Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1-UPT_rhtkcISwRbPTsY5-JBms3g.roa
File: 1-UPT_rhtkcISwRbPTsY5-JBms3g.roa (raw, json)
Hash identifier: zXSdZWG6V3uaEOoYfWOqtU0ch1rxEzeY8KrdMzUQwc8=
Subject key identifier: F9:43:D3:FE:B8:6D:91:C2:12:C1:16:CF:4E:C6:39:F8:90:66:B3:78
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B26FD98DC0934184FCA13428AB8603731
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1-UPT_rhtkcISwRbPTsY5-JBms3g.roa
Signing time: Fri 13 Oct 2023 03:03:55 +0000
ROA not before: Fri 13 Oct 2023 03:03:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 17 Oct 2023 13:08:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:26:fd:98:dc:09:34:18:4f:ca:13:42:8a:b8:60:37:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 13 03:03:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f943d3feb86d91c212c116cf4ec639f89066b378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ff:28:c2:56:89:95:83:7a:e0:9a:77:71:d8:
60:f0:ab:08:fe:78:52:47:b9:ed:0c:32:8e:0e:ca:
64:a2:32:7c:6e:41:ea:26:47:d1:2a:31:8a:a1:2b:
99:95:78:4d:bb:88:a4:65:b3:a8:f0:9f:d7:16:2b:
03:25:64:97:93:c1:b6:cb:7a:78:0d:58:12:03:3c:
94:69:56:3e:91:f0:4b:76:34:79:55:95:de:2a:82:
31:f8:c5:c7:e6:e4:e1:b8:92:03:a2:6b:a0:78:7c:
28:92:28:06:ab:82:f4:5a:d6:69:a7:fc:e2:76:2e:
50:84:ef:10:d2:95:2e:3a:a3:c2:20:6e:f6:53:4e:
62:61:e9:df:1d:ce:8b:11:c9:4b:21:ba:d1:91:94:
5c:68:55:49:88:2f:8e:97:6c:fa:92:d0:cc:97:ae:
80:8d:9b:bc:ae:6b:b6:0c:96:02:8b:dc:ef:9e:a5:
f1:01:d3:84:f1:bb:c1:99:a7:6b:ae:f5:99:e2:66:
86:83:ef:4a:23:c5:a7:81:ea:4e:21:4a:d7:fd:78:
6e:e0:25:87:0a:90:38:dd:b5:b0:3f:1b:35:87:25:
87:11:d8:ed:f9:e2:77:81:b2:31:44:d3:0a:50:af:
c2:41:92:e9:a9:54:69:09:5d:e9:03:b4:41:29:46:
83:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:43:D3:FE:B8:6D:91:C2:12:C1:16:CF:4E:C6:39:F8:90:66:B3:78
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1-UPT_rhtkcISwRbPTsY5-JBms3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.179.0-62.72.181.255
62.72.184.0/22
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
75:53:8c:82:08:30:07:18:f7:ad:9b:a7:93:55:33:9b:f7:66:
3a:50:3d:24:8b:c9:24:49:16:24:76:d5:67:2c:cd:8a:5c:60:
fb:ab:54:b4:51:80:ec:c1:45:69:ef:f3:dd:ad:33:da:4c:47:
85:ac:e6:80:51:3a:0b:8c:20:61:7e:56:61:cc:f8:f2:ea:95:
cd:d0:bc:5b:0d:c1:dc:69:ce:2f:c5:39:8c:01:f4:bd:91:11:
d0:44:e7:da:44:4b:71:96:d3:ec:ab:83:2b:7d:a1:3a:aa:e8:
5a:14:68:4a:4d:75:1a:53:a4:13:36:ef:72:ba:4f:77:af:b8:
cd:7a:df:9d:b1:93:5d:b2:47:23:43:f5:f2:29:32:76:ab:19:
cb:9b:86:f4:7b:47:42:f7:6e:44:32:e2:1b:e7:03:06:54:fd:
7a:ff:da:71:1e:eb:1c:0b:7f:7b:f1:3c:ad:a8:4c:45:b7:62:
0e:13:a7:3a:58:a9:d8:f0:b0:7a:5b:21:99:2b:fd:90:ec:51:
fd:82:16:ee:02:6c:9c:b9:e2:01:ce:c8:dd:13:f9:1c:dd:b7:
c1:67:7c:4f:a8:60:c1:fe:64:a0:3b:ce:7a:9f:2a:7d:30:f6:
49:bf:e8:08:3e:7a:0b:b4:6e:97:dd:39:b4:29:7d:00:21:c5:
1d:9f:2f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org