Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/9577f8-b8b8-4994-b855-a98ef3008580/1/5i9ntpVbHrTcoGNrMvZEhOH1d1k.roa
File: 5i9ntpVbHrTcoGNrMvZEhOH1d1k.roa (raw, json)
Hash identifier: d6/PYKZhH5Z/TwcbszBbBc9EPVl2Yj/pApuIRaCak5Q=
Subject key identifier: E6:2F:67:B6:95:5B:1E:B4:DC:A0:63:6B:32:F6:44:84:E1:F5:77:59
Certificate issuer: /CN=ce56360624cc1b4c49da72bc325f5bb6ab4d8300
Certificate serial: 018DB184FFD3387BB1410878A14513669DD1
Authority key identifier: CE:56:36:06:24:CC:1B:4C:49:DA:72:BC:32:5F:5B:B6:AB:4D:83:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlY2BiTMG0xJ2nK8Ml9btqtNgwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/9577f8-b8b8-4994-b855-a98ef3008580/1/5i9ntpVbHrTcoGNrMvZEhOH1d1k.roa
Signing time: Fri 16 Feb 2024 10:44:59 +0000
ROA not before: Fri 16 Feb 2024 10:44:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25530
IP address blocks: 62.113.32.0/23 maxlen: 23
62.113.33.0/24 maxlen: 24
62.113.34.0/23 maxlen: 23
62.113.36.0/23 maxlen: 23
62.113.38.0/24 maxlen: 24
62.113.40.0/21 maxlen: 21
62.113.45.0/24 maxlen: 24
62.113.48.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 20 Nov 2024 21:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b1:84:ff:d3:38:7b:b1:41:08:78:a1:45:13:66:9d:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce56360624cc1b4c49da72bc325f5bb6ab4d8300
Validity
Not Before: Feb 16 10:44:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e62f67b6955b1eb4dca0636b32f64484e1f57759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:05:02:d8:d2:c0:de:99:e4:40:3e:b4:09:52:
b7:6e:cb:db:77:af:18:6c:42:11:78:64:d5:43:63:
78:53:bd:d7:01:86:83:f5:02:92:e4:36:03:e9:4e:
e3:14:3b:a2:6a:cc:c6:70:87:f2:27:79:06:a3:78:
4c:64:1f:bf:be:9a:c4:19:03:e2:68:35:a1:c6:bd:
8d:8a:62:3d:a3:5a:6b:db:98:e7:e7:c5:93:ec:02:
5f:6c:17:1a:be:2c:5a:fd:69:4f:60:ba:02:37:6d:
48:ff:9a:e3:35:ba:cb:1d:1a:9a:a5:ff:80:6e:39:
cb:20:e1:7d:f6:1d:f2:2e:00:8b:3a:4e:78:74:36:
ea:2c:7f:47:42:de:bc:18:06:a7:45:48:bc:d2:97:
d1:7b:eb:63:b4:f0:2a:2f:cf:fc:35:64:6c:6f:94:
f0:b0:e4:57:bd:2c:a5:c3:16:ba:c2:20:df:d5:58:
95:ea:ea:87:74:1d:ee:fc:6a:f4:29:2e:0a:e0:d4:
2f:96:b8:4b:63:f5:e4:0c:21:ae:7d:9c:42:f5:42:
9e:0c:5d:2e:a6:3a:f6:a2:94:41:55:0b:17:b0:79:
cc:ab:63:d8:b1:4d:b4:25:67:86:e6:fe:84:09:6c:
f8:3a:5d:c3:64:b1:d2:3e:4b:13:68:5b:c5:25:39:
35:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2F:67:B6:95:5B:1E:B4:DC:A0:63:6B:32:F6:44:84:E1:F5:77:59
X509v3 Authority Key Identifier:
keyid:CE:56:36:06:24:CC:1B:4C:49:DA:72:BC:32:5F:5B:B6:AB:4D:83:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlY2BiTMG0xJ2nK8Ml9btqtNgwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9577f8-b8b8-4994-b855-a98ef3008580/1/5i9ntpVbHrTcoGNrMvZEhOH1d1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9577f8-b8b8-4994-b855-a98ef3008580/1/zlY2BiTMG0xJ2nK8Ml9btqtNgwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.113.32.0-62.113.38.255
