Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/4YwkQ-KfZ9VXLU10IlZ0-w11pB8.roa
File: 4YwkQ-KfZ9VXLU10IlZ0-w11pB8.roa (raw, json)
Hash identifier: k08F/R4lBRqiCXeadB0U7VegnCjthXOdSWVpoQI8UqE=
Subject key identifier: E1:8C:24:43:E2:9F:67:D5:57:2D:4D:74:22:56:74:FB:0D:75:A4:1F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C339A5663D9C8D7CB6B6FADF62E21B9CC
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/4YwkQ-KfZ9VXLU10IlZ0-w11pB8.roa
Signing time: Mon 04 Dec 2023 06:53:21 +0000
ROA not before: Mon 04 Dec 2023 06:53:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.174.0/23 maxlen: 23
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.189.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Dec 2023 10:13:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:33:9a:56:63:d9:c8:d7:cb:6b:6f:ad:f6:2e:21:b9:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 4 06:53:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e18c2443e29f67d5572d4d74225674fb0d75a41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:88:e3:3a:87:ab:be:52:ea:f4:73:ad:3b:
79:fa:65:fd:72:b5:33:40:a9:1e:ce:06:42:3f:14:
90:68:25:40:b0:3f:2c:57:b3:ba:62:19:86:cd:1f:
85:be:fc:ae:b7:ed:80:56:b8:5e:b0:85:07:4e:0c:
1a:5c:fd:24:00:19:f3:0e:86:48:ac:67:f4:5a:85:
be:30:09:3d:c4:f6:83:ae:67:ec:61:43:05:a2:ff:
7f:1f:08:f8:c9:6e:21:d0:95:f3:2c:30:31:c0:86:
67:25:d2:db:03:ba:85:da:af:f9:e8:d6:55:7a:f8:
b5:ed:01:18:52:7e:9f:d3:e3:11:1c:e6:e4:6e:86:
58:69:d7:59:f1:1d:42:22:e0:73:0c:78:23:c8:26:
8c:8b:f8:a0:1a:8e:f1:f5:16:cb:de:f7:8b:f0:40:
06:f0:2c:c2:22:51:74:5f:16:ca:5a:0e:c1:77:63:
8e:b6:f4:9b:ce:69:c8:d6:6e:f5:cc:f0:12:71:ab:
76:83:1d:e0:5e:79:1a:c4:ab:1a:06:84:8f:7b:b1:
a4:31:fb:60:37:69:83:d4:af:2b:98:dc:4c:33:a2:
b8:49:34:10:9f:05:38:75:6d:8a:73:5e:6d:93:0b:
8d:12:e1:6a:29:b3:90:c6:fe:53:8a:40:c1:fe:eb:
5a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:8C:24:43:E2:9F:67:D5:57:2D:4D:74:22:56:74:FB:0D:75:A4:1F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/4YwkQ-KfZ9VXLU10IlZ0-w11pB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.180.0/23
62.72.184.0/22
62.72.189.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
29:27:49:75:54:4b:2f:79:ec:50:f3:bf:36:ee:e2:bf:77:64:
b1:f2:15:33:d7:35:f5:8c:48:0a:c6:29:8a:76:dd:78:82:34:
65:6f:66:1c:34:c0:5e:ab:60:f7:13:1b:45:59:c9:ca:ae:96:
e5:07:11:07:74:a1:a1:87:e5:e7:52:19:af:e9:b3:52:2a:34:
e4:76:02:4a:53:42:89:a8:24:64:be:e0:00:86:17:6b:fc:63:
0f:d3:bb:6d:19:26:dd:b0:97:4b:f3:96:9c:72:3e:67:2e:72:
8f:76:15:2f:d6:15:c4:04:65:a7:60:52:0e:73:1d:99:7d:37:
a4:72:42:45:3d:bc:a2:7a:f7:dc:e5:86:ae:a4:96:96:77:1c:
3d:72:a0:2d:51:e4:4e:b1:cb:e9:55:24:c4:fc:b3:f0:94:ee:
0a:43:21:a2:f8:79:0f:03:c2:ce:54:9c:4a:66:04:cd:04:3d:
99:fb:74:4a:a0:58:c0:6f:19:a8:64:27:14:81:99:8b:2f:b4:
4a:32:13:f5:b1:65:45:1a:5a:e5:66:3f:cc:4f:1b:63:a7:92:
f6:e5:50:8e:2b:69:2c:ad:ed:63:eb:bd:b8:4a:0c:f1:81:0b:
58:1b:06:af:a4:df:87:af:df:be:6b:8d:75:82:12:d2:86:ca:
b6:74:9d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org