 13 16:55:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d606d29903254c36e4b511411c11dc25fefd43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a7:30:2a:af:79:39:97:f1:71:7e:2d:4b:80:
18:ce:d7:ca:c4:41:39:fe:fa:25:c4:a5:19:9a:95:
c9:74:a6:c3:0b:0c:b3:79:be:61:9d:35:77:cc:75:
a4:e5:92:08:2f:0a:17:6a:1e:65:3b:cd:87:ce:7b:
f1:fc:09:33:66:93:d2:ab:c1:ed:54:8a:04:3b:12:
8b:56:41:9e:b9:a1:51:68:53:f8:d7:3b:25:19:04:
44:7c:2c:65:d2:3a:1f:8d:84:10:bd:88:62:19:da:
93:4e:97:6a:ef:03:f2:7e:97:a5:b2:00:e6:8a:70:
c0:65:e0:fd:b1:ac:a2:a4:11:87:93:1b:78:49:52:
9a:6d:5c:33:5a:5d:73:8b:c7:70:44:2d:04:7f:dd:
67:77:96:7c:a8:88:ee:f2:d2:aa:1b:67:10:82:e8:
91:92:03:50:4b:4a:eb:73:a0:cf:19:01:24:a4:24:
60:c9:67:46:33:95:e8:5a:4f:c6:d8:30:10:15:ae:
66:94:cb:bf:93:11:cd:e8:14:78:90:66:4c:22:be:
6b:3e:d9:d2:27:56:8d:dd:58:b7:08:28:69:3c:c8:
77:c8:c9:b9:0b:c8:b7:ac:c7:99:17:a2:00:31:7a:
45:5a:32:35:8a:9e:af:56:75:1d:e3:8f:07:b2:b6:
bd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:60:6D:29:90:32:54:C3:6E:4B:51:14:11:C1:1D:C2:5F:EF:D4:3B
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/bWBtKZAyVMNuS1EUEcEdwl_v1Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.128.0-62.60.137.255
62.60.139.0-62.60.143.255
62.60.145.0/24
62.60.152.0/22
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
27:d3:06:cc:07:73:82:bd:7b:95:7d:60:85:f5:d2:fe:eb:ec:
cd:37:96:1d:6e:15:0a:ae:0d:a3:48:4b:6f:ce:bc:f3:ab:af:
fa:be:24:d6:f1:62:85:62:f0:69:40:6b:0c:f9:fb:03:ae:bf:
4b:f8:4d:0f:61:88:e1:cd:1a:0f:df:ac:29:42:8a:85:f9:1a:
8a:1d:77:a9:c3:a4:e5:ef:07:2a:11:46:23:aa:4f:e5:fd:60:
a8:79:73:c7:42:9a:15:6a:77:e8:54:c1:fe:a8:f4:08:5e:f3:
f5:9e:85:3c:74:71:63:3f:17:29:b2:f6:be:89:9e:9b:f6:06:
1c:c8:a7:6a:65:3f:a6:d6:7f:dc:0a:9b:a3:91:b7:7d:4c:6b:
ce:d5:ea:53:23:56:1b:f6:3d:09:d2:e1:1f:55:1c:f9:46:c1:
d8:1d:c5:a0:f4:6f:82:37:87:e2:40:2c:0c:53:f7:6e:6c:d3:
42:4d:28:a3:b5:ab:96:a3:9d:3b:72:96:0e:fa:50:43:39:d3:
fc:de:ca:c4:37:54:1a:a2:7e:be:11:83:db:98:e8:3e:c6:09:
aa:89:3d:f7:d4:25:99:8b:6b:53:08:26:27:df:cc:cf:f3:94:
60:30:2f:c3:b8:00:5b:01:c0:37:42:f9:83:a0:62:32:a2:b3:
a5:82:e7:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org