Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6nfvMEzki-d3gmmyw9kzUmcELPs.roa
File: 6nfvMEzki-d3gmmyw9kzUmcELPs.roa (raw, json)
Hash identifier: 1x/LVj0gECKlqzBEbKo4er/s8cfjtQdMb7pQ/RnqD7c=
Subject key identifier: EA:77:EF:30:4C:E4:8B:E7:77:82:69:B2:C3:D9:33:52:67:04:2C:FB
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0191416949348B33134B36D3995906EFBB2A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6nfvMEzki-d3gmmyw9kzUmcELPs.roa
Signing time: Sun 11 Aug 2024 12:28:24 +0000
ROA not before: Sun 11 Aug 2024 12:28:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.164.0/23 maxlen: 23
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.14.0/23 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.57.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Aug 2024 12:03:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:41:69:49:34:8b:33:13:4b:36:d3:99:59:06:ef:bb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 11 12:28:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea77ef304ce48be7778269b2c3d9335267042cfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:74:c5:b5:1c:df:c1:3b:78:6c:11:d1:95:7d:
2b:e9:91:a5:77:83:e5:1b:10:30:34:8e:8d:05:b9:
dd:2e:92:c0:f0:82:16:ba:6f:3f:f4:f6:31:2a:f0:
a7:df:5e:54:83:b2:77:4f:96:49:0f:b1:9f:d9:3e:
17:39:47:89:d5:a3:c4:98:f7:30:ff:49:7e:68:da:
44:4e:d0:3d:56:52:fb:f2:c1:a4:db:27:fe:f9:1f:
50:05:29:7a:3a:12:ed:77:0e:96:27:26:a2:e8:7a:
a4:74:33:27:3d:58:9e:be:e9:55:5b:01:6e:10:41:
04:64:44:b9:ae:9a:f8:bd:d0:c1:b5:4d:f8:12:af:
93:c1:9e:9d:ee:49:55:d1:43:1c:9f:d0:5b:95:b6:
85:28:5a:e7:09:53:a4:75:6d:7b:ea:ea:ab:c6:52:
0d:5c:4b:54:06:57:21:b3:de:3e:2d:d8:d9:63:93:
ac:b9:ca:b5:d8:96:b8:b2:dc:49:a6:15:fb:a2:5f:
b7:02:d6:34:42:07:a4:f1:8e:a5:77:3e:31:99:f9:
1e:ca:65:60:03:83:39:c8:48:d9:41:ff:0f:22:34:
4c:ed:26:90:d5:df:62:77:5a:c7:70:5a:49:93:58:
b5:67:1e:89:a7:c5:1b:c2:f1:a1:0d:a3:e6:cf:01:
d4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:77:EF:30:4C:E4:8B:E7:77:82:69:B2:C3:D9:33:52:67:04:2C:FB
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6nfvMEzki-d3gmmyw9kzUmcELPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.167.255
62.72.188.0/23
81.21.2.0-81.21.15.255
176.57.57.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
87:fe:a9:8a:65:79:56:e7:28:fa:17:af:ee:b8:58:94:71:b8:
01:82:a0:cb:6a:c3:a2:a8:c3:c5:2e:82:b1:fe:46:71:b7:2f:
a2:c7:f3:99:30:f9:40:89:11:94:f8:fe:99:e2:43:c1:32:38:
9e:bb:b4:11:03:36:fb:ee:48:0c:91:01:50:bd:09:84:af:35:
d8:09:d3:6e:f1:cb:31:a1:c1:d9:66:b2:5f:7b:05:b2:53:ed:
32:b7:c3:48:8a:4d:03:d2:80:28:1d:eb:62:9e:ff:4f:6d:e4:
42:9e:5b:19:9a:4e:b4:f4:81:c9:b7:53:65:05:85:9e:ef:04:
3a:8e:d3:4a:fc:ae:f8:ef:66:94:1b:ce:f4:cd:95:18:aa:88:
f6:e4:f5:f6:60:f8:a1:8d:0a:19:b9:29:74:b0:2f:ee:f3:7d:
ad:b1:1c:d0:b1:1a:e0:5e:e8:63:c8:3a:b9:84:77:1a:d5:cf:
ea:5e:33:5f:55:c2:7e:15:39:3d:31:5b:1b:57:d7:b0:66:63:
b5:7b:e4:7b:0f:1f:1d:a0:f1:d9:26:54:2b:f4:df:c2:34:f2:
ca:df:be:fb:1d:2f:db:83:07:0b:61:14:0a:eb:3e:c3:da:5b:
f9:50:00:29:b0:ab:f3:9b:5c:58:05:30:c1:5a:85:a7:f4:63:
91:78:eb:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 13 14:24:59 2024 by rpki-client on console-ams.rpki-client.org