Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/jInDUgz_gRYjVqNrFtImGIpUP8E.roa
File: jInDUgz_gRYjVqNrFtImGIpUP8E.roa (raw, json)
Hash identifier: JKalpZf1IoA/Bw/cys/OA0OnZqAdgtRk29uddPFa8po=
Subject key identifier: 8C:89:C3:52:0C:FF:81:16:23:56:A3:6B:16:D2:26:18:8A:54:3F:C1
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0189EFB27B2533FC57533E1AA0CF63300620
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/jInDUgz_gRYjVqNrFtImGIpUP8E.roa
Signing time: Sun 13 Aug 2023 16:19:58 +0000
ROA not before: Sun 13 Aug 2023 16:19:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 62.60.216.0/22 maxlen: 24
62.60.152.0/21 maxlen: 24
62.60.146.0/23 maxlen: 24
213.176.2.0/23 maxlen: 24
213.176.120.0/23 maxlen: 24
213.176.126.0/23 maxlen: 24
62.60.192.0/22 maxlen: 24
62.60.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Sep 2023 08:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ef:b2:7b:25:33:fc:57:53:3e:1a:a0:cf:63:30:06:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 13 16:19:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c89c3520cff81162356a36b16d226188a543fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:46:a4:aa:5b:2c:1c:72:ee:db:39:45:61:5b:
f5:e4:d8:d3:67:b5:8c:14:d5:e1:b7:d3:f9:f2:87:
ab:d1:af:1a:c2:95:a1:f7:f3:34:47:ae:d6:14:4c:
18:7f:97:fd:11:2d:a1:0f:c9:6e:63:09:e2:db:ca:
4b:82:11:35:a5:2b:dc:ac:8f:18:32:a3:5a:b5:be:
92:c6:ba:05:98:b9:6d:24:55:cc:2c:37:32:f0:5c:
06:82:ca:5d:a0:25:26:52:fa:98:8b:06:58:59:0e:
4c:54:8a:54:75:66:e9:78:f5:9b:84:73:a1:7c:fb:
87:52:5b:e0:20:5a:9c:61:48:b1:48:a4:41:a4:ba:
64:22:e9:08:55:0e:89:a9:c6:cd:41:a6:8e:43:79:
d8:cd:e7:f4:05:67:08:2e:c6:ab:ae:1f:d2:58:53:
9f:72:31:9f:ab:ea:67:65:e0:a3:71:5d:5d:71:8b:
9b:2a:3b:3c:61:06:31:99:bb:bb:a9:a6:c4:b8:b5:
85:a4:d9:18:af:77:cd:58:97:fc:1b:76:06:f9:58:
b9:72:30:33:0e:22:00:74:c0:9b:d7:40:13:ba:79:
3a:e9:de:b0:3a:13:07:f3:79:7e:77:18:f1:03:c7:
d6:b9:0a:4f:7c:63:28:71:da:dc:91:86:d3:05:41:
c1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:89:C3:52:0C:FF:81:16:23:56:A3:6B:16:D2:26:18:8A:54:3F:C1
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/jInDUgz_gRYjVqNrFtImGIpUP8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.146.0/23
62.60.152.0/21
62.60.192.0/21
62.60.216.0/22
213.176.2.0/23
213.176.120.0/23
213.176.126.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:ce:9b:e8:18:7e:29:5c:35:4e:d0:81:db:03:67:08:5d:2d:
d2:2f:52:e2:e1:3f:ea:e6:0b:f5:f6:84:27:35:14:40:00:ad:
7e:ef:11:9d:86:aa:bb:04:22:97:29:96:3b:1d:20:5a:d0:88:
e6:ef:2e:e1:8e:bc:15:ae:e5:e8:23:a9:4c:42:5b:3a:ab:de:
a5:00:8f:6b:94:80:7e:01:02:2f:38:45:0c:ee:32:75:0e:80:
26:e5:cc:19:82:19:c3:db:e0:f2:1b:55:ea:2a:c5:49:5b:41:
ba:2e:af:03:cf:19:f8:fc:7e:ca:7f:49:01:84:f2:1f:6e:a6:
66:d1:2a:f0:8f:4f:3d:96:ba:54:96:cf:52:76:e5:ac:d4:a6:
d8:51:e2:91:8a:2c:a7:2d:0b:48:7a:d0:5f:2f:57:a5:45:df:
00:96:e5:3a:c4:aa:8e:08:f5:73:fe:6a:b9:60:f1:e4:19:bc:
2f:01:10:f7:ea:90:17:c0:c2:72:23:f6:dd:53:9c:9a:ae:a9:
fc:13:cf:97:0a:f9:b5:fd:b3:98:81:f5:6b:5c:0d:ef:0d:b1:
b0:f0:49:68:3a:b7:91:85:31:32:cf:09:b7:79:39:9d:c6:b4:
60:9e:01:36:5e:39:99:72:01:f1:00:51:d0:94:d5:15:4b:9d:
95:cf:be:fb
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYnvsnslM/xXUz4aoM9jMAYgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMwODEzMTYxOTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Yzg5YzM1MjBjZmY4MTE2MjM1NmEzNmIxNmQyMjYxODhhNTQzZmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkakqlssHHLu2zlFYVv15NjTZ7WM
FNXht9P58oer0a8awpWh9/M0R67WFEwYf5f9ES2hD8luYwni28pLghE1pSvcrI8Y
MqNatb6SxroFmLltJFXMLDcy8FwGgspdoCUmUvqYiwZYWQ5MVIpUdWbpePWbhHOh
fPuHUlvgIFqcYUixSKRBpLpkIukIVQ6JqcbNQaaOQ3nYzef0BWcILsarrh/SWFOf
cjGfq+pnZeCjcV1dcYubKjs8YQYxmbu7qabEuLWFpNkYr3fNWJf8G3YG+Vi5cjAz
DiIAdMCb10ATunk66d6wOhMH83l+dxjxA8fWuQpPfGMocdrckYbTBUHBRwIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFIyJw1IM/4EWI1ajaxbSJhiKVD/BMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvakluRFVnel9nUllqVnFOckZ0SW1HSXBVUDhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBPjySAwQD
PjyYAwQDPjzAAwQCPjzYAwQB1bACAwQB1bB4AwQB1bB+MA0GCSqGSIb3DQEBCwUA
A4IBAQCjzpvoGH4pXDVO0IHbA2cIXS3SL1Li4T/q5gv19oQnNRRAAK1+7xGdhqq7
BCKXKZY7HSBa0Ijm7y7hjrwVruXoI6lMQls6q96lAI9rlIB+AQIvOEUM7jJ1DoAm
5cwZghnD2+DyG1XqKsVJW0G6Lq8Dzxn4/H7Kf0kBhPIfbqZm0Srwj089lrpUls9S
duWs1KbYUeKRiiynLQtIetBfL1elRd8AluU6xKqOCPVz/mq5YPHkGbwvARD36pAX
wMJyI/bdU5yarqn8E8+XCvm1/bOYgfVrXA3vDbGw8EloOreRhTEyzwm3eTmdxrRg
ngE2XjmZcgHxAFHQlNUVS52Vz777
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org