Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6rrvjYZkgIKrerxRzxmaew3PYyg.roa
File: 6rrvjYZkgIKrerxRzxmaew3PYyg.roa (raw, json)
Hash identifier: 27JUrABZDEZbU9UQxwORHzykRE/VMxcdbX3lqX1aycE=
Subject key identifier: EA:BA:EF:8D:86:64:80:82:AB:7A:BC:51:CF:19:9A:7B:0D:CF:63:28
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189E646FEFD9F92C358C7823181DCA25FBD
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6rrvjYZkgIKrerxRzxmaew3PYyg.roa
Signing time: Fri 11 Aug 2023 20:25:59 +0000
ROA not before: Fri 11 Aug 2023 20:25:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 62.72.164.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.174.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 14:08:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e6:46:fe:fd:9f:92:c3:58:c7:82:31:81:dc:a2:5f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 11 20:25:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eabaef8d86648082ab7abc51cf199a7b0dcf6328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:91:01:3b:95:6e:86:9d:c6:b4:38:30:9c:58:
a3:bc:2c:45:f9:1e:74:bb:66:91:12:8b:f6:5d:b9:
74:b4:c9:04:21:a1:4c:86:c0:11:a2:74:e4:a2:81:
db:a7:ed:e8:bc:1a:c6:68:4e:1c:06:86:6a:0e:e3:
e4:40:c9:0f:19:ad:6c:82:b6:1c:55:4c:7a:9d:a4:
53:30:6b:41:4f:08:0a:4b:08:64:d4:ff:ff:5a:7d:
de:d9:8b:2d:b2:a4:a3:99:2f:ab:2e:98:8d:17:f5:
dd:6c:3a:14:72:2b:2e:8a:85:18:ee:da:e7:42:83:
3b:52:a8:7f:76:e0:29:22:98:2c:8b:3b:6f:c4:25:
0f:07:09:c9:1c:d4:0e:5a:57:6c:67:fd:5c:22:47:
c9:48:d6:8e:ee:e8:c3:c9:32:8f:3b:8f:6d:6e:07:
bb:fd:69:13:b8:95:2c:b9:df:68:9a:23:99:40:a9:
8b:d6:15:63:6b:c2:fa:0d:b2:2f:c1:a6:7d:ef:2a:
b2:83:83:02:5f:81:26:b1:99:db:f7:bc:b2:81:90:
1e:a7:9e:4b:89:c9:77:9f:d1:db:e0:34:bd:82:51:
81:02:f9:a2:e3:34:b1:13:42:cb:c8:4e:4d:f9:2a:
44:e6:bc:9f:72:e2:d3:b3:54:0b:ec:8d:b2:97:64:
18:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:BA:EF:8D:86:64:80:82:AB:7A:BC:51:CF:19:9A:7B:0D:CF:63:28
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/6rrvjYZkgIKrerxRzxmaew3PYyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.164.0/24
62.72.168.0/24
62.72.173.0-62.72.174.255
Signature Algorithm: sha256WithRSAEncryption
a0:07:ff:fa:10:55:94:b7:61:65:5c:57:15:74:1f:2e:d2:26:
42:f1:1c:f3:37:66:14:02:9b:cc:96:d5:85:ee:6c:e6:2d:f9:
8f:f2:49:33:bc:b1:11:39:23:d7:fc:bc:15:99:48:f6:55:88:
da:54:2d:93:2a:1f:9d:14:37:75:67:b6:ef:20:11:1c:8f:fe:
b3:60:5f:12:0f:a6:07:96:bc:f5:98:94:a1:fd:ef:e2:aa:ba:
1b:ec:39:33:2b:2e:e4:a2:45:6a:71:1f:0b:40:ae:24:a5:3d:
24:fd:41:bd:9a:42:f7:e1:08:c2:fa:03:5d:a3:87:08:17:8e:
5d:7d:cf:ae:14:76:30:4d:5e:41:14:30:c6:bc:a4:9a:79:2d:
4f:16:32:27:d5:f2:fc:84:ae:b2:b1:16:bf:fd:08:dd:d1:b7:
74:5e:d5:17:d7:2d:f4:ae:2f:67:06:78:02:d0:bf:de:d2:de:
71:d6:dd:58:95:6d:fb:33:a8:01:a1:54:74:d3:36:10:69:d1:
73:40:f7:45:aa:34:15:dc:5b:a3:33:ae:a0:bd:8f:89:26:14:
6d:2b:f5:39:24:97:78:f0:bc:fc:52:de:2c:96:bd:53:9b:bc:
c1:86:f5:21:e8:6a:a5:06:3e:2e:47:db:43:40:51:4e:dd:aa:
7e:28:e1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org