62.113.40.0-62.113.55.255
Signature Algorithm: sha256WithRSAEncryption
7e:ce:bd:c2:f9:57:5a:41:7d:bd:51:a3:01:f8:b2:6f:87:98:
a5:65:9b:93:64:2a:35:af:1f:a4:78:ff:cd:7f:1f:51:1f:a4:
7d:98:4a:0a:6e:e1:f2:67:37:ca:1c:c0:cb:13:95:33:e3:74:
6c:97:45:60:a1:7d:31:a9:75:d8:b2:92:4f:50:4e:4c:99:eb:
1e:5b:2c:7d:26:a8:81:e7:5a:38:9b:53:cb:9f:a9:f6:ce:0e:
0a:89:da:f3:d1:3f:7e:d9:c8:f6:ab:4d:41:87:35:21:6c:5d:
16:e0:a5:fe:8d:7a:05:76:01:21:41:15:7e:87:93:5e:87:eb:
1e:64:e4:ac:bd:e8:6b:71:d4:55:47:f4:9f:65:23:9d:08:97:
8b:6e:51:62:a4:6c:89:3b:c7:e6:5f:ce:79:a3:df:ce:dd:65:
52:54:e2:cc:dd:33:43:33:3c:5c:24:06:53:12:3a:b3:93:14:
d6:55:dc:18:48:c6:e0:0d:4a:c8:1b:10:74:37:f0:cb:7e:a2:
31:48:90:4e:76:21:bb:5c:de:f2:29:7c:58:88:dc:ae:c1:83:
76:7c:0e:87:86:4a:6a:90:cb:ae:89:1f:67:05:16:d9:dd:19:
48:bf:5f:e9:72:50:f0:ec:80:3b:db:6b:56:3b:17:52:96:17:
05:8b:86:45
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAY2xhP/TOHuxQQh4oUUTZp3RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlNTYzNjA2MjRjYzFiNGM0OWRhNzJiYzMyNWY1YmI2YWI0
ZDgzMDAwHhcNMjQwMjE2MTA0NDU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjJmNjdiNjk1NWIxZWI0ZGNhMDYzNmIzMmY2NDQ4NGUxZjU3NzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwUC2NLA3pnkQD60CVK3bsvbd68Y
bEIReGTVQ2N4U73XAYaD9QKS5DYD6U7jFDuiaszGcIfyJ3kGo3hMZB+/vprEGQPi
aDWhxr2NimI9o1pr25jn58WT7AJfbBcavixa/WlPYLoCN21I/5rjNbrLHRqapf+A
bjnLIOF99h3yLgCLOk54dDbqLH9HQt68GAanRUi80pfRe+tjtPAqL8/8NWRsb5Tw
sORXvSylwxa6wiDf1ViV6uqHdB3u/Gr0KS4K4NQvlrhLY/XkDCGufZxC9UKeDF0u
pjr2opRBVQsXsHnMq2PYsU20JWeG5v6ECWz4Ol3DZLHSPksTaFvFJTk1LQIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFOYvZ7aVWx603KBjazL2RITh9XdZMB8GA1UdIwQY
MBaAFM5WNgYkzBtMSdpyvDJfW7arTYMAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemxZMkJpVE1HMHhKMm5LOE1sOWJ0cXROZ3dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi85NTc3ZjgtYjhiOC00OTk0LWI4NTUt
YTk4ZWYzMDA4NTgwLzEvNWk5bnRwVmJIclRjb0dOck12WkVoT0gxZDFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi85NTc3ZjgtYjhiOC00OTk0LWI4NTUtYTk4ZWYzMDA4NTgw
LzEvemxZMkJpVE1HMHhKMm5LOE1sOWJ0cXROZ3dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBAU+cSAD
BAA+cSYwDAMEAz5xKAMEAz5xMDANBgkqhkiG9w0BAQsFAAOCAQEAfs69wvlXWkF9
vVGjAfiyb4eYpWWbk2QqNa8fpHj/zX8fUR+kfZhKCm7h8mc3yhzAyxOVM+N0bJdF
YKF9Mal12LKST1BOTJnrHlssfSaogedaOJtTy5+p9s4OCona89E/ftnI9qtNQYc1
IWxdFuCl/o16BXYBIUEVfoeTXofrHmTkrL3oa3HUVUf0n2UjnQiXi25RYqRsiTvH
5l/OeaPfzt1lUlTizN0zQzM8XCQGUxI6s5MU1lXcGEjG4A1KyBsQdDfwy36iMUiQ
TnYhu1ze8il8WIjcrsGDdnwOh4ZKapDLrokfZwUW2d0ZSL9f6XJQ8OyAO9trVjsX
UpYXBYuGRQ==
Generated at Thu Nov 21 00:11:07 2024 by rpki-client on console-ams.rpki-client.org