Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/858PlKx7TeDHwv7NGwcJuWC8t8A.roa
File: 858PlKx7TeDHwv7NGwcJuWC8t8A.roa (raw, json)
Hash identifier: /Ydz1xMZsWx9TiTpSaLCWiDYkqjzCxYrEPpHQBuNcVA=
Subject key identifier: F3:9F:0F:94:AC:7B:4D:E0:C7:C2:FE:CD:1B:07:09:B9:60:BC:B7:C0
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01856F4B868173FBB2050D0B26E76CDF8976
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/858PlKx7TeDHwv7NGwcJuWC8t8A.roa
Signing time: Sun 01 Jan 2023 21:44:58 +0000
ROA not before: Sun 01 Jan 2023 21:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 62.72.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:86:81:73:fb:b2:05:0d:0b:26:e7:6c:df:89:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 21:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f39f0f94ac7b4de0c7c2fecd1b0709b960bcb7c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:19:29:2e:c0:8a:73:4a:64:e4:cd:e4:62:c4:
18:3a:ef:af:0c:f8:0b:f6:d0:40:40:67:38:5f:50:
5d:98:52:30:93:ec:ae:d5:c8:38:42:b6:53:5f:61:
37:2c:e5:c8:e1:b7:b6:96:16:fc:7a:95:14:d0:bb:
76:12:0f:4a:81:e0:f5:07:09:d8:73:4a:9f:3d:2a:
ec:e6:c9:0b:a0:bf:56:13:3b:46:0f:d0:c8:a8:d9:
e5:57:a4:55:eb:bb:55:99:f2:2e:79:e9:55:5a:ce:
49:60:18:47:59:9f:68:89:02:8a:75:f9:fa:8c:e8:
14:00:70:30:3d:ea:ff:81:a1:8d:77:ba:53:bc:fb:
10:44:f4:05:22:ef:27:5a:06:96:cb:f9:60:90:1d:
15:97:c3:4c:d1:72:0a:e6:0c:d5:7a:d5:d9:16:24:
85:02:88:5f:2d:6a:0f:d5:42:11:54:1c:e1:25:5d:
d5:35:1f:9c:a1:39:22:81:3b:ea:da:8b:2e:4a:9d:
7e:2e:dc:c0:1e:87:f6:4a:6a:ca:44:d2:21:8f:e1:
df:3e:5b:ba:d4:d0:a1:b7:ba:41:f2:40:56:2f:bc:
48:c2:f8:3b:f2:8e:34:dc:e4:d2:8d:24:6e:70:af:
18:dd:d3:9b:5d:41:6c:49:6e:43:b8:6f:f8:1c:30:
62:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:9F:0F:94:AC:7B:4D:E0:C7:C2:FE:CD:1B:07:09:B9:60:BC:B7:C0
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/858PlKx7TeDHwv7NGwcJuWC8t8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.178.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:94:3a:55:8d:db:35:8d:fe:03:b9:15:4d:00:03:bf:b7:2f:
99:e9:c4:5e:9b:41:6f:b5:f1:25:69:ef:58:9d:c5:e3:e9:ef:
a7:c8:86:40:04:ea:0b:e9:47:cd:ed:f2:72:10:c9:92:39:b2:
36:30:48:3d:a7:36:94:1f:9f:dd:91:1f:12:c7:5e:96:59:99:
ad:98:35:5c:80:92:03:65:e3:6a:9d:f8:57:c2:87:4c:65:ba:
67:4b:26:21:0b:84:41:6b:b0:17:89:65:67:2f:3c:43:ca:7e:
b0:ed:a8:1d:3d:b6:a1:43:75:3a:22:53:df:8a:ab:65:2e:6a:
1e:58:d3:3e:5a:f3:9e:30:fa:48:a8:a4:00:d3:8b:7f:ae:03:
6f:4a:e3:6f:78:61:05:8e:36:3e:b4:5b:3a:56:9c:c7:a1:28:
8d:f4:66:f8:02:13:48:5d:5c:db:7f:0c:c5:be:c6:d1:68:26:
b7:d2:90:28:ae:f6:9a:33:68:5b:ac:d3:57:a3:88:fe:36:35:
d1:01:a7:61:c1:54:d1:60:56:65:cd:fb:c4:8a:8f:a0:a1:30:
5f:c8:cf:46:4b:5c:1d:fb:30:a6:80:6b:ba:63:30:e2:e3:ab:
26:44:91:55:b4:d5:41:78:be:95:79:b7:5c:0c:cf:8d:7c:1d:
0d:2e:d4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:54 2024 by rpki-client on console-ams.rpki-client.org