Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/tqjk0NOuTIh01dOuYTbJDuIW6Yw.roa
File: tqjk0NOuTIh01dOuYTbJDuIW6Yw.roa (raw, json)
Hash identifier: mbcu0NVjm3S+HQn7dJ0WfKw5hQrGdPEn/Ehlpjvi8RY=
Subject key identifier: B6:A8:E4:D0:D3:AE:4C:88:74:D5:D3:AE:61:36:C9:0E:E2:16:E9:8C
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018A351A70365F7A866FF8C33FE9F3F6D344
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/tqjk0NOuTIh01dOuYTbJDuIW6Yw.roa
Signing time: Sun 27 Aug 2023 03:47:19 +0000
ROA not before: Sun 27 Aug 2023 03:47:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 62.60.220.0/22 maxlen: 24
62.60.147.0/24 maxlen: 24
213.176.121.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
62.60.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Sep 2023 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:35:1a:70:36:5f:7a:86:6f:f8:c3:3f:e9:f3:f6:d3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 27 03:47:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6a8e4d0d3ae4c8874d5d3ae6136c90ee216e98c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:05:98:2e:49:d9:3f:70:91:41:a4:5c:a2:53:
80:0c:f3:6f:57:c9:be:23:f7:fe:40:bd:8a:3e:9c:
29:11:38:6a:0a:da:a6:29:a2:31:db:a4:48:c3:20:
7e:47:df:bf:49:42:e2:5b:4b:86:b8:90:41:83:40:
99:b5:a9:28:aa:c3:55:37:9a:a4:e7:32:1b:3f:f0:
51:27:93:13:15:74:9a:e5:d7:69:5b:24:3e:bd:5b:
21:79:1f:e6:81:37:ce:ea:4d:64:8c:d5:9e:3c:e5:
87:50:f7:d7:3a:7f:f8:3f:c3:e2:e3:b5:fd:a9:b6:
a5:28:3f:f3:fa:ae:5c:00:7d:7d:1f:e9:d2:d1:db:
fe:70:c7:b1:3b:c6:9e:d3:a1:6a:e1:9b:d4:5d:47:
80:2f:d4:b4:4a:8d:dc:c0:62:f4:8f:f7:5a:d4:51:
72:6c:bb:59:a1:cb:93:06:90:71:b7:48:c6:ad:f3:
7f:a6:61:c9:a3:c8:28:67:70:47:18:7e:cd:8b:5b:
ad:00:a9:d0:11:56:31:2e:1c:e2:70:95:26:e3:10:
d5:f4:c8:5a:79:32:c9:a9:a3:05:87:48:95:a6:dd:
d4:ab:61:dc:4b:e9:68:ec:f1:01:8b:cb:0d:6c:70:
1b:7d:c2:f2:2d:3d:5a:76:38:8b:b1:7d:0c:47:31:
ad:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A8:E4:D0:D3:AE:4C:88:74:D5:D3:AE:61:36:C9:0E:E2:16:E9:8C
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/tqjk0NOuTIh01dOuYTbJDuIW6Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.147.0/24
62.60.180.0/22
62.60.220.0/22
213.176.121.0/24
213.176.127.0/24
Signature Algorithm: sha256WithRSAEncryption
76:76:97:bb:8e:20:9b:ec:07:e0:a2:14:68:27:b5:7f:48:d7:
c2:66:a2:53:6b:56:eb:b3:f4:51:5c:a0:4e:d4:7d:94:b2:4d:
60:af:82:b7:fe:d0:62:0e:08:10:e8:6e:88:5e:44:fc:bf:0f:
15:89:e8:2f:03:00:1c:fb:df:13:9c:b5:34:a8:31:f5:98:98:
01:44:4d:a1:da:d9:01:96:9c:91:d8:da:98:9c:ad:f0:b9:ca:
1d:08:56:f3:c1:9d:d4:3d:5f:f6:6b:33:15:d9:53:01:6a:40:
8a:b7:f5:31:69:33:74:76:7c:76:d0:f8:9a:fd:65:f0:89:d8:
fb:0c:af:b7:72:43:09:49:e4:41:80:a1:b2:02:ae:5f:90:5f:
08:17:07:8c:94:70:df:bf:84:ce:6d:f6:6d:fe:b9:a7:3d:a2:
5d:dc:c7:ad:b2:b3:6d:8a:bc:f3:e9:60:3f:08:4f:8f:3a:6f:
cc:56:1b:0d:16:04:83:9f:b1:5a:9f:a8:60:02:a3:51:94:30:
95:26:0e:e6:d3:da:2b:09:3d:a0:58:3d:65:46:03:0e:ba:58:
4b:e6:7e:41:fb:14:fc:12:24:b2:5d:d5:3e:06:7c:9f:93:e6:
76:94:87:7e:00:b8:e3:31:d6:2b:53:4f:a0:c1:69:0a:c6:dd:
30:5e:a1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org