Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/5HCIIgtUN6ec3AyJEuOF2XpjtdM.roa
File: 5HCIIgtUN6ec3AyJEuOF2XpjtdM.roa (raw, json)
Hash identifier: gXEKlxvHmBGFJ4pXmubFa2/8FNEpS9HpBQIYW5VkoVk=
Subject key identifier: E4:70:88:22:0B:54:37:A7:9C:DC:0C:89:12:E3:85:D9:7A:63:B5:D3
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 01856FD4F7E42674665D4D5F101A00672770
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/5HCIIgtUN6ec3AyJEuOF2XpjtdM.roa
Signing time: Mon 02 Jan 2023 00:15:06 +0000
ROA not before: Mon 02 Jan 2023 00:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50920
IP address blocks: 62.93.84.0/24 maxlen: 24
62.93.87.0/24 maxlen: 24
82.192.6.0/24 maxlen: 24
217.16.119.0/24 maxlen: 24
85.13.58.0/24 maxlen: 24
176.61.160.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:f7:e4:26:74:66:5d:4d:5f:10:1a:00:67:27:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 2 00:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47088220b5437a79cdc0c8912e385d97a63b5d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b1:fc:cb:f6:eb:c2:ad:34:ae:0d:c8:f8:bd:
d3:dc:b1:80:8b:7d:10:9d:44:cc:02:2a:37:38:8b:
da:59:40:e3:eb:34:47:db:dc:cd:8c:34:8f:fb:24:
85:eb:d9:96:4b:6d:35:7f:ca:51:97:2e:ab:66:00:
0a:6e:08:d5:15:47:13:58:17:31:8f:c1:3b:d4:25:
7c:83:a8:cc:56:85:b9:ad:df:22:97:74:e8:b5:d6:
19:a5:7d:d5:27:51:31:26:07:10:67:64:49:a7:76:
1c:58:f8:2e:ce:31:23:03:d9:60:87:a9:1e:db:a1:
8a:e2:1d:00:1e:d7:21:08:cc:28:43:cd:f1:8c:69:
2c:89:e2:63:81:e4:1e:96:36:ba:d4:e6:2d:f8:46:
17:74:2b:eb:23:89:27:db:9b:d8:9a:0d:de:71:6b:
f6:14:5e:83:d3:44:64:51:ad:b7:57:7c:fe:9b:18:
73:e9:12:11:dd:b6:1a:20:1f:06:5a:ed:46:a5:60:
31:e0:ae:56:86:0f:e2:5d:d4:06:ac:44:02:56:4e:
4e:fa:41:6f:83:7b:36:ba:2d:04:ce:51:5a:d4:68:
f3:17:db:eb:9d:80:8a:99:6d:28:6d:0e:1a:db:7f:
c7:08:84:41:a7:31:ce:e2:24:79:cc:3b:da:8e:75:
27:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:70:88:22:0B:54:37:A7:9C:DC:0C:89:12:E3:85:D9:7A:63:B5:D3
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/5HCIIgtUN6ec3AyJEuOF2XpjtdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.93.84.0/24
62.93.87.0/24
82.192.6.0/24
85.13.58.0/24
176.61.160.0/21
217.16.119.0/24
Signature Algorithm: sha256WithRSAEncryption
95:7d:c1:57:83:3f:75:ae:68:ae:f2:05:bb:44:df:b5:2d:09:
28:43:94:9c:8e:c8:d4:15:73:2b:23:4f:dc:0a:a1:20:4b:95:
17:01:f0:30:05:3b:a8:84:13:f2:5c:fc:5d:58:81:bb:4f:6c:
