Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/vLvtsfHlWn117pd98QmII4tAVu0.roa
File: vLvtsfHlWn117pd98QmII4tAVu0.roa (raw, json)
Hash identifier: ZTg3k/ZYSbiguG35m3UNadE4Nkj+HSTGGWI6TlVk0n0=
Subject key identifier: BC:BB:ED:B1:F1:E5:5A:7D:75:EE:97:7D:F1:09:88:23:8B:40:56:ED
Certificate issuer: /CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Certificate serial: 0193F370A155AB0B21D72EB5C6B0B738091E
Authority key identifier: 36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/vLvtsfHlWn117pd98QmII4tAVu0.roa
Signing time: Mon 23 Dec 2024 12:14:25 +0000
ROA not before: Mon 23 Dec 2024 12:14:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41032
IP address blocks: 62.201.192.0/24 maxlen: 24
62.201.199.0/24 maxlen: 24
62.201.200.0/22 maxlen: 22
62.201.200.0/24 maxlen: 24
62.201.201.0/24 maxlen: 24
62.201.203.0/24 maxlen: 24
62.201.204.0/24 maxlen: 24
62.201.205.0/24 maxlen: 24
62.201.207.0/24 maxlen: 24
62.201.208.0/24 maxlen: 24
62.201.210.0/24 maxlen: 24
62.201.237.0/24 maxlen: 24
62.201.248.0/24 maxlen: 24
62.201.250.0/24 maxlen: 24
185.90.104.0/24 maxlen: 24
185.90.105.0/24 maxlen: 24
185.90.106.0/24 maxlen: 24
185.90.107.0/24 maxlen: 24
2a02:b60:2000::/35 maxlen: 35
2a02:b60:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f3:70:a1:55:ab:0b:21:d7:2e:b5:c6:b0:b7:38:09:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Validity
Not Before: Dec 23 12:14:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bcbbedb1f1e55a7d75ee977df10988238b4056ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8c:71:c4:06:1a:a2:db:f5:57:a2:b5:cb:56:
36:b2:b7:e6:64:3a:15:5a:1b:34:b4:78:1e:9c:74:
15:66:79:d7:fb:f3:03:be:5f:bc:80:1f:38:9d:7c:
ad:93:04:2d:cb:2d:85:54:8d:56:89:48:a6:30:e1:
58:03:43:1b:96:a5:a2:c0:32:df:aa:81:1f:63:67:
0c:79:f1:e7:06:99:72:b4:a9:63:98:e7:c0:d7:d9:
6a:79:2e:4a:2a:3c:2e:04:66:cf:1f:22:39:91:1d:
37:5a:60:b1:5f:ae:ce:fa:4d:44:ed:88:58:95:71:
ee:57:98:a6:b8:0f:6e:13:fd:92:53:ec:a9:4d:0d:
f1:cb:55:5b:38:b9:95:1d:ae:3e:4e:1d:26:0f:52:
dc:8a:93:2f:dd:e6:35:40:f1:d7:7e:33:a8:b0:9e:
67:4e:39:56:cc:35:9e:1f:d7:ff:3c:86:ce:54:fc:
55:ec:a7:70:24:00:c3:16:ae:9f:07:5b:ee:95:0c:
fd:9c:d2:fe:17:75:b0:69:e4:b5:87:39:33:68:59:
b1:60:c9:89:1e:06:cf:1f:64:8e:2c:2c:26:97:a9:
f2:ea:25:26:b0:fa:e0:7e:8b:c3:0a:e9:60:0f:c1:
95:cc:5f:76:84:15:20:6e:0b:f3:fd:8d:36:30:73:
70:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:BB:ED:B1:F1:E5:5A:7D:75:EE:97:7D:F1:09:88:23:8B:40:56:ED
X509v3 Authority Key Identifier:
keyid:36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/vLvtsfHlWn117pd98QmII4tAVu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/NpL-31nGDTJU43qcjs3hHJuhKCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.192.0/24
62.201.199.0-62.201.205.255
62.201.207.0-62.201.208.255
