Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/9aRnkQaOYeED7J5KjS0E6wz4Bi4.roa
File: 9aRnkQaOYeED7J5KjS0E6wz4Bi4.roa (raw, json)
Hash identifier: PkT1YqxwPacXtScIj4vlGwtevhRSNJg0DstsnC4gca4=
Subject key identifier: F5:A4:67:91:06:8E:61:E1:03:EC:9E:4A:8D:2D:04:EB:0C:F8:06:2E
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018733727FC35E1BE0CBB25BC346B3790CA1
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/9aRnkQaOYeED7J5KjS0E6wz4Bi4.roa
Signing time: Thu 30 Mar 2023 16:55:54 +0000
ROA not before: Thu 30 Mar 2023 16:55:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 62.72.165.0/24 maxlen: 24
62.72.166.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 05:57:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:33:72:7f:c3:5e:1b:e0:cb:b2:5b:c3:46:b3:79:0c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Mar 30 16:55:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5a46791068e61e103ec9e4a8d2d04eb0cf8062e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:54:fd:3f:34:c0:fd:2d:3d:e7:46:53:de:
89:e2:69:be:e2:0e:b8:70:ad:63:d3:53:ae:5c:82:
7b:66:f5:ef:87:e7:87:74:8b:5c:c8:5e:6b:1d:ab:
cf:08:0f:04:1f:a0:45:d4:7d:69:6e:36:e6:de:7d:
9c:d7:40:e8:27:bc:a5:69:34:5d:d1:2f:04:0a:a4:
b4:6f:f3:47:f6:4e:c1:e0:1b:7e:8c:59:81:b4:38:
0f:a9:34:f0:53:7d:17:3a:19:51:8b:55:0a:c2:ec:
24:18:fc:c7:6d:74:f6:09:2f:58:77:9a:70:9a:16:
6d:27:9e:a4:77:43:72:bd:87:c0:e4:62:be:a6:58:
4d:c4:40:c2:d8:ef:50:9a:9d:34:a8:f8:db:d9:aa:
b9:e1:f7:57:cc:a3:18:64:82:ee:a8:fe:a0:f8:88:
7a:1e:65:84:11:35:16:ba:05:1d:1e:cc:14:49:28:
8a:7d:2d:0f:c7:2c:28:cb:1b:cf:89:97:40:28:56:
3d:4e:23:51:73:5b:42:90:70:3e:6c:88:a9:ca:3a:
9a:8c:53:3e:a0:13:3e:93:74:3b:84:ef:5e:71:50:
02:7a:3f:9b:4c:90:18:50:35:b3:36:33:ae:3c:aa:
0d:9a:38:6d:c9:81:e8:0b:cf:90:88:86:c9:b5:a6:
37:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A4:67:91:06:8E:61:E1:03:EC:9E:4A:8D:2D:04:EB:0C:F8:06:2E
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/9aRnkQaOYeED7J5KjS0E6wz4Bi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.165.0-62.72.167.255
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.188.0/23
176.57.51.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:fb:48:c4:d6:56:9a:07:eb:78:fa:2e:88:87:8f:ee:30:0a:
2c:2c:60:e5:e8:90:c1:3a:c2:33:76:16:44:3f:36:10:84:8f:
9c:8e:68:3c:7b:90:89:47:56:f8:a6:33:ca:d6:1a:a3:bb:e4:
be:ac:9e:32:70:2e:e5:27:6e:06:82:e2:c3:84:4d:8d:18:36:
e9:f0:3f:e3:48:a5:cf:9b:84:be:20:1b:ce:d1:5d:91:66:72:
eb:a2:81:2f:0f:69:09:67:57:f3:86:5f:09:e5:f5:ac:cc:ee:
15:14:cd:a1:5b:5e:9c:b6:4d:5c:5e:89:8c:d5:54:ab:60:52:
ea:6a:8b:2f:ff:ad:9c:a5:34:db:8e:28:5e:be:c7:0e:bb:85:
7a:92:6f:8f:c8:af:68:f1:61:9b:3c:f4:74:37:0f:ac:33:cd:
3b:32:84:6d:e8:10:2f:19:f6:e5:28:c3:0b:c6:ef:9b:f9:31:
41:1e:75:06:cf:95:ba:5c:ad:33:a7:b6:22:9e:f2:48:2f:ce:
41:24:ec:0f:ef:aa:fe:0d:cf:07:67:8f:20:76:44:37:1c:f2:
e5:c1:8c:59:8a:3d:23:5c:66:4f:8f:bb:47:2c:36:1e:8e:3b:
d1:d8:ad:9b:51:39:ea:bf:26:50:c2:c9:1d:09:0f:72:2c:21:
1f:0a:54:6f
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAYczcn/DXhvgy7Jbw0azeQyhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwMzMwMTY1NTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWE0Njc5MTA2OGU2MWUxMDNlYzllNGE4ZDJkMDRlYjBjZjgwNjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDNU/T80wP0tPedGU96J4mm+4g64
cK1j01OuXIJ7ZvXvh+eHdItcyF5rHavPCA8EH6BF1H1pbjbm3n2c10DoJ7ylaTRd
0S8ECqS0b/NH9k7B4Bt+jFmBtDgPqTTwU30XOhlRi1UKwuwkGPzHbXT2CS9Yd5pw
mhZtJ56kd0NyvYfA5GK+plhNxEDC2O9Qmp00qPjb2aq54fdXzKMYZILuqP6g+Ih6
HmWEETUWugUdHswUSSiKfS0PxywoyxvPiZdAKFY9TiNRc1tCkHA+bIipyjqajFM+
oBM+k3Q7hO9ecVACej+bTJAYUDWzNjOuPKoNmjhtyYHoC8+QiIbJtaY3WQIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFPWkZ5EGjmHhA+yeSo0tBOsM+AYuMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvOWFSbmtRYU9ZZUVEN0o1S2pTMEU2d3o0Qmk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuMAwDBAA+SKUD
BAM+SKADBAA+SLMwDAMEAD5ItQMEAD5ItgMEAT5IvAMEALA5MzANBgkqhkiG9w0B
AQsFAAOCAQEAG/tIxNZWmgfrePouiIeP7jAKLCxg5eiQwTrCM3YWRD82EISPnI5o
PHuQiUdW+KYzytYao7vkvqyeMnAu5SduBoLiw4RNjRg26fA/40ilz5uEviAbztFd
kWZy66KBLw9pCWdX84ZfCeX1rMzuFRTNoVtenLZNXF6JjNVUq2BS6mqLL/+tnKU0
244oXr7HDruFepJvj8ivaPFhmzz0dDcPrDPNOzKEbegQLxn25SjDC8bvm/kxQR51
Bs+VulytM6e2Ip7ySC/OQSTsD++q/g3PB2ePIHZENxzy5cGMWYo9I1xmT4+7Ryw2
Ho470ditm1E56r8mUMLJHQkPciwhHwpUbw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org