Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/gs63sK4oZAQaGf4MPyP0FuHKlfY.roa
File: gs63sK4oZAQaGf4MPyP0FuHKlfY.roa (raw, json)
Hash identifier: EMbSGiBXbW8M+GC1QM0QQ/RaKcwSVUAcvxLBNLbaoIQ=
Subject key identifier: 82:CE:B7:B0:AE:28:64:04:1A:19:FE:0C:3F:23:F4:16:E1:CA:95:F6
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018C68558D0251FC2261C155352874AC1BC4
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/gs63sK4oZAQaGf4MPyP0FuHKlfY.roa
Signing time: Thu 14 Dec 2023 12:38:06 +0000
ROA not before: Thu 14 Dec 2023 12:38:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35372
IP address blocks: 62.60.144.0/24 maxlen: 24
62.60.147.0/24 maxlen: 24
62.60.160.0/22 maxlen: 24
213.176.0.0/24 maxlen: 24
213.176.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:55:8d:02:51:fc:22:61:c1:55:35:28:74:ac:1b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Dec 14 12:38:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82ceb7b0ae2864041a19fe0c3f23f416e1ca95f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:79:38:2b:d6:b9:59:35:c6:4d:3c:05:95:e8:
31:c4:d4:23:6c:e3:cd:1d:09:be:1a:0d:0d:c5:2b:
52:68:9e:e9:b7:3f:10:42:db:7f:e6:5c:dd:9f:65:
bc:4a:0f:f2:73:dc:32:a6:98:c5:9c:dc:8e:f1:da:
ff:68:bd:5e:b4:ba:57:ee:1e:5b:54:af:30:0f:0c:
16:c6:57:e3:d5:33:cc:fb:fc:52:18:7c:55:c4:47:
15:d5:83:37:63:70:dd:3f:85:fe:d7:07:d9:da:a1:
38:99:08:9b:f1:d8:29:72:23:63:df:99:82:44:98:
e7:fd:65:95:5e:a6:78:5b:7c:de:8c:a3:d7:2e:ff:
a4:44:28:64:a1:7f:b4:99:77:c3:ef:31:29:d3:66:
19:0f:c7:30:fe:f4:82:f8:5f:2a:90:19:46:be:3b:
19:4e:19:d1:5a:79:33:a6:c0:c4:6c:dd:4f:6c:2f:
48:82:ee:15:ee:d1:35:70:80:e4:0d:7d:92:a6:77:
c7:ee:05:1d:ca:12:5b:07:38:0f:ea:54:12:92:94:
80:b1:6e:56:9e:c0:11:e1:99:f4:6e:14:96:b8:3a:
6f:61:43:8c:ac:2a:c9:b1:e2:bb:75:9b:b9:48:5e:
cd:5d:76:f7:5f:a4:95:3f:90:a9:44:72:4d:a5:fe:
6c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CE:B7:B0:AE:28:64:04:1A:19:FE:0C:3F:23:F4:16:E1:CA:95:F6
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/gs63sK4oZAQaGf4MPyP0FuHKlfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.144.0/24
62.60.147.0/24
62.60.160.0/22
213.176.0.0/24
213.176.7.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:9b:07:19:e9:4a:c2:1f:0e:45:e3:39:51:b6:ed:cf:37:c7:
62:7f:98:43:b6:8c:7e:7d:12:51:73:df:43:98:fe:eb:1c:8d:
45:f9:56:09:62:60:bf:74:30:55:b7:d3:a2:92:f2:76:dc:9d:
1d:2c:be:09:07:72:e0:25:f3:20:83:24:43:8b:b3:a0:f7:3d:
2a:22:f9:ee:af:1c:0d:53:5e:ab:20:d6:6f:d0:e7:ac:54:71:
2c:72:1f:09:dc:09:8a:1c:f1:5b:64:fc:8b:bd:e4:e7:cf:a0:
01:7f:4f:1c:e5:d2:c9:dd:a6:02:78:23:c5:fd:39:7c:0b:11:
82:7d:95:bc:f6:ef:67:ad:3f:b9:4d:3b:3b:12:cd:c8:1c:e2:
51:30:8a:0e:37:dd:07:f4:9a:a9:98:d5:51:7c:2a:5c:8b:30:
c7:96:04:d9:1b:60:ab:7e:a5:98:a8:a9:fd:56:d2:1a:c9:18:
c8:42:a8:99:ea:f3:c6:a5:bf:f5:a0:b7:1a:d6:8e:68:e5:55:
6d:cd:7f:4a:96:07:05:49:89:48:55:24:cd:5b:ce:8e:e9:7d:
57:30:c8:7f:8f:32:cb:8c:7b:5c:d7:7d:cd:f3:1c:75:0c:57:
7b:cc:fc:e7:a5:d0:b1:40:9c:73:98:5f:c0:57:61:92:ed:24:
de:8e:7d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 25 07:21:08 2023 by rpki-client on console-fra.rpki-client.org