Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1-k2GgLkaXJTtoim33enNTDdz5eI.roa
File: 1-k2GgLkaXJTtoim33enNTDdz5eI.roa (raw, json)
Hash identifier: bmRPQVU9Bw2qxuA1LtssMtPvujYhGVEJfql9bjvMrIw=
Subject key identifier: FA:4D:86:80:B9:1A:5C:94:ED:A2:29:B7:DD:E9:CD:4C:37:73:E5:E2
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B5615925924F1FF910D64FB8911D62670
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1-k2GgLkaXJTtoim33enNTDdz5eI.roa
Signing time: Sun 22 Oct 2023 06:32:16 +0000
ROA not before: Sun 22 Oct 2023 06:32:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.164.0/22 maxlen: 22
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.5.0/24 maxlen: 24
81.21.6.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 25 Oct 2023 06:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:56:15:92:59:24:f1:ff:91:0d:64:fb:89:11:d6:26:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 22 06:32:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa4d8680b91a5c94eda229b7dde9cd4c3773e5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:65:32:05:de:71:8a:00:d1:a8:79:80:77:c0:
81:21:51:9e:fe:67:0f:f1:a0:2b:16:02:17:c7:07:
71:65:38:24:22:50:a4:6f:a7:87:f9:89:82:73:f5:
7d:21:23:89:06:46:94:42:ee:0e:47:c5:51:34:80:
88:ef:e4:40:f9:c7:92:9f:9e:e8:4a:c6:ba:3b:ec:
ca:9a:ba:17:fa:16:ce:41:7c:b5:d0:f9:a5:82:ec:
27:41:eb:09:09:52:61:8c:14:b4:88:56:1b:63:38:
6b:22:22:ca:d1:a7:47:f7:19:df:e6:db:c1:5d:e5:
54:b5:f7:8d:28:fc:38:85:d2:99:13:e5:fa:e3:66:
09:2c:6a:58:4d:79:6a:94:ab:26:80:a0:16:8c:dc:
92:a1:8b:7d:d6:9b:6b:ad:96:64:71:c1:32:2f:15:
37:a6:c0:a2:4a:7e:bd:8f:66:99:5e:57:13:0b:ec:
5b:23:3f:df:d9:7d:11:0a:89:99:3f:d2:9f:41:99:
e8:fb:63:01:0b:04:7c:e4:23:67:16:97:07:19:07:
e9:aa:3d:50:b7:ca:00:c6:39:3b:d9:52:ba:53:56:
4f:8e:20:f6:e9:a7:63:68:be:34:9c:36:be:c3:65:
c4:4a:bd:de:c1:cc:5a:1e:9a:3a:f4:49:f8:49:01:
a8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4D:86:80:B9:1A:5C:94:ED:A2:29:B7:DD:E9:CD:4C:37:73:E5:E2
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/1-k2GgLkaXJTtoim33enNTDdz5eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
65:87:d5:91:22:9a:bf:bb:57:a1:54:75:de:6c:c0:85:4f:0b:
9d:10:3c:79:23:f5:aa:ae:97:b3:21:03:f9:4a:37:48:7e:d5:
56:d4:6e:c0:fb:55:f7:c4:12:1d:fa:71:6b:7e:e7:49:cc:3f:
d6:a4:f3:fc:41:f6:72:95:3e:37:84:dc:d8:a5:ec:6d:c3:3d:
fb:10:67:92:58:b0:c5:88:ea:77:d4:30:02:dd:e2:b9:6f:b0:
92:4a:10:16:f9:d5:f8:e2:0c:8b:b1:83:63:32:8a:d7:e2:a4:
3c:32:3b:da:ca:38:c9:6d:86:07:11:a2:84:47:9f:ba:96:f6:
ec:94:77:b0:f4:06:d1:36:40:34:e9:45:7b:c0:16:19:7e:91:
d6:a6:51:25:bc:d6:00:d4:e5:f0:1b:c8:4d:7f:24:b4:99:82:
9a:71:43:a8:e2:c0:58:08:eb:11:aa:a2:23:2c:6a:8b:28:a2:
7d:4e:60:ed:2b:b8:43:9a:10:e9:36:1c:9d:cc:36:29:b7:97:
c2:93:0b:1c:ec:a7:b3:f8:e4:38:80:91:98:5e:4b:d4:65:e1:
d4:16:f3:9d:2d:b4:63:8f:98:42:88:e8:1a:1a:09:f4:94:af:
93:d0:3e:24:ea:03:a1:29:84:08:cc:56:c5:55:42:d1:ed:1b:
a8:cd:a8:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org