21:23:64:28:e1:2b:85:ca:b4:ca:a9:69:dd:c8:5d:8d:25:37:
51:4a:e3:60:95:4d:d2:67:ed:fd:dc:c8:aa:df:1b:23:da:53:
8a:a8:bd:1a:2a:c7:74:e0:6c:5f:16:95:19:53:a4:b4:bd:90:
0c:9b:19:15:ac:b2:be:7e:88:ac:d9:47:dc:38:e3:54:bc:51:
20:0b:05:ac:de:f2:53:a2:ff:1e:9e:84:61:d9:7c:8a:8b:84:
94:db:43:dc:6c:3c:f1:18:06:fd:e0:a7:eb:cf:98:b6:d4:32:
28:b4:42:fd:c3:0d:d1:ab:36:7d:2f:f1:45:76:c7:5e:6f:6f:
db:6c:81:84:41:d1:cf:5d:c8:8e:96:62:3a:94:b5:21:f8:8f:
cf:5b:87:c0:9b:a7:cb:31:7d:c8:b1:75:a6:e3:c8:f4:ec:27:
2e:ba:94:64:a6:cb:1f:2d:4c:0b:d8:06:d5:81:08:9e:0c:d9:
98:e6:c5:4c:f0:5d:6e:c2:c4:bc:d1:00:e1:29:ec:3b:57:79:
13:73:fe:d2
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYVv1PfkJnRmXU1fEBoAZydwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYWI1MzY0MGIwOTMxOTI0YjczZjc2MDkyNTg0NTE1MGE2
Y2NjYTUwHhcNMjMwMTAyMDAxNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDcwODgyMjBiNTQzN2E3OWNkYzBjODkxMmUzODVkOTdhNjNiNWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLH8y/brwq00rg3I+L3T3LGAi30Q
nUTMAio3OIvaWUDj6zRH29zNjDSP+ySF69mWS201f8pRly6rZgAKbgjVFUcTWBcx
j8E71CV8g6jMVoW5rd8il3TotdYZpX3VJ1ExJgcQZ2RJp3YcWPguzjEjA9lgh6ke
26GK4h0AHtchCMwoQ83xjGksieJjgeQelja61OYt+EYXdCvrI4kn25vYmg3ecWv2
FF6D00RkUa23V3z+mxhz6RIR3bYaIB8GWu1GpWAx4K5Whg/iXdQGrEQCVk5O+kFv
g3s2ui0EzlFa1GjzF9vrnYCKmW0obQ4a23/HCIRBpzHO4iR5zDvajnUnXwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFORwiCILVDennNwMiRLjhdl6Y7XTMB8GA1UdIwQY
MBaAFG6rU2QLCTGSS3P3YJJYRRUKbMylMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnF0VFpBc0pNWkpMY19kZ2tsaEZGUXBzektVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8yYTM4ZTYtMjk0ZS00ZmEzLWE1YTAt
NTMwNDYzMjM5NTFmLzEvNUhDSUlndFVONmVjM0F5SkV1T0YyWHBqdGRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8yYTM4ZTYtMjk0ZS00ZmEzLWE1YTAtNTMwNDYzMjM5NTFm
LzEvYnF0VFpBc0pNWkpMY19kZ2tsaEZGUXBzektVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAPl1UAwQA
Pl1XAwQAUsAGAwQAVQ06AwQDsD2gAwQA2RB3MA0GCSqGSIb3DQEBCwUAA4IBAQCV
fcFXgz91rmiu8gW7RN+1LQkoQ5ScjsjUFXMrI0/cCqEgS5UXAfAwBTuohBPyXPxd
WIG7T2whI2Qo4SuFyrTKqWndyF2NJTdRSuNglU3SZ+393Miq3xsj2lOKqL0aKsd0
4GxfFpUZU6S0vZAMmxkVrLK+fois2UfcOONUvFEgCwWs3vJTov8enoRh2XyKi4SU
20PcbDzxGAb94Kfrz5i21DIotEL9ww3RqzZ9L/FFdsdeb2/bbIGEQdHPXciOlmI6
lLUh+I/PW4fAm6fLMX3IsXWm48j07CcuupRkpssfLUwL2AbVgQieDNmY5sVM8F1u
wsS80QDhKew7V3kTc/7S
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:41 2024 by rpki-client on console-ams.rpki-client.org