Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/9VQfVUq5wnA7lU0hhNEk0RLyO9I.roa
File: 9VQfVUq5wnA7lU0hhNEk0RLyO9I.roa (raw, json)
Hash identifier: ls6QEfFngQLEpQ+wdO1NvHojOgWKYTVQPL+oOamZr4g=
Subject key identifier: F5:54:1F:55:4A:B9:C2:70:3B:95:4D:21:84:D1:24:D1:12:F2:3B:D2
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01856F4B7D1992F56A1AAD00CE9DA1EDE308
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/9VQfVUq5wnA7lU0hhNEk0RLyO9I.roa
Signing time: Sun 01 Jan 2023 21:44:56 +0000
ROA not before: Sun 01 Jan 2023 21:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 62.72.176.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Mar 2023 16:55:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:7d:19:92:f5:6a:1a:ad:00:ce:9d:a1:ed:e3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 21:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5541f554ab9c2703b954d2184d124d112f23bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8e:d6:03:68:9d:1c:50:9f:a9:73:1c:90:92:
66:3d:f7:e5:23:ee:db:ce:1f:5a:ab:15:4d:7f:73:
ce:c0:be:7c:36:bc:55:00:ce:3a:4b:10:f9:fe:62:
8e:7e:3e:c8:3f:02:ee:c2:36:4e:75:5d:e8:d3:36:
07:78:ad:23:10:8d:cb:c7:f0:6d:4c:51:cb:f2:68:
e3:d8:1f:03:78:a4:00:91:51:a5:28:5a:47:f0:22:
49:30:53:93:2d:c4:dd:8f:ea:01:a8:27:cc:22:f0:
31:2f:30:67:f2:fa:8d:17:93:33:5f:ba:a8:30:99:
56:5f:a9:76:b8:ee:8f:41:c8:4c:58:77:57:ff:e2:
e0:fc:4d:fb:65:3b:1c:0f:1d:b8:37:33:f6:b6:46:
50:c1:8d:16:7a:83:f3:20:c5:94:59:c3:c4:ee:e3:
ce:a6:fa:3b:e6:e0:f1:9e:34:7d:6d:d5:ca:8d:b5:
79:93:21:b7:a0:e1:26:92:6f:a8:6f:6e:8c:57:6c:
29:83:73:31:b2:ec:13:04:3b:0e:11:99:05:4c:e7:
ff:6b:9f:c7:2d:1d:75:ce:ee:1a:21:89:07:3e:cc:
68:c6:ec:a2:cc:47:de:7e:88:ca:28:09:6e:eb:7c:
f4:6c:ed:5f:68:14:76:f8:43:0c:3d:86:cc:14:40:
19:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:54:1F:55:4A:B9:C2:70:3B:95:4D:21:84:D1:24:D1:12:F2:3B:D2
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/9VQfVUq5wnA7lU0hhNEk0RLyO9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.176.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:1a:af:b5:00:55:c2:5e:53:6e:8e:14:13:06:f9:15:a4:5f:
4d:8a:36:29:46:e3:63:10:de:2e:fa:ea:5e:85:f5:6f:4f:b8:
a6:86:af:4e:6c:17:9d:a3:7a:ef:b5:5c:17:c0:3b:ef:c2:bb:
cc:b4:c6:52:49:1a:b4:fb:ef:a2:42:ae:60:df:8d:ac:d0:94:
04:7f:b6:34:78:e1:ab:98:3f:d4:22:89:a4:e4:f2:5e:0f:f8:
cf:96:5a:d0:d3:de:2f:7c:31:a7:50:4f:07:0a:22:11:11:63:
88:55:2f:e0:c9:b2:cd:17:25:c3:65:9e:64:5e:d6:f4:1c:4f:
7d:40:11:20:8f:77:4f:ba:c2:c9:1c:c7:d2:86:16:d3:5f:db:
41:2a:31:55:1e:2f:02:83:a3:98:f1:0e:ea:11:05:f0:4d:78:
00:cb:71:d4:3a:2c:43:e8:eb:87:2e:d0:d8:b7:10:35:2c:7b:
31:56:71:01:66:55:5d:c5:06:4f:9f:7e:65:11:16:33:b1:7f:
db:28:50:40:fe:0e:2a:11:65:ce:da:36:34:1e:c8:c3:59:3f:
0c:16:d1:55:cb:77:0b:08:ad:3d:f7:66:26:27:9d:fe:b9:7b:
c0:0e:58:9e:45:7c:91:ea:85:de:66:2f:5d:91:b9:8a:6d:31:
eb:28:32:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org