Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6vS2rjUJ76VOd9JQqdmVKRUcF1Q.roa
File: 6vS2rjUJ76VOd9JQqdmVKRUcF1Q.roa (raw, json)
Hash identifier: iVOJ/LSjtJloW0jNEbXKLK0da1HlbrakKwowFub55z0=
Subject key identifier: EA:F4:B6:AE:35:09:EF:A5:4E:77:D2:50:A9:D9:95:29:15:1C:17:54
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 018F1935FCD324CD384A19F1541D4CA14DF9
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6vS2rjUJ76VOd9JQqdmVKRUcF1Q.roa
Signing time: Fri 26 Apr 2024 07:01:59 +0000
ROA not before: Fri 26 Apr 2024 07:01:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5430
IP address blocks: 62.104.0.0/16 maxlen: 16
62.104.10.0/23 maxlen: 23
62.104.12.0/22 maxlen: 22
62.104.16.0/24 maxlen: 24
62.104.17.0/24 maxlen: 24
62.104.18.0/24 maxlen: 24
62.104.20.0/23 maxlen: 24
62.104.45.0/24 maxlen: 24
62.104.46.0/23 maxlen: 23
62.104.48.0/23 maxlen: 23
62.104.50.0/24 maxlen: 24
62.104.56.0/24 maxlen: 24
62.104.66.0/23 maxlen: 23
62.104.95.0/24 maxlen: 24
62.104.96.0/21 maxlen: 22
62.104.104.0/22 maxlen: 22
62.104.164.0/22 maxlen: 22
62.104.164.0/24 maxlen: 24
62.104.168.0/22 maxlen: 22
62.104.172.0/23 maxlen: 23
62.104.174.0/24 maxlen: 24
62.104.175.0/24 maxlen: 24
62.104.176.0/22 maxlen: 22
62.104.182.0/24 maxlen: 24
89.48.0.0/13 maxlen: 24
89.49.126.0/24 maxlen: 24
89.49.127.0/24 maxlen: 24
194.97.0.0/18 maxlen: 18
194.97.46.0/23 maxlen: 24
194.97.58.0/24 maxlen: 24
194.97.96.0/19 maxlen: 19
194.97.96.0/24 maxlen: 24
194.97.102.0/24 maxlen: 24
194.97.118.0/24 maxlen: 24
194.97.119.0/24 maxlen: 24
194.97.120.0/23 maxlen: 23
194.97.122.0/24 maxlen: 24
194.97.160.0/19 maxlen: 19
194.97.164.0/22 maxlen: 22
194.97.192.0/23 maxlen: 24
195.4.0.0/17 maxlen: 17
195.4.6.0/24 maxlen: 24
195.4.12.0/23 maxlen: 23
195.4.16.0/22 maxlen: 22
195.4.16.0/24 maxlen: 24
195.4.27.0/24 maxlen: 24
195.4.70.0/24 maxlen: 24
195.4.71.0/24 maxlen: 24
195.4.104.0/22 maxlen: 22
195.4.176.0/21 maxlen: 21
195.4.216.0/21 maxlen: 21
195.4.224.0/19 maxlen: 19
2001:748::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 07 May 2024 07:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:35:fc:d3:24:cd:38:4a:19:f1:54:1d:4c:a1:4d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: Apr 26 07:01:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eaf4b6ae3509efa54e77d250a9d99529151c1754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2b:f2:97:0b:71:98:b7:c3:77:3c:17:18:e0:
92:a7:52:4f:c2:09:52:41:b7:4b:88:89:66:85:9c:
62:b7:99:3b:6d:ea:fd:e3:00:d9:c1:19:9a:50:33:
dc:2e:d3:b7:5c:b8:56:d7:11:38:3b:19:ea:91:e7:
2e:cf:e1:6f:30:07:10:e3:a3:28:0d:9d:0e:ee:e7:
a5:45:3f:2b:9b:b6:1b:de:02:fe:e2:bd:ce:a2:93:
ab:ae:99:f0:63:e2:9e:cc:0c:d4:ec:35:80:71:10:
93:0e:5f:36:f7:7c:b8:91:9e:df:52:db:d7:d6:92:
d4:c1:a8:32:8f:94:4b:1c:f5:55:3a:0f:51:7b:ee:
ef:48:d9:ae:ec:3b:e6:be:e0:7d:d9:d3:90:f8:04:
57:9a:ea:8b:d3:9f:ac:9f:17:1a:e5:62:79:4b:ce:
5a:e3:25:8d:77:6a:a5:90:58:9a:23:07:a8:fe:1d:
d9:1c:e3:56:bd:cf:ac:4c:96:c9:12:73:ba:0c:ec:
f8:3c:38:5e:df:62:25:19:45:79:9f:94:12:40:df:
78:7e:07:b2:02:4a:07:a1:06:16:87:8a:d1:7e:c2:
51:26:25:d5:81:b4:98:61:11:b4:5a:56:32:97:04:
73:a0:f5:6e:af:ee:da:8f:f0:f3:7b:a7:f3:6c:9d:
5d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F4:B6:AE:35:09:EF:A5:4E:77:D2:50:A9:D9:95:29:15:1C:17:54
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/6vS2rjUJ76VOd9JQqdmVKRUcF1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.104.0.0/16
89.48.0.0/13
194.97.0.0/18
194.97.96.0/19
194.97.160.0-194.97.193.255
195.4.0.0/17
195.4.176.0/21
195.4.216.0-195.4.255.255
IPv6:
2001:748::/32
Signature Algorithm: sha256WithRSAEncryption
26:9d:2a:53:4e:e5:73:13:e9:d1:69:be:1a:23:27:ff:a0:e5:
20:b0:d7:f5:d6:ac:1d:bb:30:7c:57:8f:84:94:4c:53:c8:f9:
42:b1:9a:16:6e:06:33:51:52:1d:36:19:c4:55:1f:6f:a0:dc:
69:5e:56:d9:a3:d3:73:d3:9e:4a:8f:ec:e6:84:43:74:db:f7:
b3:26:d6:2e:10:1b:5d:c5:6e:1f:07:d2:cd:3d:59:7f:c3:cc:
f5:30:58:7b:31:af:17:e9:8d:8d:de:f6:d4:2e:77:e8:80:00:
08:a3:95:ae:dc:55:5b:2e:e2:7f:a4:ca:c7:66:2b:62:87:2d:
08:24:b0:47:11:21:2a:09:59:67:21:d0:63:8b:c7:23:e2:a5:
cd:9d:03:65:b3:b5:5a:a5:fa:1f:44:6d:68:52:52:54:60:2d:
5f:0c:9e:63:9b:d3:9f:9d:34:77:ad:da:67:4f:9b:db:a6:67:
5c:c4:21:7d:0a:43:e8:db:18:51:e9:5a:76:92:ff:5d:69:a6:
37:01:e9:62:06:c3:10:17:1a:9b:74:b1:7d:06:c2:7e:53:fe:
29:ef:d1:25:00:b6:03:b3:04:35:d8:11:b3:7e:0d:21:95:31:
1e:f0:c5:d5:4f:6b:82:af:eb:33:b3:7f:00:d2:d9:67:46:76:
f5:a5:02:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 11:42:58 2024 by rpki-client on console-fra.rpki-client.org