Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/cQe8IfSn_hVCgjlEtMQiOgjNSqg.roa
File: cQe8IfSn_hVCgjlEtMQiOgjNSqg.roa (raw, json)
Hash identifier: rf+Y5NsURb8HdrKUFf6sJiD5/rpToLVSyULmbN9Li94=
Subject key identifier: 71:07:BC:21:F4:A7:FE:15:42:82:39:44:B4:C4:22:3A:08:CD:4A:A8
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018A5F47EFE8921DA6F3270FDA5BE59301BF
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/cQe8IfSn_hVCgjlEtMQiOgjNSqg.roa
Signing time: Mon 04 Sep 2023 08:21:04 +0000
ROA not before: Mon 04 Sep 2023 08:21:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.6.0/23 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.192.0/22 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
213.176.121.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:47:ef:e8:92:1d:a6:f3:27:0f:da:5b:e5:93:01:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 4 08:21:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7107bc21f4a7fe1542823944b4c4223a08cd4aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0c:42:c6:f0:dc:87:02:19:ac:7b:b2:13:2f:
e0:54:f0:5e:67:3b:52:e8:44:9e:dd:64:08:a0:c8:
27:73:33:0c:4b:66:3e:20:14:17:a7:59:57:57:d5:
5d:7a:03:44:f2:75:17:6f:9f:fd:ed:61:82:90:97:
7f:ec:49:e0:55:76:15:3d:4e:f8:fa:78:8f:15:91:
f6:ca:fd:08:04:90:da:2d:02:6e:5c:21:3f:1c:3f:
c8:81:1b:86:40:60:c9:26:f3:02:27:09:66:de:ed:
2a:0e:7c:19:68:a1:fe:30:a4:cb:d8:4b:74:77:cb:
18:d5:d4:d4:1f:29:d9:85:c8:87:1d:09:dc:6e:d0:
2f:66:9c:b6:f4:ef:34:fc:3f:20:78:e6:f0:cf:0c:
61:31:72:43:35:d5:99:07:1b:a1:77:94:fb:ea:36:
00:db:37:73:8e:8c:b1:23:cc:55:53:76:eb:3c:e0:
18:7f:0a:83:61:f3:6c:c5:22:38:8c:8d:cc:de:1c:
79:42:f9:5e:f6:27:a6:29:0e:63:b5:1d:b6:a8:26:
e5:40:1d:6b:35:8c:ff:26:34:d1:91:0e:dd:2a:b6:
86:23:a9:1b:4d:7b:96:5b:f6:ff:8f:1a:40:80:74:
38:b8:95:de:00:1a:2a:b7:4a:ee:4e:71:4d:ff:3e:
35:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:07:BC:21:F4:A7:FE:15:42:82:39:44:B4:C4:22:3A:08:CD:4A:A8
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/cQe8IfSn_hVCgjlEtMQiOgjNSqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.142.255
62.60.145.0/24
62.60.168.0/21
62.60.192.0/22
213.176.4.0/22
213.176.96.0/24
213.176.121.0-213.176.125.255
213.176.127.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:a8:ff:61:17:00:7f:63:a6:2c:92:35:be:1c:29:6f:96:a4:
b1:0f:36:c4:bf:40:0b:62:83:05:b9:8d:ff:aa:ba:89:e2:9b:
5e:18:54:b7:3a:86:94:02:27:55:32:62:d6:fe:48:bc:13:0e:
5b:93:2e:9f:ed:08:56:68:49:a7:61:b7:20:af:4d:3c:6f:88:
bb:ef:2c:78:ff:d0:ea:e9:a4:46:34:2a:1a:e2:75:96:2e:e5:
66:35:fd:9f:db:76:d8:ca:c9:ca:a4:ba:b3:c4:79:39:fe:cb:
8c:0a:fa:ac:ce:30:38:2b:28:e7:da:85:f3:46:7e:30:cc:74:
25:e8:bf:97:9c:1a:13:29:f6:4b:b9:fd:20:be:bf:e4:85:dd:
78:c7:8f:52:b9:65:6a:e8:84:aa:c1:4c:38:84:7e:c7:3f:25:
2e:d7:80:62:9e:15:1e:ee:54:3f:b4:cb:44:c8:4c:c6:21:01:
33:a7:e2:73:ca:15:8f:3c:92:d5:4d:9a:01:6b:db:02:a1:0c:
af:42:36:73:fc:13:fb:69:a2:37:dd:dc:55:a3:45:63:49:5a:
e8:59:ba:eb:12:cb:dc:3a:c6:74:3b:4b:31:c1:e9:d0:5a:58:
a2:d5:87:98:a7:ee:e8:cd:78:b5:ae:7e:07:1c:9e:3b:19:f9:
92:be:38:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 06:26:13 2023 by rpki-client on console-fra.rpki-client.org