Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/1zuv7a0vIXHjWd1KqK7vw09lfog.roa
File: 1zuv7a0vIXHjWd1KqK7vw09lfog.roa (raw, json)
Hash identifier: 1QomJuKbSRl5RWk4jEy9ZIOBPqw2vvFsZ2ey9ddnZeQ=
Subject key identifier: D7:3B:AF:ED:AD:2F:21:71:E3:59:DD:4A:A8:AE:EF:C3:4F:65:7E:88
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 019132115DBD360CECA2934E488A56B7CD2D
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/1zuv7a0vIXHjWd1KqK7vw09lfog.roa
Signing time: Thu 08 Aug 2024 12:58:04 +0000
ROA not before: Thu 08 Aug 2024 12:58:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5430
IP address blocks: 62.104.0.0/16 maxlen: 16
62.104.10.0/23 maxlen: 23
62.104.12.0/22 maxlen: 22
62.104.16.0/24 maxlen: 24
62.104.17.0/24 maxlen: 24
62.104.18.0/24 maxlen: 24
62.104.20.0/23 maxlen: 24
62.104.45.0/24 maxlen: 24
62.104.46.0/23 maxlen: 23
62.104.48.0/23 maxlen: 23
62.104.50.0/24 maxlen: 24
62.104.56.0/24 maxlen: 24
62.104.66.0/23 maxlen: 23
62.104.95.0/24 maxlen: 24
62.104.96.0/21 maxlen: 22
62.104.104.0/22 maxlen: 22
62.104.164.0/22 maxlen: 22
62.104.164.0/24 maxlen: 24
62.104.168.0/22 maxlen: 22
62.104.172.0/23 maxlen: 23
62.104.174.0/24 maxlen: 24
62.104.175.0/24 maxlen: 24
62.104.176.0/22 maxlen: 22
194.97.0.0/18 maxlen: 18
194.97.0.0/24 maxlen: 24
194.97.46.0/23 maxlen: 24
194.97.58.0/24 maxlen: 24
194.97.96.0/19 maxlen: 19
194.97.96.0/24 maxlen: 24
194.97.102.0/24 maxlen: 24
194.97.118.0/24 maxlen: 24
194.97.119.0/24 maxlen: 24
194.97.120.0/23 maxlen: 23
194.97.122.0/24 maxlen: 24
194.97.160.0/19 maxlen: 19
194.97.164.0/22 maxlen: 22
195.4.0.0/17 maxlen: 17
195.4.6.0/24 maxlen: 24
195.4.12.0/23 maxlen: 23
195.4.16.0/22 maxlen: 22
195.4.16.0/24 maxlen: 24
195.4.27.0/24 maxlen: 24
195.4.70.0/24 maxlen: 24
195.4.71.0/24 maxlen: 24
195.4.104.0/22 maxlen: 22
195.4.176.0/21 maxlen: 21
195.4.216.0/21 maxlen: 21
195.4.224.0/19 maxlen: 19
2001:748::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 01 Oct 2024 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:32:11:5d:bd:36:0c:ec:a2:93:4e:48:8a:56:b7:cd:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: Aug 8 12:58:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d73bafedad2f2171e359dd4aa8aeefc34f657e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b7:7f:aa:65:49:42:75:e4:86:60:37:45:e1:
bf:da:6b:da:42:aa:e5:13:14:47:48:07:c8:aa:c9:
e5:04:01:6f:76:26:7c:97:0a:65:dc:a8:6a:37:b9:
bd:69:9f:a2:b8:5f:06:23:8e:6d:ff:0d:e9:f9:5c:
3e:e0:ca:6e:04:fe:a7:d5:9c:4c:f0:9c:28:73:61:
6f:53:5b:dd:bd:98:52:a7:12:78:ec:0b:6b:a0:be:
1b:b2:75:22:87:56:fc:2b:31:03:c6:a2:b3:1e:76:
78:ba:14:09:8f:9d:d8:5f:99:f6:1a:8b:73:48:23:
3f:f4:20:90:54:88:37:a1:c1:7a:e1:96:08:cb:9b:
cf:85:93:ff:02:dd:59:8d:50:7c:89:c3:ed:0d:0c:
34:f4:0c:6e:de:b2:88:de:32:8f:56:15:6c:13:a7:
6b:2c:af:44:32:ac:74:b2:95:e4:60:59:51:e2:70:
50:7e:ba:8b:7e:05:a0:59:f9:6e:e6:7d:3a:f7:d9:
51:ef:ee:49:bf:44:e5:ed:fe:eb:23:f6:0e:49:99:
b2:66:6e:f6:8a:24:d9:cb:08:e6:48:a5:81:10:b7:
0d:31:28:a3:8c:b1:63:18:5f:93:ce:3c:13:3c:05:
bb:d7:12:3f:e3:ee:7b:60:57:dd:02:90:2f:15:b0:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:3B:AF:ED:AD:2F:21:71:E3:59:DD:4A:A8:AE:EF:C3:4F:65:7E:88
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/1zuv7a0vIXHjWd1KqK7vw09lfog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.104.0.0/16
194.97.0.0/18
194.97.96.0/19
194.97.160.0/19
195.4.0.0/17
195.4.176.0/21
195.4.216.0-195.4.255.255
IPv6:
2001:748::/32
Signature Algorithm: sha256WithRSAEncryption
42:fc:f3:6a:3a:3c:f2:4b:0e:57:78:73:4f:db:48:9e:5e:ee:
b3:6a:39:c1:38:14:7b:e6:1c:6c:7b:50:9e:65:62:d9:99:26:
3a:86:95:1b:a6:e3:46:e8:db:1e:5b:08:cf:c5:a0:a3:5c:b7:
e4:15:5c:f0:86:df:dc:dc:a7:f6:f4:3b:3d:cf:67:17:27:20:
23:e7:51:d0:c5:24:31:43:ea:19:b4:58:93:b2:f4:e0:00:05:
82:d6:9b:d2:55:fb:8b:ca:c5:b9:ec:e6:6a:5c:7e:4e:e5:b8:
23:3c:32:e0:3d:c2:6c:1a:9b:12:bd:3f:f0:53:f4:26:c5:4a:
4c:39:71:2a:86:ce:58:6f:ea:01:a6:31:ae:68:3d:a8:22:0e:
ed:ba:0f:7c:ef:1a:82:e2:bd:fe:7e:c6:81:f9:8b:6b:97:eb:
82:47:1d:64:5c:9f:96:c8:cd:c5:68:3d:c0:d6:e0:9b:1d:02:
0b:ec:6a:19:8b:a8:a4:99:95:53:19:e2:15:3a:95:5a:34:15:
b3:ef:5e:1a:f5:62:ee:e2:ef:10:ca:73:26:fc:63:48:0f:35:
60:1b:af:a8:9f:13:6d:34:61:53:98:50:b9:0a:a3:bd:2a:41:
c0:86:73:f8:b7:21:9e:3d:7d:e9:16:55:ad:02:5f:f5:7c:f2:
4e:93:89:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 09:28:06 2024 by rpki-client on console-ams.rpki-client.org