Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/5qT2gFYEvIEHt6JHNbE-QjasOkU.roa
File: 5qT2gFYEvIEHt6JHNbE-QjasOkU.roa (raw, json)
Hash identifier: PT5vV4yV52cndUq/ooeHd7mplKhVl4RD27qTfSNfZBY=
Subject key identifier: E6:A4:F6:80:56:04:BC:81:07:B7:A2:47:35:B1:3E:42:36:AC:3A:45
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0188D31ABC0C72F83D156ABF2610646A46CF
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/5qT2gFYEvIEHt6JHNbE-QjasOkU.roa
Signing time: Mon 19 Jun 2023 10:02:04 +0000
ROA not before: Mon 19 Jun 2023 10:02:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140155
IP address blocks: 62.72.185.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 07:21:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:1a:bc:0c:72:f8:3d:15:6a:bf:26:10:64:6a:46:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 19 10:02:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6a4f6805604bc8107b7a24735b13e4236ac3a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b9:6e:00:fe:ed:f0:b2:5d:bc:19:9e:ec:44:
ea:2c:88:22:60:29:f4:64:c4:61:56:c6:26:47:26:
0a:ba:af:d1:33:d7:eb:02:88:19:dd:37:e4:37:a3:
8d:c1:5f:2c:d8:18:5a:10:e1:8e:6b:d5:cd:25:66:
c3:c5:dc:c8:64:0f:a7:01:94:30:87:ab:8d:7f:f9:
91:83:08:d6:08:a4:67:21:a6:d1:ef:49:a5:53:aa:
a6:d0:14:19:ed:e6:29:fc:9c:30:78:67:b2:ae:c2:
5d:d4:76:1f:d7:64:f0:84:c7:a5:25:d8:ab:7a:5d:
77:a8:74:8e:fa:0a:99:43:fb:ae:83:a0:a1:56:48:
04:e6:66:eb:70:e4:b6:65:1d:95:81:4d:0a:f3:eb:
02:52:eb:6d:06:1e:c8:ee:76:79:78:03:05:ce:3c:
3e:f3:5e:ac:0e:4f:06:97:83:23:6f:dc:89:c3:ee:
08:36:f2:b0:a3:f4:d1:ca:3f:c4:f0:3b:13:78:8c:
e5:29:d1:46:1a:26:67:39:4c:f3:a3:79:a6:d6:5e:
8d:d0:46:7f:84:30:d0:6b:6c:f9:fb:14:27:be:76:
39:a1:10:71:71:0b:e5:51:86:1e:f5:1c:97:2f:22:
70:a9:5a:8b:ec:af:33:d0:e0:5a:a1:c6:bf:09:a4:
b3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A4:F6:80:56:04:BC:81:07:B7:A2:47:35:B1:3E:42:36:AC:3A:45
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/5qT2gFYEvIEHt6JHNbE-QjasOkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.185.0/24
81.21.13.0-81.21.15.255
Signature Algorithm: sha256WithRSAEncryption
6f:89:0b:fc:54:07:83:68:cf:a3:50:61:e6:b0:8c:3e:82:7b:
85:93:98:74:a4:c9:a5:e3:f1:88:e8:01:16:4d:b4:9c:52:36:
f1:f0:df:96:1b:64:9b:70:1e:ed:26:94:b6:ea:a9:37:ea:c9:
31:3c:36:e5:c6:17:a6:31:7a:50:e3:9e:70:9e:7e:ea:60:fa:
c2:6b:fd:ab:7d:aa:83:59:5c:6d:fb:21:18:82:45:29:fd:63:
35:38:25:23:f9:fa:85:0c:7d:ca:e2:e4:c0:f5:34:01:4a:b1:
70:8f:3a:d9:b3:72:31:da:06:2e:84:12:82:1d:29:f0:e9:78:
08:8a:37:76:f9:d4:f9:e0:62:21:71:5d:28:1f:aa:61:72:dd:
d5:a4:ad:2c:a1:f4:f1:c5:62:fc:46:0a:8d:84:98:6e:5e:1a:
2b:fc:8d:92:aa:1f:5a:66:a5:11:04:c3:d2:13:25:d9:9a:32:
70:24:e1:df:b0:7a:c6:6b:b5:16:40:45:4d:10:52:33:36:34:
5f:3c:18:2d:f6:a7:32:a9:aa:91:03:03:c0:15:bf:c4:17:fa:
f2:aa:f9:73:cd:44:94:9f:ca:df:e0:91:1b:3b:cf:a2:c9:29:
f7:d5:a1:e2:45:82:91:4a:9a:74:c9:91:5f:6b:6b:dc:ed:93:
fb:fa:69:39
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org