Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/rjYv6aoprfReu28ztxL7vwytgi4.roa
File: rjYv6aoprfReu28ztxL7vwytgi4.roa (raw, json)
Hash identifier: oM8WelrG75eFdfd//0GPxrrIc3LwtC+ZtCKofaFdPNA=
Subject key identifier: AE:36:2F:E9:AA:29:AD:F4:5E:BB:6F:33:B7:12:FB:BF:0C:AD:82:2E
Certificate issuer: /CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Certificate serial: 0190E86CD42A506B26A40990550B1C730E66
Authority key identifier: EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/rjYv6aoprfReu28ztxL7vwytgi4.roa
Signing time: Thu 25 Jul 2024 05:46:04 +0000
ROA not before: Thu 25 Jul 2024 05:46:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15598
IP address blocks: 62.146.0.0/22 maxlen: 22
62.146.4.0/22 maxlen: 22
62.146.8.0/22 maxlen: 22
62.146.12.0/22 maxlen: 22
62.146.16.0/22 maxlen: 22
62.146.17.0/24 maxlen: 24
62.146.20.0/22 maxlen: 22
62.146.24.0/22 maxlen: 22
62.146.28.0/22 maxlen: 22
62.146.32.0/22 maxlen: 22
62.146.36.0/22 maxlen: 22
62.146.40.0/22 maxlen: 22
62.146.44.0/22 maxlen: 22
62.146.48.0/22 maxlen: 22
62.146.52.0/22 maxlen: 22
62.146.56.0/22 maxlen: 22
62.146.60.0/22 maxlen: 22
62.146.64.0/22 maxlen: 22
62.146.68.0/22 maxlen: 22
62.146.72.0/22 maxlen: 22
62.146.76.0/22 maxlen: 22
62.146.80.0/22 maxlen: 22
62.146.84.0/22 maxlen: 22
62.146.88.0/22 maxlen: 22
62.146.92.0/22 maxlen: 22
62.146.96.0/22 maxlen: 22
62.146.100.0/22 maxlen: 22
62.146.104.0/22 maxlen: 22
62.146.108.0/22 maxlen: 22
62.146.112.0/22 maxlen: 22
62.146.116.0/22 maxlen: 22
62.146.120.0/22 maxlen: 22
62.146.124.0/22 maxlen: 22
62.146.128.0/22 maxlen: 22
62.146.132.0/22 maxlen: 22
62.146.136.0/22 maxlen: 22
62.146.140.0/22 maxlen: 22
62.146.144.0/22 maxlen: 22
62.146.148.0/22 maxlen: 22
62.146.152.0/22 maxlen: 22
62.146.156.0/22 maxlen: 22
62.146.160.0/22 maxlen: 22
62.146.184.0/22 maxlen: 22
62.146.188.0/22 maxlen: 22
62.146.192.0/22 maxlen: 22
62.146.196.0/22 maxlen: 22
62.146.200.0/22 maxlen: 22
62.146.204.0/22 maxlen: 22
62.146.208.0/22 maxlen: 22
62.146.212.0/22 maxlen: 22
62.146.216.0/22 maxlen: 22
62.146.220.0/22 maxlen: 22
62.146.240.0/22 maxlen: 22
80.190.4.0/22 maxlen: 22
80.190.8.0/21 maxlen: 21
80.190.16.0/21 maxlen: 21
80.190.24.0/21 maxlen: 21
80.190.32.0/21 maxlen: 21
80.190.40.0/21 maxlen: 21
80.190.48.0/21 maxlen: 21
80.190.56.0/21 maxlen: 21
80.190.64.0/21 maxlen: 21
80.190.88.0/21 maxlen: 21
80.190.96.0/21 maxlen: 21
80.190.104.0/21 maxlen: 21
80.190.112.0/21 maxlen: 21
80.190.120.0/21 maxlen: 21
80.190.128.0/21 maxlen: 21
80.190.136.0/21 maxlen: 21
80.190.144.0/21 maxlen: 21
80.190.152.0/21 maxlen: 21
80.190.160.0/21 maxlen: 21
80.190.168.0/21 maxlen: 21
80.190.176.0/21 maxlen: 21
80.190.184.0/21 maxlen: 21
80.190.192.0/21 maxlen: 21
80.190.200.0/21 maxlen: 21
80.190.208.0/21 maxlen: 21
80.190.216.0/21 maxlen: 21
80.190.224.0/21 maxlen: 21
80.190.232.0/21 maxlen: 21
80.190.240.0/21 maxlen: 21
80.190.248.0/21 maxlen: 21
81.17.104.0/22 maxlen: 22
81.17.108.0/22 maxlen: 22
81.17.112.0/22 maxlen: 22
81.17.116.0/22 maxlen: 22
82.149.64.0/22 maxlen: 22
82.149.68.0/22 maxlen: 22
82.149.84.0/22 maxlen: 22
