Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/vDlmA6EGI9jdkzec7-aHn4FeO18.roa
File: vDlmA6EGI9jdkzec7-aHn4FeO18.roa (raw, json)
Hash identifier: CkQ3Y+HaN++LeABqP9KFe35C8aSi0GjUlciwMfeCaes=
Subject key identifier: BC:39:66:03:A1:06:23:D8:DD:93:37:9C:EF:E6:87:9F:81:5E:3B:5F
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0189D0EE30873ADC9E7C0B599F57437D8094
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/vDlmA6EGI9jdkzec7-aHn4FeO18.roa
Signing time: Mon 07 Aug 2023 16:56:58 +0000
ROA not before: Mon 07 Aug 2023 16:56:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211421
IP address blocks: 62.60.216.0/22 maxlen: 24
62.60.152.0/21 maxlen: 24
62.60.146.0/23 maxlen: 24
213.176.120.0/23 maxlen: 24
213.176.126.0/23 maxlen: 24
62.60.192.0/22 maxlen: 24
62.60.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Sep 2023 08:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:ee:30:87:3a:dc:9e:7c:0b:59:9f:57:43:7d:80:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 7 16:56:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc396603a10623d8dd93379cefe6879f815e3b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:34:14:25:b2:ee:a5:b4:78:1b:c9:14:fb:10:
e0:07:e0:31:df:14:6c:31:35:4a:a5:e2:d2:f2:a5:
ba:35:42:a1:c8:a2:5e:93:b3:47:6f:7f:db:f2:bb:
e5:41:31:ec:7c:40:d6:fc:ed:39:52:03:ab:df:8a:
51:31:fc:a1:e1:98:2c:1d:66:51:19:d3:c1:74:3f:
f7:3b:03:06:9d:d3:8f:88:16:0f:ac:7b:79:a3:42:
35:4f:eb:c4:79:56:b2:c6:12:a0:4b:19:9b:2e:dc:
1a:2f:d3:cf:4d:34:1e:9e:db:38:68:fc:d8:46:26:
53:d2:f3:9f:5b:7d:dc:b7:7e:52:19:95:4a:6e:7f:
43:09:ac:11:40:e6:00:e8:b7:ac:da:17:5a:5c:d0:
d8:65:2a:cf:84:da:96:61:f4:ce:64:04:11:fc:c5:
ec:da:1d:54:7d:8d:a7:81:37:f9:89:84:28:9a:1e:
cb:cf:6c:be:ad:94:f2:63:5d:76:23:8e:eb:3e:15:
e5:96:26:48:44:8b:60:34:a0:d9:c5:e5:65:9d:24:
bf:71:78:05:a2:f6:89:15:98:d8:a4:93:00:2c:65:
a8:9c:b3:05:92:a3:a0:fe:10:58:6f:e4:29:0e:67:
32:77:91:e6:69:f2:bd:c0:5b:34:ff:ba:35:b2:48:
b9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:39:66:03:A1:06:23:D8:DD:93:37:9C:EF:E6:87:9F:81:5E:3B:5F
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/vDlmA6EGI9jdkzec7-aHn4FeO18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.146.0/23
62.60.152.0/21
62.60.192.0/21
62.60.216.0/22
213.176.120.0/23
213.176.126.0/23
Signature Algorithm: sha256WithRSAEncryption
60:d2:5a:e6:77:27:4d:6c:5b:28:5b:21:33:ec:56:6f:a4:d9:
73:f9:04:60:5a:37:a4:9a:81:8d:9b:b0:72:4c:47:b4:bc:d8:
ec:aa:67:9d:6d:24:28:c9:4f:6e:26:c7:bc:55:c1:bc:ce:47:
c3:2b:a6:32:6c:8f:d2:4d:37:63:19:17:f3:e7:8d:74:9d:12:
ba:2b:c0:38:41:29:85:ed:47:e8:d7:42:a5:39:1f:94:e7:3e:
80:1f:e9:56:57:68:c7:37:21:15:50:ff:2f:ff:ef:10:0f:97:
ef:a4:7a:66:7d:3c:15:1b:28:8a:f2:8e:d4:da:56:81:41:81:
4c:54:49:26:c5:84:3e:ef:99:5a:71:05:ac:6b:88:d5:b0:f3:
b5:a4:9d:ce:e5:4d:82:cb:58:10:ab:af:de:42:02:c8:7f:1a:
0d:50:43:af:b8:ff:92:87:76:37:82:96:f0:01:dd:47:ce:9d:
3e:cf:01:99:3a:7d:1d:aa:2c:61:b5:e4:8e:03:aa:61:ca:b1:
d7:f2:16:c8:4f:4c:9d:6e:49:a3:3f:f3:40:cf:a6:68:c9:80:
e8:ae:21:f4:2d:48:a3:fd:64:c2:09:f5:10:89:33:88:70:1e:
59:bc:5f:f0:45:44:1e:09:db:a4:7b:42:ba:24:2f:d4:f5:df:
5d:a3:fb:2a
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYnQ7jCHOtyefAtZn1dDfYCUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMwODA3MTY1NjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzM5NjYwM2ExMDYyM2Q4ZGQ5MzM3OWNlZmU2ODc5ZjgxNWUzYjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDQUJbLupbR4G8kU+xDgB+Ax3xRs
MTVKpeLS8qW6NUKhyKJek7NHb3/b8rvlQTHsfEDW/O05UgOr34pRMfyh4ZgsHWZR
GdPBdD/3OwMGndOPiBYPrHt5o0I1T+vEeVayxhKgSxmbLtwaL9PPTTQents4aPzY
RiZT0vOfW33ct35SGZVKbn9DCawRQOYA6Les2hdaXNDYZSrPhNqWYfTOZAQR/MXs
2h1UfY2ngTf5iYQomh7Lz2y+rZTyY112I47rPhXlliZIRItgNKDZxeVlnSS/cXgF
ovaJFZjYpJMALGWonLMFkqOg/hBYb+QpDmcyd5HmafK9wFs0/7o1ski55wIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFLw5ZgOhBiPY3ZM3nO/mh5+BXjtfMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvdkRsbUE2RUdJOWpka3plYzctYUhuNEZlTzE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBPjySAwQD
PjyYAwQDPjzAAwQCPjzYAwQB1bB4AwQB1bB+MA0GCSqGSIb3DQEBCwUAA4IBAQBg
0lrmdydNbFsoWyEz7FZvpNlz+QRgWjekmoGNm7ByTEe0vNjsqmedbSQoyU9uJse8
VcG8zkfDK6YybI/STTdjGRfz5410nRK6K8A4QSmF7Ufo10KlOR+U5z6AH+lWV2jH
NyEVUP8v/+8QD5fvpHpmfTwVGyiK8o7U2laBQYFMVEkmxYQ+75lacQWsa4jVsPO1
pJ3O5U2Cy1gQq6/eQgLIfxoNUEOvuP+Sh3Y3gpbwAd1Hzp0+zwGZOn0dqixhteSO
A6phyrHX8hbIT0ydbkmjP/NAz6ZoyYDoriH0LUij/WTCCfUQiTOIcB5ZvF/wRUQe
Cduke0K6JC/U9d9do/sq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org