Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4o2Tuaj5nl0eTPA7KWQwpr6X2PY.roa
File: 4o2Tuaj5nl0eTPA7KWQwpr6X2PY.roa (raw, json)
Hash identifier: d+2SPUTzKlKQPPUankro9AK+c2ngtdFSxP5s3264dqQ=
Subject key identifier: E2:8D:93:B9:A8:F9:9E:5D:1E:4C:F0:3B:29:64:30:A6:BE:97:D8:F6
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0186745A8FF9578507AA75857F88B425A25A
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4o2Tuaj5nl0eTPA7KWQwpr6X2PY.roa
Signing time: Tue 21 Feb 2023 14:22:17 +0000
ROA not before: Tue 21 Feb 2023 14:22:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 286
IP address blocks: 62.132.116.0/23 maxlen: 23
62.132.114.0/23 maxlen: 23
62.132.132.0/23 maxlen: 23
62.41.160.0/24 maxlen: 24
62.41.80.0/22 maxlen: 22
62.41.84.0/23 maxlen: 23
62.41.102.0/24 maxlen: 24
62.41.16.0/21 maxlen: 21
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 22
62.132.16.0/22 maxlen: 22
62.41.37.0/24 maxlen: 24
62.41.32.0/24 maxlen: 24
62.132.24.0/23 maxlen: 23
62.132.28.0/24 maxlen: 24
62.132.42.0/23 maxlen: 23
62.41.56.0/21 maxlen: 21
194.121.52.0/22 maxlen: 22
62.41.64.0/20 maxlen: 20
62.41.0.0/20 maxlen: 20
2a00:1750::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:5a:8f:f9:57:85:07:aa:75:85:7f:88:b4:25:a2:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 14:22:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e28d93b9a8f99e5d1e4cf03b296430a6be97d8f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b8:5f:ff:2f:60:cb:84:c8:85:57:a0:38:9a:
a6:41:b7:26:26:d3:72:a7:a2:2f:47:eb:f8:06:18:
99:07:7f:da:02:e2:2f:91:fc:a7:a7:ec:4b:b7:c1:
2d:99:15:e4:f9:ac:d7:d6:a3:dd:90:48:b9:ae:ba:
93:e5:c7:bc:e8:ca:16:66:ad:d3:e9:55:7a:88:53:
47:27:f6:9f:5f:96:ba:3b:23:e1:42:2c:d7:86:be:
43:c6:45:63:6f:8e:40:36:78:8b:bc:53:6a:07:20:
22:ca:ec:ba:9f:80:bf:d8:04:08:a4:f1:3b:72:a9:
2e:c0:45:d9:66:fb:51:20:fa:1f:49:e2:f9:e3:97:
20:43:5e:1b:64:33:b1:38:f1:4e:f5:97:72:17:20:
f0:98:57:34:7c:f7:71:be:96:d7:bd:67:1c:bd:c5:
00:81:32:4d:7e:4b:a5:2a:0f:5b:a7:d7:d0:67:c6:
6f:15:47:91:33:74:e1:86:f0:a2:ee:a3:85:ea:d5:
0f:c3:5a:21:a4:e2:4b:d1:d0:34:24:fc:fc:d0:5c:
9a:d7:2d:65:3b:3d:a6:c6:da:66:7c:02:1e:9f:dc:
1d:a7:55:68:83:94:0f:ff:c4:c9:c8:ab:70:8b:f5:
cb:46:31:6b:4f:31:60:06:4b:27:75:56:c2:eb:a8:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8D:93:B9:A8:F9:9E:5D:1E:4C:F0:3B:29:64:30:A6:BE:97:D8:F6
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4o2Tuaj5nl0eTPA7KWQwpr6X2PY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
194.121.52.0/22
