Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/eRNIkFJV1hSkzMxf_lif4EWNzKE.roa
File: eRNIkFJV1hSkzMxf_lif4EWNzKE.roa (raw, json)
Hash identifier: b+rkXRI1MNVj674ld3WlP2FgHQUw1uIutR9XNln68p0=
Subject key identifier: 79:13:48:90:52:55:D6:14:A4:CC:CC:5F:FE:58:9F:E0:45:8D:CC:A1
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018D1124CC79E71793EC40CC0B536D01C8A0
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/eRNIkFJV1hSkzMxf_lif4EWNzKE.roa
Signing time: Tue 16 Jan 2024 07:20:40 +0000
ROA not before: Tue 16 Jan 2024 07:20:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.2.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
213.176.126.0/23 maxlen: 24
2001:790::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 21 Feb 2024 06:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:11:24:cc:79:e7:17:93:ec:40:cc:0b:53:6d:01:c8:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 16 07:20:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=791348905255d614a4cccc5ffe589fe0458dcca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c6:a9:98:3f:a6:c6:89:31:a1:eb:db:bf:d8:
3a:d7:61:7d:6b:74:78:3f:12:5f:ec:e5:98:f7:d2:
e7:b2:15:9c:0b:9a:ac:f1:1e:34:c2:b8:8b:bb:70:
c7:03:c5:ee:b9:69:fb:eb:00:ca:53:1e:c0:02:c1:
49:7c:ab:06:7e:c1:7e:23:6d:bc:79:a9:af:8a:76:
38:c9:2e:f9:6a:b5:cd:26:0e:2d:cc:ec:41:be:12:
19:7b:c6:95:3b:33:de:f3:e9:b8:fd:e8:75:bb:e7:
96:ac:b7:9c:33:3a:91:63:dc:e4:67:4c:2c:cb:08:
52:4d:6a:76:78:f4:e2:b2:30:7c:4f:27:db:76:10:
ef:9a:2f:c3:8e:de:32:e3:6e:57:47:7d:e6:39:ef:
de:43:66:2c:8d:4d:15:18:6a:53:74:da:fe:fd:85:
57:ab:6e:59:f4:8f:74:c7:02:c8:21:d5:5f:dc:c0:
46:4a:7d:c7:a6:8c:d0:9b:c3:16:10:1e:a1:d0:ab:
31:8f:bb:9b:6f:9e:0c:61:87:af:f2:73:b8:aa:db:
0f:c1:17:91:90:b7:92:5a:e6:2d:14:3c:10:6a:b2:
60:33:b2:c9:7e:1a:3c:6e:d5:19:a8:f6:ae:8d:e0:
b1:7d:4b:80:d0:e0:db:c2:79:08:30:55:b6:17:ac:
08:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:13:48:90:52:55:D6:14:A4:CC:CC:5F:FE:58:9F:E0:45:8D:CC:A1
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/eRNIkFJV1hSkzMxf_lif4EWNzKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.140.255
62.60.142.0/24
62.60.145.0/24
62.60.147.0/24
62.60.168.0/21
213.176.2.0/24
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.127.255
IPv6:
2001:790::/32
Signature Algorithm: sha256WithRSAEncryption
8f:0a:b5:b2:71:24:e2:1a:94:17:d8:1c:0a:f3:6b:c9:fc:f7:
95:44:70:c9:29:35:95:e1:94:e4:53:b5:fe:01:63:6d:a9:e7:
05:94:48:af:fd:87:53:92:7c:f9:f7:4d:3b:b6:85:8a:29:f3:
b3:85:02:a6:01:9f:79:d5:e4:03:75:58:98:93:86:e9:a3:aa:
1a:c2:6a:63:1b:f4:1d:61:c2:f8:bb:a7:56:c6:74:20:c8:75:
8c:f2:00:8f:40:9a:2a:1b:7b:d3:2d:cb:e0:95:df:d4:4a:3e:
ee:e7:41:83:04:ad:30:a5:d0:e1:02:28:7a:0c:e9:6c:95:f8:
46:9d:07:e6:ba:6e:04:8e:c7:50:0b:7f:c6:d7:54:f6:5b:d1:
57:07:5d:cc:28:15:3e:b0:84:ff:3d:d7:b2:29:34:f4:27:63:
7d:90:05:1a:e5:e1:04:60:84:b1:56:0e:45:08:9e:dd:10:44:
ec:b6:63:ab:bb:a8:f9:76:a1:26:3c:24:9c:f3:7f:86:86:cf:
74:8b:22:4e:39:d9:49:35:0e:13:48:f0:33:a5:24:c2:67:e8:
de:46:fd:6b:c1:d5:17:6d:70:b6:40:cf:e4:eb:9e:65:e6:a4:
37:7f:c8:a5:2f:ee:37:90:a4:9a:c5:47:d9:6b:33:44:0d:4d:
56:6f:41:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org