Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/lt8TDp7PILZ5_4nBHrTuwg7lLRQ.roa
File: lt8TDp7PILZ5_4nBHrTuwg7lLRQ.roa (raw, json)
Hash identifier: gcNbvXDLC68CZ6iTCwnrgFBDiHc0o+vzQp16zYY0xUM=
Subject key identifier: 96:DF:13:0E:9E:CF:20:B6:79:FF:89:C1:1E:B4:EE:C2:0E:E5:2D:14
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01914C5C409252C7CF8C18FAF1D88AC8E0D4
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/lt8TDp7PILZ5_4nBHrTuwg7lLRQ.roa
Signing time: Tue 13 Aug 2024 15:29:59 +0000
ROA not before: Tue 13 Aug 2024 15:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44947
IP address blocks: 62.60.148.0/22 maxlen: 24
213.176.112.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 06:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4c:5c:40:92:52:c7:cf:8c:18:fa:f1:d8:8a:c8:e0:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 13 15:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96df130e9ecf20b679ff89c11eb4eec20ee52d14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c9:0b:7c:92:a9:ba:7b:16:f8:e8:dc:3f:10:
4c:64:31:40:10:34:b6:ac:c0:c2:fb:41:77:b5:bd:
fc:c8:ad:60:f2:78:bb:fc:2d:c8:05:0f:27:2e:e1:
bc:ac:a9:68:b5:75:97:30:9e:82:1e:72:5a:35:57:
a7:20:6d:9b:40:01:5c:35:c1:43:af:95:12:76:80:
4a:ec:e5:bd:dc:25:6b:3e:c5:f8:f1:cb:73:65:5f:
91:e4:9b:06:9c:b6:b0:59:ad:79:34:12:fa:7c:db:
4e:55:80:e2:95:cf:10:43:ad:bc:8b:23:13:e6:be:
56:d5:97:56:83:4d:50:fc:64:b6:55:74:23:09:11:
93:c8:3d:f8:36:f7:0f:c9:78:3d:72:5a:89:26:51:
8d:76:2f:ca:5b:2a:fe:ce:38:87:62:97:87:8e:65:
29:81:10:8a:86:c7:53:76:3d:2a:02:50:27:20:4f:
b9:fc:bf:05:1c:6a:79:8b:5c:66:f8:12:83:47:ea:
c6:0c:3c:15:13:ed:52:3d:5a:97:36:e7:ac:84:af:
75:ad:3a:64:47:b7:6a:ec:a7:5a:12:09:a7:e9:6d:
b1:da:ae:19:ae:be:f1:e9:cd:c9:46:24:e0:4d:5d:
d4:9f:33:de:61:51:a0:56:b7:60:b0:85:3c:84:ce:
32:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DF:13:0E:9E:CF:20:B6:79:FF:89:C1:1E:B4:EE:C2:0E:E5:2D:14
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/lt8TDp7PILZ5_4nBHrTuwg7lLRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.148.0/22
213.176.112.0/21
Signature Algorithm: sha256WithRSAEncryption
be:c9:5f:3d:1f:27:d8:08:f8:03:7a:7a:24:fa:a6:ec:b0:89:
2e:bc:16:e9:11:17:37:19:57:4e:73:1d:a5:3d:b9:81:5d:a1:
b7:14:95:eb:50:c9:5a:16:65:02:79:7f:ff:5c:25:39:4e:7f:
5d:35:f4:ed:79:9d:46:97:6d:79:87:65:3c:64:4a:05:7d:85:
97:42:7e:50:21:74:d3:8b:ec:ee:8d:46:61:fd:24:03:a1:ee:
f5:6d:9e:13:5a:ed:a8:15:d5:49:ba:2b:3b:a8:f9:ed:55:ec:
72:ed:e3:1b:dc:36:e9:07:5b:42:d1:63:47:86:83:cf:bd:07:
26:eb:ee:e4:15:88:3d:99:e5:d1:05:53:5f:cf:ad:d1:2d:12:
80:56:ce:dd:00:5a:ce:f5:19:48:9e:d1:b2:6a:8a:2b:a0:92:
fe:5c:8e:99:65:1d:18:56:0a:23:83:4b:74:ab:ce:ff:59:b3:
45:f6:28:3e:9a:e7:90:b0:71:81:d2:f4:11:e0:d7:2e:a8:d9:
d3:b5:62:73:c4:df:02:ae:ae:be:c5:29:fa:87:03:0c:45:bb:
62:b2:44:e4:f0:1f:1d:be:1f:42:f9:ec:c5:4a:5a:ad:81:d8:
d7:9f:b0:d9:2a:8e:1c:e9:f3:bf:e5:65:e8:29:12:c4:7e:3e:
15:0f:cc:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 17 09:09:22 2024 by rpki-client on console-fra.rpki-client.org