IPv6:
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
e4:97:18:5c:4d:8b:81:9b:2f:a9:0c:3f:77:fb:a8:69:11:52:
72:fb:0d:42:cb:9a:e3:92:b1:c8:c7:57:0e:9a:31:bb:82:68:
46:18:4b:eb:73:59:3b:a8:d5:78:6b:86:09:c7:53:29:99:a8:
6b:1c:44:f1:87:c2:3a:e5:0d:aa:f3:e6:be:3d:81:76:39:58:
62:91:32:d4:63:96:55:69:4d:44:be:56:d7:12:c2:7b:58:51:
0b:74:cc:ad:89:7b:4c:11:a6:e8:dd:65:90:cc:a1:6b:23:73:
32:0e:df:8f:63:15:b6:b1:b0:0e:aa:72:17:7e:58:9f:f2:52:
fa:34:78:53:77:11:ec:ad:5f:fb:02:2b:e0:59:43:a9:89:40:
9a:fd:64:d8:1f:11:73:23:fe:33:3c:8d:5b:b5:8a:f6:75:40:
0b:d4:9a:96:20:42:7b:36:a8:24:6c:e4:5c:ef:95:d0:66:cf:
eb:c6:f0:e3:7a:e1:70:2e:ec:92:97:6a:2c:66:08:c8:7b:8a:
7f:04:bf:2f:0d:87:8d:3f:ba:05:50:dc:2b:e0:54:e0:81:38:
1d:b1:e3:b4:fe:dc:72:66:8c:3d:43:62:b6:0d:7d:cb:d6:ee:
6f:a3:3b:9c:09:42:70:10:4e:c5:ac:85:9b:79:6e:32:06:cd:
b7:79:69:6f
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgISAYZ0Wo/5V4UHqnWFf4i0JaJaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0
NmQxNzEwHhcNMjMwMjIxMTQyMjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjhkOTNiOWE4Zjk5ZTVkMWU0Y2YwM2IyOTY0MzBhNmJlOTdkOGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibhf/y9gy4TIhVegOJqmQbcmJtNy
p6IvR+v4BhiZB3/aAuIvkfynp+xLt8EtmRXk+azX1qPdkEi5rrqT5ce86MoWZq3T
6VV6iFNHJ/afX5a6OyPhQizXhr5DxkVjb45ANniLvFNqByAiyuy6n4C/2AQIpPE7
cqkuwEXZZvtRIPofSeL545cgQ14bZDOxOPFO9ZdyFyDwmFc0fPdxvpbXvWccvcUA
gTJNfkulKg9bp9fQZ8ZvFUeRM3ThhvCi7qOF6tUPw1ohpOJL0dA0JPz80Fya1y1l
Oz2mxtpmfAIen9wdp1Vog5QP/8TJyKtwi/XLRjFrTzFgBksndVbC66jA4wIDAQAB
o4ICgDCCAnwwHQYDVR0OBBYEFOKNk7mo+Z5dHkzwOylkMKa+l9j2MB8GA1UdIwQY
MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt
MGNmMTA5M2Q0NTQ4LzEvNG8yVHVhajVubDBlVFBBN0tXUXdwcjZYMlBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4
LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGVBggrBgEFBQcBBwEB/wSBhTCBgjBxBAIAATBrMAsDAwA+
KQMEAj4pGAMEAD4pIAMEAD4pJTAMAwQDPik4AwQBPilUAwQAPilmAwQAPimgAwQC
PoQAAwQCPoQQAwQBPoQYAwQAPoQcAwQBPoQqMAwDBAE+hHIDBAE+hHQDBAE+hIQD
BALCeTQwDQQCAAIwBwMFACoAF1AwDQYJKoZIhvcNAQELBQADggEBAOSXGFxNi4Gb
L6kMP3f7qGkRUnL7DULLmuOSscjHVw6aMbuCaEYYS+tzWTuo1XhrhgnHUymZqGsc
RPGHwjrlDarz5r49gXY5WGKRMtRjllVpTUS+VtcSwntYUQt0zK2Je0wRpujdZZDM
oWsjczIO349jFbaxsA6qchd+WJ/yUvo0eFN3EeytX/sCK+BZQ6mJQJr9ZNgfEXMj
/jM8jVu1ivZ1QAvUmpYgQns2qCRs5FzvldBmz+vG8ON64XAu7JKXaixmCMh7in8E
vy8Nh40/ugVQ3CvgVOCBOB2x47T+3HJmjD1DYrYNfcvW7m+jO5wJQnAQTsWshZt5
bjIGzbd5aW8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:26 2023 by rpki-client on console-fra.rpki-client.org