Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/8duKmV5tthPxs_4vyqehygHHvrQ.roa
File: 8duKmV5tthPxs_4vyqehygHHvrQ.roa (raw, json)
Hash identifier: el9pd237kIxpGXU2I1XaJaSmnL65X1kUQkNdti6OJzc=
Subject key identifier: F1:DB:8A:99:5E:6D:B6:13:F1:B3:FE:2F:CA:A7:A1:CA:01:C7:BE:B4
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0187C7C04F0F1F25DEC0995CF90174571868
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/8duKmV5tthPxs_4vyqehygHHvrQ.roa
Signing time: Fri 28 Apr 2023 12:04:41 +0000
ROA not before: Fri 28 Apr 2023 12:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 62.72.180.0/24 maxlen: 24
176.57.48.0/24 maxlen: 24
176.57.54.0/24 maxlen: 24
176.57.57.0/24 maxlen: 24
176.57.56.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 10:38:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:c0:4f:0f:1f:25:de:c0:99:5c:f9:01:74:57:18:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 28 12:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1db8a995e6db613f1b3fe2fcaa7a1ca01c7beb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e9:2c:d1:d4:37:12:b1:18:64:b6:6a:fe:97:
aa:51:98:7a:91:b4:81:e6:35:08:25:a9:af:34:d9:
9b:c5:8f:d3:84:cc:12:c0:a9:b8:96:c7:37:6f:ee:
50:72:f6:e4:a8:88:f8:0c:61:23:e0:d2:ce:08:53:
78:42:ab:11:b5:c7:cd:d9:4d:3e:c7:ff:9c:42:e6:
58:55:43:ed:8a:62:30:50:a3:e7:e6:70:51:b9:9d:
12:38:1e:d7:08:17:5b:70:50:20:ce:68:a8:ba:24:
ab:47:dc:c9:9e:be:65:48:7b:1a:4f:e5:c9:19:a1:
87:38:b5:57:2b:41:e4:5e:63:be:4f:9e:c0:5f:c4:
d7:6d:cd:6c:77:e3:c4:a0:a6:1e:9a:05:8e:67:45:
69:f5:e5:9f:5f:0a:93:bb:2b:90:15:d3:e8:07:ec:
2d:6b:da:a1:4c:91:6a:88:8f:d3:8e:8b:6a:91:58:
50:f4:99:53:1a:c8:7b:b9:0f:af:2a:2b:8e:7c:da:
02:eb:f4:7b:dc:b3:8d:7e:f0:0d:68:29:1b:55:a9:
99:8e:b1:6d:ea:0f:e5:10:b7:79:71:23:a5:49:73:
9d:53:68:80:e8:60:9e:66:e4:8e:0d:b1:e0:ab:5a:
c3:d6:ab:c1:fa:b4:61:12:a3:06:32:9a:b7:6d:25:
2c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DB:8A:99:5E:6D:B6:13:F1:B3:FE:2F:CA:A7:A1:CA:01:C7:BE:B4
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/8duKmV5tthPxs_4vyqehygHHvrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.180.0/24
81.21.12.0/22
176.57.48.0/24
176.57.54.0/24
176.57.56.0/23
Signature Algorithm: sha256WithRSAEncryption
93:9b:d0:89:ab:7d:c6:7e:0b:99:3d:2c:b4:dc:7a:eb:68:32:
8b:05:27:33:89:33:72:0f:f7:25:05:05:02:49:88:7f:17:a1:
ac:ab:e7:57:af:08:43:60:8b:3b:9e:64:9a:23:36:4e:6e:53:
a5:77:80:ec:5f:9a:57:58:64:56:a7:9e:b8:b8:5b:bf:b0:97:
45:66:32:26:68:01:89:1f:11:c7:87:3f:95:84:a3:73:ec:1e:
fd:a4:f0:e7:69:61:97:62:59:09:22:ed:b8:b0:29:aa:5d:c2:
97:e5:57:22:11:1e:79:f6:5a:e3:0a:c6:09:d4:76:b1:dc:35:
ea:da:e3:2f:58:4c:4a:f9:52:1e:c8:be:19:6a:3e:f9:cf:51:
1c:6a:3c:20:e5:90:5f:e9:aa:8c:23:c2:9f:34:1b:90:18:0a:
ec:a6:ee:e8:9d:ed:19:19:c3:49:bf:b6:d0:99:48:62:2f:ca:
3d:e8:13:aa:dc:a1:71:94:e9:d9:76:38:a8:98:6e:60:5e:86:
8b:f4:09:40:f7:1a:7c:8b:77:c4:d0:cb:30:22:08:52:ef:d1:
16:99:d3:e8:ed:87:73:27:4c:ab:82:ae:32:5b:fb:eb:d2:fe:
04:07:46:37:cb:31:3c:8f:9e:cc:d8:e0:22:4f:bf:70:a1:f9:
b2:28:a2:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org