Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/fOJ4xWcVis7M9pm2_gXoH_LmghY.roa
File: fOJ4xWcVis7M9pm2_gXoH_LmghY.roa (raw, json)
Hash identifier: s6a1cfqdLueJinpxZLRz2aUakizFDCPN15ogTtkdpvY=
Subject key identifier: 7C:E2:78:C5:67:15:8A:CE:CC:F6:99:B6:FE:05:E8:1F:F2:E6:82:16
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01883DD22F073B30F247F44DC54FE54E310D
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/fOJ4xWcVis7M9pm2_gXoH_LmghY.roa
Signing time: Sun 21 May 2023 10:19:24 +0000
ROA not before: Sun 21 May 2023 10:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 62.60.220.0/22 maxlen: 24
62.60.172.0/22 maxlen: 24
62.60.176.0/22 maxlen: 24
62.60.184.0/22 maxlen: 24
62.60.192.0/22 maxlen: 24
62.60.196.0/24 maxlen: 24
62.60.200.0/21 maxlen: 24
62.60.204.0/22 maxlen: 24
62.60.208.0/22 maxlen: 24
62.60.212.0/22 maxlen: 24
62.60.146.0/23 maxlen: 24
62.60.148.0/22 maxlen: 24
62.60.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 11:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:3d:d2:2f:07:3b:30:f2:47:f4:4d:c5:4f:e5:4e:31:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: May 21 10:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ce278c567158aceccf699b6fe05e81ff2e68216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7a:ec:40:27:80:21:3e:65:31:b1:b4:36:e5:
b2:e4:1b:2d:67:14:be:c4:4e:75:3f:86:b4:94:80:
10:67:f5:45:b1:2e:d6:58:03:b3:5c:5a:22:f7:85:
4a:b7:0f:83:4f:12:a2:cd:29:47:9b:da:a1:66:7e:
20:8c:59:e3:72:a6:bf:30:3c:de:f9:62:c7:81:67:
8e:0a:64:ff:72:5e:7b:4f:56:c7:f6:ab:44:50:75:
93:83:de:5f:d1:66:a8:4f:4d:1d:a2:d3:fb:80:3d:
32:b5:e0:c1:bc:38:b6:81:1b:84:f3:68:eb:c9:f1:
aa:36:b9:c1:f1:51:4d:15:ff:e0:ff:84:f8:ba:6c:
b4:64:18:ca:5c:cb:42:8b:76:c3:42:f3:02:b6:97:
c0:ef:1f:eb:9a:3b:35:78:02:bd:f0:3d:0e:b0:41:
3e:83:fa:00:e7:aa:38:5c:14:a6:e4:3d:ab:e8:14:
ec:9f:2f:31:1e:44:3a:08:07:1d:24:2b:3b:26:31:
81:33:12:ed:e5:ca:30:73:f3:51:4a:cb:f6:a1:ec:
1b:f9:36:ec:a1:b2:1a:04:c1:0f:ee:66:ac:15:be:
57:57:7d:71:3b:b0:f6:06:ba:17:6a:04:28:dd:30:
43:c2:ba:15:09:4b:a8:ea:19:77:de:8c:2d:7c:4c:
89:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E2:78:C5:67:15:8A:CE:CC:F6:99:B6:FE:05:E8:1F:F2:E6:82:16
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/fOJ4xWcVis7M9pm2_gXoH_LmghY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.146.0-62.60.155.255
62.60.172.0-62.60.179.255
62.60.184.0/22
62.60.192.0-62.60.196.255
62.60.200.0-62.60.215.255
62.60.220.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:ad:a3:b8:77:6e:f6:22:e8:a6:b0:97:5a:34:40:89:a4:f7:
0e:bb:92:26:bd:12:cd:72:a8:5f:00:9f:a6:b4:44:39:db:25:
c7:ae:7b:19:ca:0e:ab:54:4c:0a:d2:74:84:e9:cf:f1:72:f6:
d4:f9:64:d3:1e:54:42:55:58:ac:84:63:a5:75:7b:9c:dc:53:
b8:8b:82:00:64:de:4c:86:33:25:e3:f3:38:1b:c2:d9:d0:1f:
d4:0f:a9:f3:9e:73:b4:53:10:7f:86:60:b2:51:b2:94:f9:d1:
63:e0:09:7a:ec:34:49:49:09:1e:f1:f0:1e:30:a7:e4:cb:43:
ec:c8:7a:9c:5f:3c:c1:c0:4d:62:7c:cd:2d:e2:da:85:3c:08:
a9:cd:01:02:70:64:b3:56:9b:2c:76:72:be:f6:67:c7:c2:12:
52:53:c9:c9:65:e2:0c:18:26:ca:db:a2:93:3a:a4:55:44:3a:
a9:f9:a0:f2:3d:12:9e:ae:15:92:dd:66:4a:e7:a4:eb:d4:53:
30:a3:54:d1:a8:df:ae:33:48:0b:2c:a8:22:2e:a4:5c:77:f8:
69:3c:57:2f:c7:e6:e9:49:9b:ff:a8:e5:d5:d9:08:8f:9a:e5:
2e:62:e4:fe:ec:7c:2a:af:0c:db:cd:77:db:40:41:5c:71:4a:
b3:97:13:3c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org