Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/dtfC2_zzpYA8TMqfRTJYQgIpdpw.roa
File: dtfC2_zzpYA8TMqfRTJYQgIpdpw.roa (raw, json)
Hash identifier: qlTsvmoVOM464dbBUU93KJJKRR58trrXUMZifHG9fVI=
Subject key identifier: 76:D7:C2:DB:FC:F3:A5:80:3C:4C:CA:9F:45:32:58:42:02:29:76:9C
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 0190A26397EEB257DE673E14872AC25F4760
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/dtfC2_zzpYA8TMqfRTJYQgIpdpw.roa
Signing time: Thu 11 Jul 2024 15:22:34 +0000
ROA not before: Thu 11 Jul 2024 15:22:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5430
IP address blocks: 62.104.0.0/16 maxlen: 16
62.104.10.0/23 maxlen: 23
62.104.12.0/22 maxlen: 22
62.104.16.0/24 maxlen: 24
62.104.17.0/24 maxlen: 24
62.104.18.0/24 maxlen: 24
62.104.20.0/23 maxlen: 24
62.104.45.0/24 maxlen: 24
62.104.46.0/23 maxlen: 23
62.104.48.0/23 maxlen: 23
62.104.50.0/24 maxlen: 24
62.104.56.0/24 maxlen: 24
62.104.66.0/23 maxlen: 23
62.104.95.0/24 maxlen: 24
62.104.96.0/21 maxlen: 22
62.104.104.0/22 maxlen: 22
62.104.164.0/22 maxlen: 22
62.104.164.0/24 maxlen: 24
62.104.168.0/22 maxlen: 22
62.104.172.0/23 maxlen: 23
62.104.174.0/24 maxlen: 24
62.104.175.0/24 maxlen: 24
62.104.176.0/22 maxlen: 22
89.48.0.0/13 maxlen: 24
89.49.126.0/24 maxlen: 24
89.49.127.0/24 maxlen: 24
194.97.0.0/18 maxlen: 18
194.97.0.0/24 maxlen: 24
194.97.46.0/23 maxlen: 24
194.97.58.0/24 maxlen: 24
194.97.96.0/19 maxlen: 19
194.97.96.0/24 maxlen: 24
194.97.102.0/24 maxlen: 24
194.97.118.0/24 maxlen: 24
194.97.119.0/24 maxlen: 24
194.97.120.0/23 maxlen: 23
194.97.122.0/24 maxlen: 24
194.97.160.0/19 maxlen: 19
194.97.164.0/22 maxlen: 22
195.4.0.0/17 maxlen: 17
195.4.6.0/24 maxlen: 24
195.4.12.0/23 maxlen: 23
195.4.16.0/22 maxlen: 22
195.4.16.0/24 maxlen: 24
195.4.27.0/24 maxlen: 24
195.4.70.0/24 maxlen: 24
195.4.71.0/24 maxlen: 24
195.4.104.0/22 maxlen: 22
195.4.176.0/21 maxlen: 21
195.4.216.0/21 maxlen: 21
195.4.224.0/19 maxlen: 19
2001:748::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 22 Jul 2024 09:28:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a2:63:97:ee:b2:57:de:67:3e:14:87:2a:c2:5f:47:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: Jul 11 15:22:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76d7c2dbfcf3a5803c4cca9f453258420229769c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:9d:49:a9:76:ea:d5:91:c7:af:df:23:b7:
01:f9:3c:2e:5c:70:ad:c9:c2:a5:dd:bd:6e:fb:a9:
39:27:ea:7b:b8:f2:60:9d:8c:68:dd:6a:6a:c6:6d:
95:3a:b5:2f:60:46:fe:97:6b:59:c0:57:71:9f:f5:
ae:37:42:89:14:9c:1e:10:81:93:49:15:6d:20:66:
a4:2a:c0:61:b8:6d:71:8e:b5:5c:8f:15:c0:a9:b7:
2a:8b:6e:b4:6d:41:18:ad:e0:1a:d7:69:7f:95:64:
f8:a2:0a:a5:39:15:d9:df:f7:f2:fb:19:28:82:a4:
94:83:78:fe:24:e4:62:43:e5:21:75:80:ae:95:60:
f5:af:46:c5:26:b4:73:c1:03:c4:99:b6:38:be:14:
9a:cf:10:02:1a:aa:de:bb:3c:e8:be:95:a2:f5:5d:
16:ad:fc:9e:a3:8e:9e:e7:e9:ce:85:78:11:b0:63:
99:9d:6d:15:03:95:54:03:3f:09:cb:a4:c9:6c:f4:
cc:13:b9:f1:5b:a6:8d:52:b6:79:70:a2:63:e8:79:
9e:51:dc:a9:f4:6d:09:0b:1b:a1:7d:fd:b3:f6:ea:
a2:ec:ec:b6:c1:3a:40:bf:aa:fb:fa:95:c9:85:9d:
d2:f5:2c:77:aa:7b:2e:85:31:46:41:ec:11:eb:61:
8f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D7:C2:DB:FC:F3:A5:80:3C:4C:CA:9F:45:32:58:42:02:29:76:9C
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/dtfC2_zzpYA8TMqfRTJYQgIpdpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.104.0.0/16
89.48.0.0/13
194.97.0.0/18
194.97.96.0/19
194.97.160.0/19
195.4.0.0/17
195.4.176.0/21
195.4.216.0-195.4.255.255
IPv6:
2001:748::/32
Signature Algorithm: sha256WithRSAEncryption
26:ef:ef:3e:f5:e6:1f:b0:81:6f:ba:ef:b7:b6:35:ef:16:32:
b8:4f:14:e8:0f:3e:46:2c:4a:86:1e:b7:20:3e:f6:6a:5d:bc:
6c:8c:3e:95:bd:72:4f:41:e1:1b:1e:76:c6:14:fe:74:64:84:
da:89:cb:05:3e:b8:aa:71:69:42:fe:50:0d:92:be:e5:a0:e4:
84:6c:9b:b7:fe:15:d4:a3:93:ef:c9:9d:38:f7:f2:a3:b9:50:
ef:29:dd:20:84:a2:7f:e1:51:97:86:71:1b:8e:23:af:b9:17:
9b:5c:e0:33:f7:6b:ec:27:b7:2c:56:20:82:9a:82:07:bf:e7:
d8:51:b7:5e:9a:cb:5a:59:c1:9f:8e:d8:8f:46:3e:12:82:88:
e9:82:b2:b5:90:f5:b3:95:bb:ac:c9:4c:9c:e6:a2:20:68:08:
75:24:0d:13:0a:18:f5:8f:5b:db:19:0a:0b:83:ee:63:8b:d7:
3e:db:8a:ef:14:15:68:e3:5d:e9:59:33:81:36:1d:b2:e7:a9:
14:35:e3:9d:7a:de:e8:46:81:93:3a:d2:fc:fb:f1:55:9f:63:
07:a3:4e:54:85:f8:2d:78:b3:79:c8:ab:19:26:be:3b:e5:ce:
32:5b:6f:13:64:ff:e2:51:cb:c9:d6:99:3a:9a:4b:fe:97:ce:
76:63:b2:9d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jul 22 11:14:31 2024 by rpki-client on console-ams.rpki-client.org