Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/00jeChJ2inddDxJ5Z2Kbj3wd3wU.roa
File: 00jeChJ2inddDxJ5Z2Kbj3wd3wU.roa (raw, json)
Hash identifier: 0a1CeLsEOqhplLUFUoWDKmpj/OMoWAcpex5ptefq6EY=
Subject key identifier: D3:48:DE:0A:12:76:8A:77:5D:0F:12:79:67:62:9B:8F:7C:1D:DF:05
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018F1E539D3FCB165840CBFF52FE88185864
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/00jeChJ2inddDxJ5Z2Kbj3wd3wU.roa
Signing time: Sat 27 Apr 2024 06:52:27 +0000
ROA not before: Sat 27 Apr 2024 06:52:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 62.133.60.0/22 maxlen: 24
62.133.61.0/24 maxlen: 24
194.156.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 20:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1e:53:9d:3f:cb:16:58:40:cb:ff:52:fe:88:18:58:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Apr 27 06:52:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d348de0a12768a775d0f127967629b8f7c1ddf05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:ee:bc:ed:7a:47:33:55:d0:b6:8e:9e:9c:
ba:7f:e2:4a:0e:b0:0b:f6:f3:a3:0c:e8:62:2c:60:
e2:84:d7:1e:20:54:91:e3:2e:78:55:4b:f5:26:5f:
57:0f:a8:11:44:32:6b:cb:34:72:43:5a:5d:da:76:
63:f8:9a:ae:10:c2:4f:18:2a:19:28:b6:97:b3:32:
b1:f6:96:46:7e:44:18:51:2f:1c:c1:7d:52:c5:9b:
29:41:94:96:b1:b6:9c:45:ed:3b:3f:c3:7a:ef:00:
f5:6b:05:e8:7d:94:b0:17:49:5e:32:a1:57:f3:ba:
9e:2e:74:df:dd:2a:f0:7e:d5:bc:d6:02:70:24:dc:
3d:49:57:b7:fb:65:9b:6c:01:98:16:59:27:1a:1e:
34:e1:0f:d5:be:94:46:f0:bc:bb:76:05:63:e9:3e:
4d:9b:7e:e9:14:98:5b:da:4f:20:07:b1:06:86:14:
af:ee:2b:6b:27:20:e0:81:5f:0d:3e:60:a4:07:e3:
b8:44:90:49:71:66:2c:e1:2d:4d:57:87:80:7c:23:
38:ea:fd:bb:d5:be:ef:ef:2c:0f:09:a6:dc:a1:46:
3e:ca:90:66:e1:1f:18:f2:d3:52:83:cc:4d:b3:e2:
3a:52:d7:a6:44:ad:dc:bc:43:ff:54:e3:76:42:b2:
4b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:48:DE:0A:12:76:8A:77:5D:0F:12:79:67:62:9B:8F:7C:1D:DF:05
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/00jeChJ2inddDxJ5Z2Kbj3wd3wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.133.60.0/22
194.156.102.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:4c:84:86:11:df:12:e4:b2:49:fc:3d:17:74:53:62:ef:6a:
be:f5:cd:51:a3:7f:8c:a8:a7:5e:45:27:0d:61:43:28:4f:0d:
d9:85:23:25:01:65:ff:92:15:63:a5:36:ae:f5:c2:2e:dd:ef:
eb:67:44:28:26:47:9a:04:6d:70:76:33:6e:cb:16:b8:69:ad:
51:e3:13:b5:9a:5a:2e:a2:19:5b:bd:27:a6:09:25:09:f2:46:
33:ee:36:7f:83:69:a8:8c:30:d9:0c:ee:12:87:1d:f3:e0:24:
a0:0c:de:14:4c:39:63:70:f9:78:e8:5e:09:73:1b:7e:47:e1:
8c:40:d7:fd:e9:02:aa:c3:12:33:3b:f5:24:17:11:34:d4:88:
0c:9a:8a:11:8f:14:42:8e:a2:d2:87:06:f1:12:65:98:f5:16:
38:93:f3:fe:11:b0:3e:2a:75:ff:0a:70:e3:fe:2f:77:c5:88:
d7:0f:70:55:dd:0d:5d:49:a8:7b:08:6f:a0:2f:ed:72:21:7c:
45:87:18:79:14:63:46:a4:10:f5:fb:8f:f8:17:97:95:a7:c9:
04:31:03:0b:d2:42:0f:70:73:15:4c:2c:3e:80:70:0b:53:55:
89:e2:43:cc:d2:9b:ce:7c:e6:54:7f:0c:f7:42:ec:95:a0:1e:
71:6d:6d:36
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY8eU50/yxZYQMv/Uv6IGFhkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm
MWM3ZTgwHhcNMjQwNDI3MDY1MjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzQ4ZGUwYTEyNzY4YTc3NWQwZjEyNzk2NzYyOWI4ZjdjMWRkZjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyTuvO16RzNV0LaOnpy6f+JKDrAL
9vOjDOhiLGDihNceIFSR4y54VUv1Jl9XD6gRRDJryzRyQ1pd2nZj+JquEMJPGCoZ
KLaXszKx9pZGfkQYUS8cwX1SxZspQZSWsbacRe07P8N67wD1awXofZSwF0leMqFX
87qeLnTf3SrwftW81gJwJNw9SVe3+2WbbAGYFlknGh404Q/VvpRG8Ly7dgVj6T5N
m37pFJhb2k8gB7EGhhSv7itrJyDggV8NPmCkB+O4RJBJcWYs4S1NV4eAfCM46v27
1b7v7ywPCabcoUY+ypBm4R8Y8tNSg8xNs+I6UtemRK3cvEP/VON2QrJLlQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNNI3goSdop3XQ8SeWdim498Hd8FMB8GA1UdIwQY
MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt
ZWU3NDY1NzU0ZmY2LzEvMDBqZUNoSjJpbmRkRHhKNVoyS2JqM3dkM3dVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2
LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCPoU8AwQA
wpxmMA0GCSqGSIb3DQEBCwUAA4IBAQC8TISGEd8S5LJJ/D0XdFNi72q+9c1Ro3+M
qKdeRScNYUMoTw3ZhSMlAWX/khVjpTau9cIu3e/rZ0QoJkeaBG1wdjNuyxa4aa1R
4xO1mlouohlbvSemCSUJ8kYz7jZ/g2mojDDZDO4Shx3z4CSgDN4UTDljcPl46F4J
cxt+R+GMQNf96QKqwxIzO/UkFxE01IgMmooRjxRCjqLShwbxEmWY9RY4k/P+EbA+
KnX/CnDj/i93xYjXD3BV3Q1dSah7CG+gL+1yIXxFhxh5FGNGpBD1+4/4F5eVp8kE
MQML0kIPcHMVTCw+gHALU1WJ4kPM0pvOfOZUfwz3QuyVoB5xbW02
-----END CERTIFICATE-----
Generated at Tue Oct 22 21:59:01 2024 by rpki-client on console-fra.rpki-client.org