Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/3BSLSZJVilC2jxDGLA8tJZnNSuk.roa
File: 3BSLSZJVilC2jxDGLA8tJZnNSuk.roa (raw, json)
Hash identifier: 8ePd95QkpfrrDm6eFpzMbH6OmTqAnHKBc3b7MAWeTl0=
Subject key identifier: DC:14:8B:49:92:55:8A:50:B6:8F:10:C6:2C:0F:2D:25:99:CD:4A:E9
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189D0211F6652B1B409579D6F8EDF7B4A11
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/3BSLSZJVilC2jxDGLA8tJZnNSuk.roa
Signing time: Mon 07 Aug 2023 13:12:58 +0000
ROA not before: Mon 07 Aug 2023 13:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.3.0/24 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 06:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:21:1f:66:52:b1:b4:09:57:9d:6f:8e:df:7b:4a:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 7 13:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc148b4992558a50b68f10c62c0f2d2599cd4ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:f4:4e:bc:d6:94:97:40:ac:c5:f7:df:df:
df:28:3f:e0:15:84:c7:d5:11:b6:12:4d:a3:a8:ab:
58:69:be:4e:24:99:5e:78:a7:7a:8f:fa:32:45:64:
6e:48:a5:67:6d:dc:50:2c:86:f4:12:b7:30:73:5f:
08:2e:37:3a:a8:6f:1c:d9:5c:de:38:a7:5a:dd:af:
e1:60:0e:74:aa:00:c8:bc:f0:d9:4b:97:e3:0d:21:
8b:88:18:9a:b1:7b:82:bd:e4:49:3b:6f:b3:60:03:
80:0c:c7:2a:04:e8:1e:02:cf:92:bc:41:29:9e:35:
8a:ba:b4:24:49:2a:d4:9c:8e:30:a6:2b:4e:ac:d3:
ae:8c:e2:f9:7d:9a:c8:b3:d6:bf:96:43:0a:68:8f:
21:74:d9:ff:fc:39:82:4e:dd:ce:c6:16:9e:36:45:
a5:6f:5e:2b:cb:e5:b2:f2:14:67:76:96:82:70:24:
2a:f2:c9:f1:76:94:db:a5:07:7d:21:2d:72:6c:01:
0f:c1:5d:1f:a1:8a:8c:45:44:64:09:94:6f:15:4b:
00:5e:af:d2:e6:4e:18:23:37:a9:0b:0e:7f:28:d8:
44:86:46:99:50:f4:a6:0f:01:6d:ff:6d:bd:ca:66:
0a:1e:77:93:87:1d:c7:be:5f:fb:ae:e4:cd:24:cb:
d6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:14:8B:49:92:55:8A:50:B6:8F:10:C6:2C:0F:2D:25:99:CD:4A:E9
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/3BSLSZJVilC2jxDGLA8tJZnNSuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.165.0/24
62.72.169.0-62.72.170.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.1.0/24
81.21.3.0/24
81.21.8.0/24
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:78:95:ca:69:55:a6:e5:7f:19:4d:19:81:0d:1a:ed:dc:06:
ee:63:4e:6d:50:7c:64:91:c0:f2:90:42:16:19:4f:28:f2:e1:
1e:bf:4d:4c:67:ca:54:14:5f:e5:5c:30:a3:d6:59:54:6d:90:
f4:f0:e0:85:72:cc:51:6f:8b:99:9b:16:f6:99:a2:af:f6:94:
9b:c9:15:bb:52:e9:5e:e8:b2:cd:82:ed:51:e8:a9:cd:13:84:
8c:bc:df:0a:bd:06:55:ba:96:07:d7:79:19:61:d6:8d:ce:2a:
23:11:28:d7:4b:16:6c:aa:73:db:c1:8d:24:db:04:82:ac:b4:
2b:01:ee:53:54:ad:10:e1:92:29:5a:90:a6:eb:8b:32:bd:24:
95:48:59:74:99:1e:32:2e:ce:6f:a7:50:0e:86:72:58:3f:5e:
1e:d5:17:f3:01:ee:f5:93:a0:b3:38:2b:5c:48:6e:62:72:77:
d1:12:d1:67:84:a0:12:2a:41:17:e9:b8:53:64:ca:cb:30:ae:
6f:03:01:35:c5:3a:5c:03:f6:75:dc:d6:39:be:d4:47:e5:2e:
8d:41:7d:25:56:6c:61:5b:12:0c:20:79:ec:79:4a:99:f9:bf:
e3:5b:11:bf:e0:96:28:7d:70:73:6b:d0:50:eb:ce:9e:23:fc:
29:4d:47:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org