Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/B8cxzljOZJb7fKtEVDZBhMC9dwA.roa
File: B8cxzljOZJb7fKtEVDZBhMC9dwA.roa (raw, json)
Hash identifier: vIi3rbNnT35ibtJN0pEMCmAzoayWTZTJK64oZp9nzmg=
Subject key identifier: 07:C7:31:CE:58:CE:64:96:FB:7C:AB:44:54:36:41:84:C0:BD:77:00
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0188BDBB86AB5727CFF11D1D21BF0CB1A94F
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/B8cxzljOZJb7fKtEVDZBhMC9dwA.roa
Signing time: Thu 15 Jun 2023 06:26:03 +0000
ROA not before: Thu 15 Jun 2023 06:26:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.160.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.190.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Jun 2023 08:09:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bd:bb:86:ab:57:27:cf:f1:1d:1d:21:bf:0c:b1:a9:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 15 06:26:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07c731ce58ce6496fb7cab4454364184c0bd7700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c2:c9:14:28:ac:b4:d4:63:2a:4f:25:1f:94:
64:30:e1:34:d3:63:21:22:50:ad:71:bd:ea:fd:21:
fa:5d:93:6b:4f:69:75:dd:f9:06:f5:1b:3f:e3:ed:
bd:53:7c:d0:a8:ac:3e:88:58:dd:03:59:93:63:11:
04:ca:9f:33:b7:4d:71:f9:f7:e0:08:1f:50:f1:f6:
8a:08:b7:73:8d:73:34:12:b4:4b:83:f0:2e:7b:27:
ab:24:ca:29:fe:b5:b9:27:91:1a:17:fe:41:3f:14:
6b:84:fd:4e:ab:58:25:9e:8f:f9:d9:45:de:a8:49:
7b:5a:00:a0:4f:6b:c2:e8:dd:ae:60:54:08:f3:44:
a7:f1:9c:85:55:79:46:86:32:49:77:d9:5c:b2:01:
4f:ac:53:24:61:07:3d:71:89:1a:bf:ea:1d:58:13:
a7:e8:59:c0:4c:90:6d:ae:40:a7:bf:45:2a:3a:45:
60:1a:75:e1:1f:d1:e8:bb:a2:bf:84:8f:2e:87:64:
6f:35:ee:30:11:d6:54:7f:10:88:6a:2f:ca:30:a4:
0c:11:3c:0a:04:48:0a:d3:2f:f4:53:8a:48:82:91:
bc:32:d3:b9:6d:88:02:f3:db:bf:66:31:99:bf:ef:
96:d1:51:5c:94:93:70:22:c5:5b:48:6f:56:e4:fd:
51:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C7:31:CE:58:CE:64:96:FB:7C:AB:44:54:36:41:84:C0:BD:77:00
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/B8cxzljOZJb7fKtEVDZBhMC9dwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.160.0-62.72.162.255
62.72.185.0-62.72.187.255
62.72.190.0/23
81.21.12.0/22
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:b3:07:7a:e2:01:97:45:f8:01:c9:36:35:12:83:49:a2:cd:
e3:ac:65:a0:c6:05:f5:e8:49:af:ba:0c:7a:e8:b1:93:3e:e4:
9b:9c:78:c9:22:83:59:47:ed:7f:65:f5:2d:49:ef:6b:83:be:
a4:51:a2:53:84:37:52:1f:48:27:0a:44:b8:05:1d:a4:eb:f4:
4b:bd:07:78:df:cf:74:d1:ca:bb:cd:ea:bd:96:bf:9a:33:99:
99:a6:79:cb:64:80:e3:98:d6:64:8a:25:64:e3:c6:48:14:09:
50:2a:7a:f9:b5:b7:65:c9:1c:5c:d4:e1:36:71:3f:7e:16:1e:
b8:c8:7a:56:76:a6:e2:eb:60:3f:9a:ce:a1:7f:28:8e:74:e9:
a3:c9:b0:8e:82:50:e8:11:e7:26:18:8d:ff:b4:9e:f6:19:87:
0b:2d:5e:80:03:a3:41:0d:2e:36:b2:e3:8a:5c:4e:ef:ba:d2:
ca:9d:b0:88:4f:a4:58:bb:99:22:89:85:9b:12:e8:9f:1d:f2:
31:55:d7:be:1b:ca:4e:39:11:57:6c:d6:f7:88:59:d0:6b:7e:
96:e2:e4:25:28:92:47:d1:fc:9d:86:c9:ec:dc:96:ce:b0:78:
16:a7:81:0c:bf:c4:8a:24:ba:a1:ea:d2:bb:fc:08:7a:07:a1:
3d:5b:87:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org