Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6QW7KsyxTXPMCgwX1qdcIINFEVY.roa
File: 6QW7KsyxTXPMCgwX1qdcIINFEVY.roa (raw, json)
Hash identifier: YuTb6YAXIDGrtN+gPmgMvotiP6YGqLEBFs8xdV63hvc=
Subject key identifier: E9:05:BB:2A:CC:B1:4D:73:CC:0A:0C:17:D6:A7:5C:20:83:45:11:56
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 018F51FBF06B862F4A0168A80EC9E9D1662E
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6QW7KsyxTXPMCgwX1qdcIINFEVY.roa
Signing time: Tue 07 May 2024 07:36:56 +0000
ROA not before: Tue 07 May 2024 07:36:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5430
IP address blocks: 62.104.0.0/16 maxlen: 16
62.104.10.0/23 maxlen: 23
62.104.12.0/22 maxlen: 22
62.104.16.0/24 maxlen: 24
62.104.17.0/24 maxlen: 24
62.104.18.0/24 maxlen: 24
62.104.20.0/23 maxlen: 24
62.104.45.0/24 maxlen: 24
62.104.46.0/23 maxlen: 23
62.104.48.0/23 maxlen: 23
62.104.50.0/24 maxlen: 24
62.104.56.0/24 maxlen: 24
62.104.66.0/23 maxlen: 23
62.104.95.0/24 maxlen: 24
62.104.96.0/21 maxlen: 22
62.104.104.0/22 maxlen: 22
62.104.164.0/22 maxlen: 22
62.104.164.0/24 maxlen: 24
62.104.168.0/22 maxlen: 22
62.104.172.0/23 maxlen: 23
62.104.174.0/24 maxlen: 24
62.104.175.0/24 maxlen: 24
62.104.176.0/22 maxlen: 22
89.48.0.0/13 maxlen: 24
89.49.126.0/24 maxlen: 24
89.49.127.0/24 maxlen: 24
194.97.0.0/18 maxlen: 18
194.97.46.0/23 maxlen: 24
194.97.58.0/24 maxlen: 24
194.97.96.0/19 maxlen: 19
194.97.96.0/24 maxlen: 24
194.97.102.0/24 maxlen: 24
194.97.118.0/24 maxlen: 24
194.97.119.0/24 maxlen: 24
194.97.120.0/23 maxlen: 23
194.97.122.0/24 maxlen: 24
194.97.160.0/19 maxlen: 19
194.97.164.0/22 maxlen: 22
194.97.192.0/23 maxlen: 24
195.4.0.0/17 maxlen: 17
195.4.6.0/24 maxlen: 24
195.4.12.0/23 maxlen: 23
195.4.16.0/22 maxlen: 22
195.4.16.0/24 maxlen: 24
195.4.27.0/24 maxlen: 24
195.4.70.0/24 maxlen: 24
195.4.71.0/24 maxlen: 24
195.4.104.0/22 maxlen: 22
195.4.176.0/21 maxlen: 21
195.4.216.0/21 maxlen: 21
195.4.224.0/19 maxlen: 19
2001:748::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 14 May 2024 09:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:51:fb:f0:6b:86:2f:4a:01:68:a8:0e:c9:e9:d1:66:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: May 7 07:36:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e905bb2accb14d73cc0a0c17d6a75c2083451156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:06:23:15:0d:69:14:6c:b5:3b:ae:a0:df:82:
5b:dd:b7:72:3c:a0:22:ff:87:00:8c:47:48:31:67:
c8:cc:5b:9c:c2:e1:63:6b:40:0b:bc:f3:b1:60:30:
26:68:52:79:13:38:84:64:cf:2b:5d:ce:b6:65:03:
3e:22:e3:15:92:ab:35:46:ac:77:49:f3:2c:ee:c2:
89:f6:f5:a5:8a:21:bf:93:f1:86:77:78:4f:e0:98:
b5:68:07:ad:97:31:b2:43:5f:c1:d2:55:28:94:95:
7b:6e:54:8f:37:1a:e2:e9:d1:c8:dc:ac:5c:bd:7d:
f1:e1:ed:ca:89:8d:eb:32:d3:92:9a:dc:c9:c4:d2:
b9:a5:af:af:d5:c5:bf:97:b9:8b:0a:c2:31:0c:40:
e5:42:24:c0:32:46:7c:ce:d8:af:90:14:a3:92:98:
2f:c8:cf:93:eb:9e:74:fa:31:66:80:a3:cd:31:11:
b5:9f:5f:99:44:de:36:6c:23:cb:3b:86:48:c4:90:
a1:e6:63:b8:4e:93:5a:4e:e9:7f:79:05:cf:67:95:
ca:47:d5:8d:9f:93:fa:0f:17:73:0c:e1:b6:35:5d:
a2:31:38:c3:47:15:47:7c:bc:e5:18:49:b8:4a:c2:
1f:19:b3:23:bc:d8:66:bc:d0:32:c5:4a:c4:f2:75:
14:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:05:BB:2A:CC:B1:4D:73:CC:0A:0C:17:D6:A7:5C:20:83:45:11:56
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6QW7KsyxTXPMCgwX1qdcIINFEVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.104.0.0/16
89.48.0.0/13
194.97.0.0/18
194.97.96.0/19
194.97.160.0-194.97.193.255
195.4.0.0/17
195.4.176.0/21
195.4.216.0-195.4.255.255
IPv6:
2001:748::/32
Signature Algorithm: sha256WithRSAEncryption
38:04:4d:f7:25:cc:96:43:4a:b0:55:c9:6e:fb:eb:3c:d2:09:
58:0b:5f:5f:b6:e8:e8:dd:36:ac:73:1f:5e:f4:54:62:a1:b7:
a4:0d:8b:05:5f:d7:30:c9:dc:1d:fd:5d:11:59:47:1f:3b:cd:
37:2f:33:b8:b0:3d:5a:43:e5:e2:76:24:d1:6d:c8:9d:6c:14:
fa:80:5e:ba:28:e3:7a:1d:18:4e:5c:35:90:74:7a:7b:5c:7c:
15:22:25:bf:0a:57:21:8b:5c:a3:f0:cd:75:92:2c:1e:27:fb:
a1:3e:9b:1b:83:cc:cf:83:9d:48:2e:74:f3:11:ad:23:27:ca:
f9:a3:c0:b1:88:fa:4f:1a:e7:6f:13:85:16:40:7f:be:67:3d:
69:22:15:19:31:41:69:b3:66:b7:33:72:72:35:2c:48:79:94:
6b:2e:24:5a:0e:3b:bb:0d:3e:9e:8e:89:43:5e:fa:4b:72:15:
9a:e8:36:14:2d:7f:65:34:2d:34:e5:69:e3:41:29:ad:fd:ef:
77:67:d3:99:da:3d:74:fa:f4:55:fb:72:62:64:11:ed:67:e2:
41:96:3d:23:60:0f:e8:3f:59:af:eb:54:5c:82:12:8c:20:0b:
31:e5:5d:60:c4:fc:c6:c6:ce:28:72:ed:69:3b:af:3f:62:53:
7a:d2:fb:1e
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgISAY9R+/Brhi9KAWioDsnp0WYuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmODAxOTg0Y2MzOGYwYTRmYzVhZmUxYWRlYWI2ODBjMWI4
OWU5NWIwHhcNMjQwNTA3MDczNjU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTA1YmIyYWNjYjE0ZDczY2MwYTBjMTdkNmE3NWMyMDgzNDUxMTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgYjFQ1pFGy1O66g34Jb3bdyPKAi
/4cAjEdIMWfIzFucwuFja0ALvPOxYDAmaFJ5EziEZM8rXc62ZQM+IuMVkqs1Rqx3
SfMs7sKJ9vWliiG/k/GGd3hP4Ji1aAetlzGyQ1/B0lUolJV7blSPNxri6dHI3Kxc
vX3x4e3KiY3rMtOSmtzJxNK5pa+v1cW/l7mLCsIxDEDlQiTAMkZ8ztivkBSjkpgv
yM+T6550+jFmgKPNMRG1n1+ZRN42bCPLO4ZIxJCh5mO4TpNaTul/eQXPZ5XKR9WN
n5P6DxdzDOG2NV2iMTjDRxVHfLzlGEm4SsIfGbMjvNhmvNAyxUrE8nUUZQIDAQAB
o4ICTzCCAkswHQYDVR0OBBYEFOkFuyrMsU1zzAoMF9anXCCDRRFWMB8GA1UdIwQY
MBaAFK+AGYTMOPCk/Fr+Gt6raAwbielbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjRBWmhNdzQ4S1Q4V3Y0YTNxdG9EQnVKNlZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9iZmQzN2MtY2IxMi00YTljLThmNWQt
NDAyMTI2NWMzOWIwLzEvNlFXN0tzeXhUWFBNQ2d3WDFxZGNJSU5GRVZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9iZmQzN2MtY2IxMi00YTljLThmNWQtNDAyMTI2NWMzOWIw
LzEvcjRBWmhNdzQ4S1Q4V3Y0YTNxdG9EQnVKNlZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGUGCCsGAQUFBwEHAQH/BFYwVDBDBAIAATA9AwMAPmgDAwNZ
MAMEBsJhAAMEBcJhYDAMAwQFwmGgAwQBwmHAAwQHwwQAAwQDwwSwMAsDBAPDBNgD
AwDDBDANBAIAAjAHAwUAIAEHSDANBgkqhkiG9w0BAQsFAAOCAQEAOARN9yXMlkNK
sFXJbvvrPNIJWAtfX7bo6N02rHMfXvRUYqG3pA2LBV/XMMncHf1dEVlHHzvNNy8z
uLA9WkPl4nYk0W3InWwU+oBeuijjeh0YTlw1kHR6e1x8FSIlvwpXIYtco/DNdZIs
Hif7oT6bG4PMz4OdSC508xGtIyfK+aPAsYj6TxrnbxOFFkB/vmc9aSIVGTFBabNm
tzNycjUsSHmUay4kWg47uw0+no6JQ176S3IVmug2FC1/ZTQtNOVp40Eprf3vd2fT
mdo9dPr0VftyYmQR7WfiQZY9I2AP6D9Zr+tUXIISjCALMeVdYMT8xsbOKHLtaTuv
P2JTetL7Hg==
-----END CERTIFICATE-----
Generated at Tue May 14 13:24:42 2024 by rpki-client on console-fra.rpki-client.org