Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/wGm5C2W2J1b8k---VdSfb3ZOw48.roa
File: wGm5C2W2J1b8k---VdSfb3ZOw48.roa (raw, json)
Hash identifier: ucWefJ+dfEa6AfsVcn3Nr40LbcGJxr8Xb9VIL958Rfc=
Subject key identifier: C0:69:B9:0B:65:B6:27:56:FC:93:EF:BE:55:D4:9F:6F:76:4E:C3:8F
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018FC3622F90A4928BE0A631A9F67FAE847A
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/wGm5C2W2J1b8k---VdSfb3ZOw48.roa
Signing time: Wed 29 May 2024 08:05:42 +0000
ROA not before: Wed 29 May 2024 08:05:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44090
IP address blocks: 62.60.146.0/23 maxlen: 24
213.176.2.0/24 maxlen: 24
213.176.7.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 08:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c3:62:2f:90:a4:92:8b:e0:a6:31:a9:f6:7f:ae:84:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: May 29 08:05:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c069b90b65b62756fc93efbe55d49f6f764ec38f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cf:57:ef:03:69:33:ef:41:b2:37:02:6f:43:
67:1f:52:95:90:26:f4:e6:ea:14:b7:24:1c:2c:bd:
e6:48:2e:57:57:f7:d7:bd:b3:d2:60:56:da:18:30:
64:ea:db:3c:0c:05:73:3e:10:a9:d9:25:24:f2:d9:
1d:9a:28:a7:b4:59:49:e6:b8:fc:1a:3c:88:a4:79:
15:05:20:d4:c3:64:1f:b9:34:5f:18:cf:46:16:34:
cb:ff:d5:39:8b:54:a3:f7:12:d5:6f:e7:90:a4:2a:
3d:02:b0:30:80:61:37:7f:b5:e8:70:41:ef:f2:51:
9a:69:46:64:7b:76:cb:ff:8b:af:0c:54:4e:f4:86:
19:bb:7d:95:f9:82:6a:02:e7:3f:fe:83:13:57:60:
e9:fe:91:56:af:f0:71:45:61:09:00:59:23:ae:fe:
db:f3:69:d6:fe:74:e7:d0:a4:03:db:eb:cc:36:f8:
cb:5d:fc:3d:18:c0:27:f4:ed:8c:bd:f7:37:49:8a:
1d:7b:fc:0f:42:d8:a1:68:33:e8:46:4c:c8:7d:28:
f7:a5:63:a5:b3:02:b0:d1:4d:d7:61:5c:03:16:aa:
5c:e3:e5:8b:ed:33:0d:00:56:e4:f9:e0:43:b5:24:
8b:1e:48:68:b0:fe:3a:b2:7d:2f:29:9c:31:78:2d:
a0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:69:B9:0B:65:B6:27:56:FC:93:EF:BE:55:D4:9F:6F:76:4E:C3:8F
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/wGm5C2W2J1b8k---VdSfb3ZOw48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.146.0/23
213.176.2.0/24
213.176.7.0/24
213.176.127.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:2f:6c:32:6d:8e:70:75:d7:85:3e:29:3c:2d:c7:9e:91:be:
24:50:ff:a8:4e:69:37:fa:8c:61:3e:48:6d:08:10:55:a7:87:
ff:dd:04:03:9b:99:59:05:7d:cf:21:a8:e3:e9:05:f9:a9:dd:
bd:d0:7c:5f:e4:07:62:68:2b:5f:a8:df:c7:0b:98:9c:fd:2b:
5e:d1:fa:9d:c4:72:6d:2b:ba:14:96:47:ee:ab:ed:34:23:ac:
3e:d5:9d:83:35:89:7b:6e:b5:5c:35:95:a5:8c:3d:11:a9:07:
a3:7a:f1:df:66:09:83:34:90:36:4f:3a:d2:71:7e:77:3a:c6:
46:cc:ec:28:77:ea:d3:48:8c:86:60:43:10:47:28:50:5c:a1:
24:2a:70:a4:9d:97:4f:93:b1:5c:38:30:8a:83:3c:ba:0b:ce:
2b:00:8b:45:5b:27:cf:a5:6e:02:6f:95:af:5f:7f:9c:77:b8:
40:55:4e:97:41:51:d9:8d:22:07:9c:08:9e:f3:3d:da:fd:5b:
78:76:53:df:07:cf:ef:c3:70:bc:b7:e9:79:8c:f8:af:c3:82:
d1:e0:03:04:92:81:1d:94:a5:dd:38:a0:8e:49:32:ca:5e:91:
16:6d:58:58:70:0b:bb:6f:89:3b:fd:3a:d1:2d:c3:db:aa:fe:
e6:ee:62:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 10:01:35 2024 by rpki-client on console-ams.rpki-client.org