82.149.88.0/22 maxlen: 22
82.149.92.0/22 maxlen: 22
212.112.224.0/19 maxlen: 19
212.123.96.0/19 maxlen: 19
2a01:138::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 16 Oct 2024 08:51:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e8:6c:d4:2a:50:6b:26:a4:09:90:55:0b:1c:73:0e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3543aa00373e9e4d10e64c83d3779b378888c1
Validity
Not Before: Jul 25 05:46:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae362fe9aa29adf45ebb6f33b712fbbf0cad822e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:79:07:bd:83:e1:ec:79:14:de:f1:69:0d:83:
75:98:67:dc:6a:32:8f:99:2b:c6:6a:b6:05:f1:ce:
65:e6:0f:d0:89:ad:f3:a0:51:be:cd:9d:5f:de:64:
3b:dd:d5:fb:95:06:2a:30:55:35:1d:a9:e7:5c:42:
7b:a7:a0:50:44:0f:01:82:73:de:fe:52:4c:d1:46:
c7:bf:30:b0:01:53:bd:12:6d:bd:28:38:4a:cd:af:
e9:aa:4a:b0:e2:39:cb:b6:8d:6d:48:77:bd:0b:b0:
1e:93:10:4a:57:a6:07:64:93:dd:c9:76:54:17:9f:
da:04:a0:ae:ab:d3:2d:d3:a9:a3:55:b4:28:1c:6a:
30:cc:ba:19:a7:26:3e:b6:ea:85:31:80:76:ab:d8:
7d:bd:cf:2c:7c:97:1b:fe:75:ee:67:5e:21:74:0d:
5e:2e:18:56:36:d2:72:85:16:02:45:81:fe:18:eb:
e7:8b:11:3a:04:aa:d6:9d:64:ee:27:e9:3c:e5:7a:
45:1e:33:56:75:a1:8c:10:22:e3:a2:9a:ea:33:59:
2b:4c:c5:82:a2:d4:88:a7:d6:b4:04:8b:43:f7:04:
e2:21:06:36:71:92:ce:51:09:bf:2e:a5:5e:5f:d0:
b9:00:02:9d:a4:8f:27:e0:29:57:27:d7:7c:b5:c3:
23:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:36:2F:E9:AA:29:AD:F4:5E:BB:6F:33:B7:12:FB:BF:0C:AD:82:2E
X509v3 Authority Key Identifier:
keyid:EC:35:43:AA:00:37:3E:9E:4D:10:E6:4C:83:D3:77:9B:37:88:88:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DVDqgA3Pp5NEOZMg9N3mzeIiME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/rjYv6aoprfReu28ztxL7vwytgi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/19e715-ffaa-4c43-b79a-56f6ecc1c121/1/7DVDqgA3Pp5NEOZMg9N3mzeIiME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.146.0.0-62.146.163.255
62.146.184.0-62.146.223.255
62.146.240.0/22
80.190.4.0-80.190.71.255
80.190.88.0-80.190.255.255
81.17.104.0-81.17.119.255
82.149.64.0/21
82.149.84.0-82.149.95.255
212.112.224.0/19
212.123.96.0/19
IPv6:
2a01:138::/32
Signature Algorithm: sha256WithRSAEncryption
60:fe:ee:15:3f:17:96:e4:b9:9d:72:fd:1f:5b:98:ce:16:9a:
85:b6:77:15:4d:73:4f:06:8a:d8:84:05:8b:6c:92:f3:d0:00:
32:c8:9c:09:ef:2b:cc:5c:ae:bc:d0:e6:a7:21:5c:5c:e0:0d:
20:8b:19:49:b0:25:61:d3:a1:ff:a7:3a:e5:94:84:2e:27:5b:
25:66:28:7c:6a:1f:35:00:e9:f9:e2:73:41:90:36:e5:f5:1b:
9d:4f:dd:48:77:c9:b3:19:2e:75:da:d4:98:47:e8:f0:14:af:
19:56:46:73:54:c0:6a:37:e4:fa:84:8f:fb:61:1d:37:20:3a:
aa:ee:4b:4c:cb:90:37:fe:5b:5e:10:8c:ad:7b:70:b6:10:9a:
8c:8b:b5:35:f7:65:8f:8a:82:27:62:78:f5:f8:20:aa:7c:f6:
b1:7e:c6:48:f2:65:14:2a:12:34:a5:72:cb:13:83:d9:45:12:
1f:f1:6d:42:1c:f7:c4:0a:43:d0:aa:18:0f:be:94:67:5b:70:
be:d6:b8:73:4e:6b:38:84:1d:94:3c:1c:ab:45:8e:75:f2:55:
42:5e:e4:67:b6:d5:27:d8:c5:2d:0c:8d:d4:35:4c:de:78:e9:
51:4d:41:b3:4a:b3:0c:2e:1e:2c:ea:8b:08:75:06:80:d6:f4:
3f:e8:95:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 10:45:14 2024 by rpki-client on console-ams.rpki-client.org