Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/rtvEHqbRBnvpiRxJ5Nd-bzc8iPI.roa
File: rtvEHqbRBnvpiRxJ5Nd-bzc8iPI.roa (raw, json)
Hash identifier: fhnnub1zxYeBd1kRfEHZyRMQmoPh1VkKwcpqrHqaBek=
Subject key identifier: AE:DB:C4:1E:A6:D1:06:7B:E9:89:1C:49:E4:D7:7E:6F:37:3C:88:F2
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018AA75C2BBAFA43D1B6AB1D53F80E8B965B
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/rtvEHqbRBnvpiRxJ5Nd-bzc8iPI.roa
Signing time: Mon 18 Sep 2023 08:15:50 +0000
ROA not before: Mon 18 Sep 2023 08:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15611
IP address blocks: 213.176.96.0/24 maxlen: 24
213.176.4.0/24 maxlen: 24
213.176.5.0/24 maxlen: 24
62.60.168.0/21 maxlen: 24
62.60.132.0/22 maxlen: 24
62.60.136.0/24 maxlen: 24
62.60.137.0/24 maxlen: 24
62.60.139.0/24 maxlen: 24
62.60.140.0/24 maxlen: 24
62.60.141.0/24 maxlen: 24
62.60.142.0/24 maxlen: 24
62.60.145.0/24 maxlen: 24
213.176.124.0/24 maxlen: 24
213.176.125.0/24 maxlen: 24
213.176.122.0/24 maxlen: 24
213.176.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 04:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:5c:2b:ba:fa:43:d1:b6:ab:1d:53:f8:0e:8b:96:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 18 08:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aedbc41ea6d1067be9891c49e4d77e6f373c88f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:42:9b:c3:66:26:e8:de:c3:27:02:06:77:c1:
2c:34:fc:e4:b6:62:5e:e1:47:19:2b:94:2d:c0:67:
2c:78:40:ff:35:4e:68:e8:9b:e8:91:30:92:ba:66:
d6:e6:b2:f1:c8:e8:3f:46:d4:0b:5b:b9:23:91:34:
4b:ba:f8:5a:54:c0:51:2e:e0:b9:9c:a4:40:03:ad:
b8:03:d3:6e:c7:0b:5a:a8:3a:85:99:dd:b8:1e:6e:
e1:76:9c:53:1f:98:07:eb:e2:ff:0b:9a:58:af:e7:
bf:ef:b7:3c:56:69:0f:1a:ca:61:f2:42:71:b4:c4:
36:af:7a:76:45:44:bb:79:f0:0e:b3:26:ec:80:88:
8d:10:92:5c:59:08:92:40:54:9f:92:1a:8a:17:45:
fa:ff:73:8a:1c:1c:83:4c:ca:ed:f0:20:75:99:1b:
7d:1f:f8:79:5d:aa:5e:a6:b7:dd:91:c2:db:77:3e:
c9:a9:6a:06:41:28:9b:fd:26:8a:32:9b:70:0a:9c:
18:9c:22:7d:87:6d:21:9b:5d:6c:36:87:28:b5:1a:
20:a2:1a:1d:4e:cb:82:b1:0d:94:ad:9b:fd:33:d2:
45:30:21:00:f9:52:e3:b1:b6:65:a9:2e:5d:fd:a1:
f3:a3:44:ab:49:25:c9:72:fb:ef:4c:33:13:fe:1f:
91:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:DB:C4:1E:A6:D1:06:7B:E9:89:1C:49:E4:D7:7E:6F:37:3C:88:F2
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/rtvEHqbRBnvpiRxJ5Nd-bzc8iPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.132.0-62.60.137.255
62.60.139.0-62.60.142.255
62.60.145.0/24
62.60.168.0/21
213.176.4.0/23
213.176.96.0/24
213.176.122.0-213.176.125.255
Signature Algorithm: sha256WithRSAEncryption
44:2b:c7:67:21:a1:22:5d:eb:55:4d:06:9a:01:e2:77:1f:a8:
1c:5b:0e:d8:41:a8:78:4e:5d:f1:bd:7a:9d:7c:da:1f:e1:f3:
0d:8a:8f:11:11:23:2e:25:ee:f8:cf:af:f2:dd:6c:62:a5:e6:
94:6c:07:e5:8c:e8:aa:2d:9f:41:dc:d8:45:02:4b:0f:e1:3c:
69:32:1d:34:7f:19:68:fe:cf:82:7d:61:aa:be:17:2a:8b:26:
4d:29:be:df:03:e8:14:6c:64:33:e0:e8:c9:95:0f:d3:df:dd:
36:e5:91:c8:b2:f5:5d:48:31:24:a2:35:bb:a2:6a:76:f0:31:
21:2c:4b:11:8b:8a:bc:bc:70:d2:1f:40:20:f1:78:3d:83:1d:
f7:af:43:10:66:ef:75:69:4e:dc:98:ee:a7:d8:bc:41:85:53:
65:90:66:de:b0:20:f8:0c:88:be:f8:a9:55:cc:02:39:70:2d:
cf:92:53:fc:6c:a6:4f:75:27:e6:ba:fa:7f:cd:8a:1c:7f:59:
d9:66:95:14:43:0e:4e:57:c8:c5:0d:e0:b4:63:11:b1:ed:30:
95:bc:ec:77:be:0f:00:27:e2:ba:37:a6:4a:87:ab:3a:80:b9:
a6:d0:c4:12:4c:1b:eb:18:b4:db:57:17:91:72:87:42:1d:af:
3b:bf:b1:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:30 2024 by rpki-client on console-ams.rpki-client.org