Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2z3NA5AtBWPUNkQ8ue8SSnN5lNw.roa
File: 2z3NA5AtBWPUNkQ8ue8SSnN5lNw.roa (raw, json)
Hash identifier: koyqyAVgkoFqc1EPXYkA6pLdyMQ+o4BMwG8jNubdw3s=
Subject key identifier: DB:3D:CD:03:90:2D:05:63:D4:36:44:3C:B9:EF:12:4A:73:79:94:DC
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C4E161BFC67C70CD174E63AD31EA740FD
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2z3NA5AtBWPUNkQ8ue8SSnN5lNw.roa
Signing time: Sat 09 Dec 2023 10:18:40 +0000
ROA not before: Sat 09 Dec 2023 10:18:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400866
IP address blocks: 62.72.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Dec 2023 06:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4e:16:1b:fc:67:c7:0c:d1:74:e6:3a:d3:1e:a7:40:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 9 10:18:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db3dcd03902d0563d436443cb9ef124a737994dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b9:9c:c0:fb:33:7b:7f:d9:12:26:93:d4:cf:
8e:88:b3:13:7c:63:1a:0e:cd:37:ee:71:d7:01:3d:
b5:58:73:ca:53:08:74:38:dc:9c:e0:da:e1:6a:71:
14:bb:4c:7c:ad:da:cd:5b:ca:72:b0:0a:59:4d:69:
d4:97:fe:90:0c:c1:d1:54:38:6e:fd:0e:18:0e:00:
be:7b:34:cf:1e:b8:41:18:fc:58:5d:a1:c7:62:d4:
be:d2:b7:2b:30:98:2b:68:42:f3:a8:ec:26:da:53:
ee:8f:6f:c9:08:5f:ff:fb:1b:64:d3:f2:b6:f3:ea:
a4:a7:69:c3:19:47:eb:7f:a8:a6:d2:ca:43:00:b1:
99:2b:be:64:6a:7e:f2:36:55:11:0c:e3:c4:67:96:
a0:ef:73:47:17:ec:92:6f:18:ff:86:e8:d8:d1:aa:
3a:cf:d0:42:5d:96:47:ae:67:81:9e:4c:ea:e0:a7:
a2:9d:18:21:6f:0d:9c:ca:c4:5a:ad:2b:9a:50:f7:
06:09:d3:f6:fd:51:72:40:e3:7b:74:0a:45:0c:ed:
c9:31:8c:2a:3f:e2:b5:a4:29:f9:8d:93:f6:50:fa:
05:17:b6:6c:2a:45:d4:35:43:ba:8a:f5:3a:c4:ad:
4a:77:96:f4:86:f3:d0:c4:0d:d5:f9:b2:6c:f5:73:
92:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3D:CD:03:90:2D:05:63:D4:36:44:3C:B9:EF:12:4A:73:79:94:DC
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2z3NA5AtBWPUNkQ8ue8SSnN5lNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.171.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:82:2f:f4:73:c5:74:3a:d2:f7:57:8f:d5:be:7f:b7:04:1c:
de:ff:94:b3:9b:81:ee:1c:3e:f8:3e:65:b3:9a:3a:a2:6b:a6:
e6:ac:f7:a8:ef:ba:eb:2a:be:34:8a:5a:08:af:f5:23:e8:4e:
f0:c3:62:cd:f7:a9:6d:83:69:96:36:88:fd:41:9e:ed:94:a9:
a3:73:87:56:96:ce:43:85:6a:42:1b:dc:98:bf:1d:f0:57:da:
74:d6:98:ad:cd:3b:54:db:84:cd:3d:ef:90:6f:b7:2e:6b:84:
6a:ab:73:1d:a0:2b:58:36:96:7d:08:52:de:14:e9:2c:20:19:
27:d6:b4:01:1f:88:e6:2e:2a:98:b1:c9:d7:05:58:b0:23:ab:
70:bb:d9:0d:f0:af:2f:65:e6:11:9e:a0:9a:3b:82:9a:40:47:
bb:6c:89:b0:4b:6c:97:01:37:df:7a:91:45:73:fa:c0:9e:16:
18:c4:c4:94:b9:ff:bb:f7:9f:f6:78:28:43:f8:d4:4d:b6:52:
43:6b:ad:1b:a1:2b:d0:b3:40:fe:5d:b6:26:be:fc:9e:e5:ef:
08:d2:3b:e3:cf:79:9a:fd:67:04:40:34:a1:2a:1d:b6:a1:5b:
0c:79:55:38:a8:a1:42:7c:39:22:99:c3:83:80:43:ec:61:58:
76:a8:57:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org