Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/eTFhwKhdlNhlZxrSzaJA5GCYWD0.roa
File: eTFhwKhdlNhlZxrSzaJA5GCYWD0.roa (raw, json)
Hash identifier: anFngK3NFddW9C+WQdNvQoeyUSxBcx7kiBneI/x3PCc=
Subject key identifier: 79:31:61:C0:A8:5D:94:D8:65:67:1A:D2:CD:A2:40:E4:60:98:58:3D
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 01910299926C96B6B720A33C922733ECF397
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/eTFhwKhdlNhlZxrSzaJA5GCYWD0.roa
Signing time: Tue 30 Jul 2024 07:45:04 +0000
ROA not before: Tue 30 Jul 2024 07:45:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5430
IP address blocks: 62.104.0.0/16 maxlen: 16
62.104.10.0/23 maxlen: 23
62.104.12.0/22 maxlen: 22
62.104.16.0/24 maxlen: 24
62.104.17.0/24 maxlen: 24
62.104.18.0/24 maxlen: 24
62.104.20.0/23 maxlen: 24
62.104.45.0/24 maxlen: 24
62.104.46.0/23 maxlen: 23
62.104.48.0/23 maxlen: 23
62.104.50.0/24 maxlen: 24
62.104.56.0/24 maxlen: 24
62.104.66.0/23 maxlen: 23
62.104.95.0/24 maxlen: 24
62.104.96.0/21 maxlen: 22
62.104.104.0/22 maxlen: 22
62.104.164.0/22 maxlen: 22
62.104.164.0/24 maxlen: 24
62.104.168.0/22 maxlen: 22
62.104.172.0/23 maxlen: 23
62.104.174.0/24 maxlen: 24
62.104.175.0/24 maxlen: 24
62.104.176.0/22 maxlen: 22
194.97.0.0/18 maxlen: 18
194.97.0.0/24 maxlen: 24
194.97.46.0/23 maxlen: 24
194.97.58.0/24 maxlen: 24
194.97.96.0/19 maxlen: 19
194.97.96.0/24 maxlen: 24
194.97.102.0/24 maxlen: 24
194.97.118.0/24 maxlen: 24
194.97.119.0/24 maxlen: 24
194.97.120.0/23 maxlen: 23
194.97.122.0/24 maxlen: 24
194.97.160.0/19 maxlen: 19
194.97.164.0/22 maxlen: 22
195.4.0.0/17 maxlen: 17
195.4.6.0/24 maxlen: 24
195.4.12.0/23 maxlen: 23
195.4.16.0/22 maxlen: 22
195.4.16.0/24 maxlen: 24
195.4.27.0/24 maxlen: 24
195.4.70.0/24 maxlen: 24
195.4.71.0/24 maxlen: 24
195.4.104.0/22 maxlen: 22
195.4.176.0/21 maxlen: 21
195.4.216.0/21 maxlen: 21
195.4.224.0/19 maxlen: 19
195.4.234.0/23 maxlen: 24
2001:748::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Aug 2024 12:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:02:99:92:6c:96:b6:b7:20:a3:3c:92:27:33:ec:f3:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: Jul 30 07:45:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=793161c0a85d94d865671ad2cda240e46098583d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:8c:2c:67:91:12:f7:9b:c2:7e:1a:1e:60:
13:bc:63:36:bb:f6:9a:e3:db:32:ff:c5:05:5d:3c:
df:a1:ef:a9:ea:81:f1:2c:be:92:c5:1f:f5:71:fe:
66:6d:d9:59:f1:f8:2a:d9:cf:51:e1:06:75:0b:fe:
af:1f:ae:3d:4f:67:50:75:2e:14:c1:ce:7e:30:06:
de:1d:4f:b3:c1:9c:77:1c:f6:f8:ca:2f:54:dc:dc:
e4:0b:36:bf:cc:9f:bf:4d:0d:81:54:d9:86:78:08:
70:7c:c9:37:a9:1a:74:5c:f4:e5:91:d4:e2:a3:ca:
fa:13:f8:11:72:41:58:b6:4f:d4:28:e1:c2:1b:94:
ba:75:04:76:3c:73:64:dc:84:9b:d5:d6:46:db:f3:
eb:e9:e6:4c:e3:b6:eb:c8:df:8f:68:32:df:73:61:
89:57:19:bc:b2:56:a1:16:97:f9:cb:e0:f3:53:04:
ac:c2:90:16:7d:82:3e:97:2c:5b:f8:82:ef:4a:9b:
5c:8e:c2:a8:7f:e9:5e:24:62:d5:e5:53:76:10:07:
f1:2c:bc:49:da:e6:bf:4c:6e:02:f3:d5:10:97:0a:
52:5c:8e:5a:b4:4c:0a:fc:c6:94:f1:8c:9c:e8:91:
31:b1:5b:2a:5d:14:d9:5d:88:12:aa:d9:2c:5a:77:
01:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:31:61:C0:A8:5D:94:D8:65:67:1A:D2:CD:A2:40:E4:60:98:58:3D
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/eTFhwKhdlNhlZxrSzaJA5GCYWD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.104.0.0/16
194.97.0.0/18
194.97.96.0/19
194.97.160.0/19
195.4.0.0/17
195.4.176.0/21
195.4.216.0-195.4.255.255
IPv6:
2001:748::/32
Signature Algorithm: sha256WithRSAEncryption
4c:35:85:a1:ab:6c:6e:2a:29:54:b0:88:27:88:54:be:ce:ff:
4d:ca:5a:9c:68:76:fe:2e:6c:71:a2:51:63:85:95:38:73:3a:
e8:39:65:de:f5:b4:70:b7:63:0d:ef:fa:bf:cb:79:25:2f:5d:
95:9a:9d:46:b4:8d:59:1a:c0:93:34:9a:f0:99:db:33:16:95:
b5:20:0a:f2:f6:88:e8:17:df:d8:15:c0:20:4d:ae:26:63:ef:
0b:9f:2a:cd:2f:fb:17:26:0a:ca:6a:49:b1:14:5f:b8:18:af:
a7:4b:b7:ee:89:a7:4a:e3:11:d9:a2:fd:92:91:a7:b0:24:6f:
35:68:74:df:20:9a:fc:88:2a:b6:7b:68:d1:da:27:b2:d7:a8:
0d:16:08:83:cf:db:b5:cc:53:29:1f:8d:5a:6c:d9:93:a6:7e:
f1:dc:36:68:18:5a:40:96:bf:9f:f1:f5:1c:71:d0:48:06:ab:
e0:7e:db:8e:65:6b:ba:a1:96:69:10:78:10:43:f2:92:61:77:
a8:a6:60:f9:45:65:48:fc:32:1a:a2:6b:01:ec:c3:c1:ec:44:
fa:90:a3:9a:51:1c:3d:fa:da:23:f3:2c:41:c1:dd:01:80:fa:
8d:99:d4:6b:ed:a7:de:91:fe:9f:15:8d:94:21:3c:68:17:e3:
6b:1a:80:91
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAZECmZJslra3IKM8kicz7POXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmODAxOTg0Y2MzOGYwYTRmYzVhZmUxYWRlYWI2ODBjMWI4
OWU5NWIwHhcNMjQwNzMwMDc0NTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTMxNjFjMGE4NWQ5NGQ4NjU2NzFhZDJjZGEyNDBlNDYwOTg1ODNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGGMLGeREvebwn4aHmATvGM2u/aa
49sy/8UFXTzfoe+p6oHxLL6SxR/1cf5mbdlZ8fgq2c9R4QZ1C/6vH649T2dQdS4U
wc5+MAbeHU+zwZx3HPb4yi9U3NzkCza/zJ+/TQ2BVNmGeAhwfMk3qRp0XPTlkdTi
o8r6E/gRckFYtk/UKOHCG5S6dQR2PHNk3ISb1dZG2/Pr6eZM47bryN+PaDLfc2GJ
Vxm8slahFpf5y+DzUwSswpAWfYI+lyxb+ILvSptcjsKof+leJGLV5VN2EAfxLLxJ
2ua/TG4C89UQlwpSXI5atEwK/MaU8Yyc6JExsVsqXRTZXYgSqtksWncBRwIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFHkxYcCoXZTYZWca0s2iQORgmFg9MB8GA1UdIwQY
MBaAFK+AGYTMOPCk/Fr+Gt6raAwbielbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjRBWmhNdzQ4S1Q4V3Y0YTNxdG9EQnVKNlZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9iZmQzN2MtY2IxMi00YTljLThmNWQt
NDAyMTI2NWMzOWIwLzEvZVRGaHdLaGRsTmhsWnhyU3phSkE1R0NZV0QwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9iZmQzN2MtY2IxMi00YTljLThmNWQtNDAyMTI2NWMzOWIw
LzEvcjRBWmhNdzQ4S1Q4V3Y0YTNxdG9EQnVKNlZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwMAPmgDBAbC
YQADBAXCYWADBAXCYaADBAfDBAADBAPDBLAwCwMEA8ME2AMDAMMEMA0EAgACMAcD
BQAgAQdIMA0GCSqGSIb3DQEBCwUAA4IBAQBMNYWhq2xuKilUsIgniFS+zv9Nylqc
aHb+LmxxolFjhZU4czroOWXe9bRwt2MN7/q/y3klL12Vmp1GtI1ZGsCTNJrwmdsz
FpW1IAry9ojoF9/YFcAgTa4mY+8LnyrNL/sXJgrKakmxFF+4GK+nS7fuiadK4xHZ
ov2SkaewJG81aHTfIJr8iCq2e2jR2iey16gNFgiDz9u1zFMpH41abNmTpn7x3DZo
GFpAlr+f8fUccdBIBqvgftuOZWu6oZZpEHgQQ/KSYXeopmD5RWVI/DIaomsB7MPB
7ET6kKOaURw9+toj8yxBwd0BgPqNmdRr7afekf6fFY2UITxoF+NrGoCR
-----END CERTIFICATE-----
Generated at Thu Aug 8 14:53:12 2024 by rpki-client on console-fra.rpki-client.org