62.201.210.0/24
62.201.237.0/24
62.201.248.0/24
62.201.250.0/24
185.90.104.0/22
IPv6:
2a02:b60:2000::/35
Signature Algorithm: sha256WithRSAEncryption
8a:b1:15:e2:42:a6:9a:c7:0a:61:d4:e7:13:62:36:f1:4b:65:
0c:30:91:75:d5:2f:9d:1f:a3:a4:a2:e6:e5:4b:12:4a:a2:c8:
40:27:28:87:67:45:5f:fa:ec:40:a7:65:09:5f:4c:90:2f:f2:
94:3b:0d:aa:0e:0d:3e:a0:22:46:6f:7f:af:82:49:d7:94:69:
3d:22:30:94:5f:53:5c:d2:37:d3:e1:28:2c:52:46:51:04:b6:
c2:2f:54:9d:d5:0f:3a:57:34:8a:5a:8a:13:52:e7:93:8b:95:
f1:d3:eb:0b:24:4d:3a:b2:f4:78:3f:20:9d:5a:e9:16:61:e1:
96:ae:07:14:56:d8:d6:e6:26:79:9a:eb:6d:20:85:02:1f:4b:
85:83:6d:00:b2:3f:72:36:b3:78:7a:03:cc:92:34:1a:1d:41:
11:45:ea:83:9b:79:5e:15:7f:d9:9d:d6:33:b0:60:8a:68:ab:
0e:62:32:6a:54:f0:e5:4c:82:78:84:03:3c:3c:6c:ce:ca:28:
7e:7f:bd:85:2a:75:8b:fb:ca:43:7c:d6:82:ed:92:d9:24:5c:
78:93:ad:20:42:ff:2c:a3:5e:25:35:fa:9f:86:cb:13:30:85:
7d:ee:ca:4d:08:76:1d:e1:e3:31:8d:0d:6d:34:11:39:39:cd:
f0:95:ed:6e
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgISAZPzcKFVqwsh1y61xrC3OAkeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OTJmZWRmNTljNjBkMzI1NGUzN2E5YzhlY2RlMTFjOWJh
MTI4MmEwHhcNMjQxMjIzMTIxNDI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2JiZWRiMWYxZTU1YTdkNzVlZTk3N2RmMTA5ODgyMzhiNDA1NmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4xxxAYaotv1V6K1y1Y2srfmZDoV
Whs0tHgenHQVZnnX+/MDvl+8gB84nXytkwQtyy2FVI1WiUimMOFYA0MblqWiwDLf
qoEfY2cMefHnBplytKljmOfA19lqeS5KKjwuBGbPHyI5kR03WmCxX67O+k1E7YhY
lXHuV5imuA9uE/2SU+ypTQ3xy1VbOLmVHa4+Th0mD1LcipMv3eY1QPHXfjOosJ5n
TjlWzDWeH9f/PIbOVPxV7KdwJADDFq6fB1vulQz9nNL+F3WwaeS1hzkzaFmxYMmJ
HgbPH2SOLCwml6ny6iUmsPrgfovDCulgD8GVzF92hBUgbgvz/Y02MHNwgwIDAQAB
o4ICUzCCAk8wHQYDVR0OBBYEFLy77bHx5Vp9de6XffEJiCOLQFbtMB8GA1UdIwQY
MBaAFDaS/t9Zxg0yVON6nI7N4RyboSgqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnBMLTMxbkdEVEpVNDNxY2pzM2hISnVoS0NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi81YzVhZDAtZDJkYS00MGRiLTk1ZDEt
ZTdiZTVlMzBhZDJkLzEvdkx2dHNmSGxXbjExN3BkOThRbUlJNHRBVnUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi81YzVhZDAtZDJkYS00MGRiLTk1ZDEtZTdiZTVlMzBhZDJk
LzEvTnBMLTMxbkdEVEpVNDNxY2pzM2hISnVoS0NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDBGBAIAATBAAwQAPsnAMAwD
BAA+yccDBAE+ycwwDAMEAD7JzwMEAD7J0AMEAD7J0gMEAD7J7QMEAD7J+AMEAD7J
+gMEArlaaDAOBAIAAjAIAwYFKgILYCAwDQYJKoZIhvcNAQELBQADggEBAIqxFeJC
pprHCmHU5xNiNvFLZQwwkXXVL50fo6Si5uVLEkqiyEAnKIdnRV/67ECnZQlfTJAv
8pQ7DaoODT6gIkZvf6+CSdeUaT0iMJRfU1zSN9PhKCxSRlEEtsIvVJ3VDzpXNIpa
ihNS55OLlfHT6wskTTqy9Hg/IJ1a6RZh4ZauBxRW2NbmJnma620ghQIfS4WDbQCy
P3I2s3h6A8ySNBodQRFF6oObeV4Vf9md1jOwYIpoqw5iMmpU8OVMgniEAzw8bM7K
KH5/vYUqdYv7ykN81oLtktkkXHiTrSBC/yyjXiU1+p+GyxMwhX3uyk0Idh3h4zGN
DW00ETk5zfCV7W4=
-----END CERTIFICATE-----
Generated at Mon Apr 14 13:06:26 2025 by rpki-client