Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/20PAeSTGW4Oc0-k6tdVVQT7dQQI.roa
File: 20PAeSTGW4Oc0-k6tdVVQT7dQQI.roa (raw, json)
Hash identifier: JN5DxnXx9NNUnnvKUFaSSxyLNiaWqfRWImnP5pHV5XA=
Subject key identifier: DB:43:C0:79:24:C6:5B:83:9C:D3:E9:3A:B5:D5:55:41:3E:DD:41:02
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0185AC0DDFC772AF31839173A32FCA2E9DDD
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/20PAeSTGW4Oc0-k6tdVVQT7dQQI.roa
Signing time: Fri 13 Jan 2023 16:54:28 +0000
ROA not before: Fri 13 Jan 2023 16:54:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209186
IP address blocks: 62.72.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ac:0d:df:c7:72:af:31:83:91:73:a3:2f:ca:2e:9d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 13 16:54:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db43c07924c65b839cd3e93ab5d555413edd4102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:14:9e:49:10:ef:cb:1f:16:4e:03:1d:e4:40:
63:9b:32:3c:95:b5:29:47:0d:4f:00:11:bb:4b:c2:
3f:9f:aa:bd:48:97:d1:16:44:23:c4:c3:b2:50:b7:
7c:c2:ad:60:57:6c:57:eb:47:47:8c:a4:d5:82:c3:
f5:d8:b1:85:fb:6e:5b:67:b0:f4:2d:09:be:f5:d9:
a7:9b:01:40:b7:10:ff:9a:3f:42:3c:b6:a9:a4:82:
68:bd:ad:12:5c:24:64:9d:11:46:e4:13:b4:de:8c:
b1:d9:1c:86:d9:78:91:47:8c:3e:93:3c:70:f5:be:
84:ec:55:c5:be:16:ac:bf:fd:6f:ce:b3:0b:0c:93:
2a:0d:3a:18:4c:ff:f8:cf:0d:62:bd:b8:1e:59:6b:
bd:ce:d3:53:8f:ce:e4:d6:a4:3f:b1:ee:f4:33:39:
28:15:f4:ad:18:80:8e:b0:4e:bc:79:3f:28:c1:d6:
37:89:b4:22:10:8d:fa:21:df:aa:40:35:af:c5:97:
85:77:be:83:10:5f:1d:bb:f5:6c:6c:9e:db:93:01:
08:1d:5a:98:64:86:4f:81:50:41:cc:35:d4:d1:95:
28:77:7d:16:70:c2:e6:8a:d0:32:8c:5d:98:d0:cf:
5d:ce:72:df:28:7b:eb:d9:80:e7:bc:6c:67:e2:ef:
68:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:43:C0:79:24:C6:5B:83:9C:D3:E9:3A:B5:D5:55:41:3E:DD:41:02
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/20PAeSTGW4Oc0-k6tdVVQT7dQQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.172.0/24
Signature Algorithm: sha256WithRSAEncryption
48:cd:2a:d6:eb:e3:c0:a1:73:1b:af:51:31:d1:8e:5e:07:db:
d4:3f:f3:dd:4e:36:c4:05:5a:e5:a6:a6:bf:67:74:4a:a3:27:
f1:b2:2b:60:54:f6:61:0e:e1:be:fc:fb:33:c8:71:20:26:36:
35:a6:6e:64:d1:51:56:d4:56:be:e0:79:a0:56:ab:3c:0b:ed:
b6:fb:a5:e0:34:aa:cc:1f:54:d7:30:d4:a4:20:e7:da:1b:d2:
06:95:30:25:c5:3f:ea:b1:da:af:58:87:f7:6e:cd:cc:d6:f0:
91:b7:a0:5d:4a:ac:6c:e3:d7:d9:c5:3a:33:60:af:82:04:7d:
53:39:52:70:aa:eb:7d:1f:53:93:fe:45:62:96:56:50:76:a8:
f7:71:fa:6f:0c:f4:3d:92:23:2d:61:62:4f:6e:c8:c7:d1:11:
a3:b9:a0:ea:2f:46:01:7f:5f:e8:76:53:41:5b:06:0c:b2:86:
58:5e:e4:15:50:df:c7:23:fe:29:38:a2:bd:75:fd:bb:38:b7:
e3:ff:10:a3:45:e9:2a:b3:fa:2f:01:6c:68:87:9a:46:8a:31:
69:5c:ab:80:e6:c8:90:a9:0b:66:1f:96:a8:6d:a9:f2:f5:33:
8d:a6:34:00:98:4c:4d:e9:07:54:4b:5f:7e:f1:f8:df:28:6b:
46:2a:36:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org