Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/27rDcjmkmBFLzVI816y5uYKRjEM.roa
File: 27rDcjmkmBFLzVI816y5uYKRjEM.roa (raw, json)
Hash identifier: tTnGSSuKRW1jW9OcsET+wrQCmuEDjhjeDpGEcbAaIzY=
Subject key identifier: DB:BA:C3:72:39:A4:98:11:4B:CD:52:3C:D7:AC:B9:B9:82:91:8C:43
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BEC6F56958F996FEF83FECC162B28DF10
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/27rDcjmkmBFLzVI816y5uYKRjEM.roa
Signing time: Mon 20 Nov 2023 11:13:21 +0000
ROA not before: Mon 20 Nov 2023 11:13:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.174.0/23 maxlen: 23
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.191.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 07:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:6f:56:95:8f:99:6f:ef:83:fe:cc:16:2b:28:df:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 20 11:13:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbbac37239a498114bcd523cd7acb9b982918c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:63:aa:9e:b6:a0:6b:a2:b4:eb:b0:60:a3:52:
e7:99:d8:28:4d:f3:94:bb:ac:b5:5c:19:60:2b:0a:
26:ae:0e:d1:73:05:46:fb:c0:e9:ef:36:e9:0d:26:
39:1a:6b:0a:ba:32:a4:a8:d0:f9:cc:1d:9d:a3:f2:
e4:f4:41:8a:42:ad:6d:20:e5:01:b8:2d:10:6b:15:
15:64:5a:83:40:05:56:ce:eb:ca:dd:75:e1:02:37:
e1:48:54:1a:1b:ad:16:45:fc:96:af:ce:03:8d:a4:
1c:fe:d6:db:e7:13:2c:14:70:36:a6:6d:c2:3e:eb:
a0:9c:f5:42:e2:2b:b8:f9:7d:0d:55:ec:39:5d:c1:
4c:bb:8d:ec:83:01:8d:e7:b6:b6:78:e5:e9:e1:cc:
9a:0c:2a:fb:04:f7:85:3d:29:13:e0:d3:a1:ab:36:
0f:4d:b3:f4:6f:a7:97:cf:ea:31:0e:33:72:fa:64:
10:84:c5:51:14:8c:b8:04:db:0a:9f:ab:69:2f:d2:
66:8e:ea:8b:83:82:c4:0a:46:8c:cf:54:6f:9c:54:
6d:7d:39:ad:f3:ed:7e:95:16:25:85:c6:be:00:d3:
d8:c4:83:96:18:e4:7a:8f:74:06:66:e3:3c:33:83:
2a:63:3f:e0:72:95:2c:ae:87:1d:58:4f:dd:81:61:
be:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BA:C3:72:39:A4:98:11:4B:CD:52:3C:D7:AC:B9:B9:82:91:8C:43
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/27rDcjmkmBFLzVI816y5uYKRjEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.180.0/23
62.72.184.0/22
62.72.189.0/24
62.72.191.0/24
81.21.2.0-81.21.8.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
48:81:fa:f9:45:04:99:f5:17:b8:74:b4:7b:3a:ad:b0:c8:a1:
2c:07:ef:5e:d3:45:c1:da:7d:14:72:11:99:67:2b:15:53:62:
90:5f:a9:84:69:17:50:45:91:c8:55:e6:75:61:84:1e:80:2a:
d5:90:1c:75:cc:47:0c:81:00:3e:53:b9:bd:de:8a:ed:90:ec:
5a:35:c6:b7:98:39:57:2f:3b:12:dc:15:8e:48:b8:09:32:2a:
f8:8a:a3:69:2a:91:e5:b0:cb:5a:ab:74:6b:51:a3:c4:a4:92:
1d:3a:95:81:0a:72:57:1b:7d:d9:27:8a:14:45:67:0b:68:a4:
4a:25:d1:88:db:8c:7c:df:ba:16:71:db:f0:d6:81:b3:11:4b:
4f:49:0a:f8:3a:8d:cc:84:89:9d:cd:1d:32:32:0f:ef:09:c2:
93:05:61:f3:ea:76:f0:61:46:3e:02:5f:58:28:cf:9e:40:7a:
f4:ab:40:43:56:3e:88:07:f7:cc:74:3d:41:7b:b0:41:42:e3:
e9:d0:9a:91:fe:e8:4f:21:35:d0:e6:7d:8a:c1:7b:1e:9d:ac:
93:a3:cf:17:dd:95:ba:d6:9c:5b:62:66:e6:16:b4:28:6e:8a:
3d:7a:62:72:80:c1:71:7e:c4:36:9b:fd:33:f5:11:2e:c5:87:
74:9a:e3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org