Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/BzrXpgl8jfiKmLs_Z3OJRBxZBRc.roa
File: BzrXpgl8jfiKmLs_Z3OJRBxZBRc.roa (raw, json)
Hash identifier: jA8N81FH7enqlRA4KFpAhVHRy2k4I/skkjg/FrRH0hE=
Subject key identifier: 07:3A:D7:A6:09:7C:8D:F8:8A:98:BB:3F:67:73:89:44:1C:59:05:17
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018882D6C0D36A684746F49C96143380EE64
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/BzrXpgl8jfiKmLs_Z3OJRBxZBRc.roa
Signing time: Sat 03 Jun 2023 19:58:12 +0000
ROA not before: Sat 03 Jun 2023 19:58:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.190.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
81.21.3.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 06:37:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:82:d6:c0:d3:6a:68:47:46:f4:9c:96:14:33:80:ee:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 3 19:58:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=073ad7a6097c8df88a98bb3f677389441c590517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:52:b5:0f:91:c9:cb:c8:18:ee:bd:df:c8:51:
26:33:cb:1e:58:85:5b:ba:e3:9b:ae:c9:62:cc:ab:
a2:c2:ba:05:74:21:c7:6e:80:92:5d:da:f6:72:e0:
f2:8e:ce:9d:a8:1a:92:87:dd:4f:c9:3a:5f:1c:8a:
03:97:dc:73:e6:1c:8c:19:53:82:fe:69:03:0f:8a:
b9:6c:0c:2c:87:83:e4:10:e3:a7:69:6d:41:2c:07:
c5:cc:77:a4:fa:ff:f4:ae:59:bf:12:b1:4b:54:16:
d9:e4:f8:f1:e1:7a:f4:16:23:bb:04:79:7a:d5:10:
34:1a:70:06:31:44:0e:82:b1:16:b1:ac:a4:d0:53:
b3:7e:cd:4c:30:37:a0:36:18:c9:d7:cb:1f:17:40:
15:a8:4a:ef:79:72:ca:29:02:bb:f3:70:f8:c8:42:
86:27:47:3c:49:ae:5b:21:32:93:14:a6:18:cf:99:
66:44:6c:86:cf:f1:59:38:47:06:87:dc:a7:f7:86:
9c:e1:6b:a4:3b:1e:1b:97:ed:4e:b5:39:9d:74:33:
69:b7:c4:e2:67:e9:0d:f6:fb:17:39:11:e7:e3:2b:
2f:49:58:24:48:9d:de:31:8a:d0:04:12:3e:f7:4e:
fd:a9:44:7d:8c:e6:bf:3c:e3:c2:75:79:fa:05:c4:
ce:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3A:D7:A6:09:7C:8D:F8:8A:98:BB:3F:67:73:89:44:1C:59:05:17
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/BzrXpgl8jfiKmLs_Z3OJRBxZBRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0/24
62.72.185.0-62.72.187.255
62.72.190.0/23
81.21.2.0/23
81.21.12.0/22
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:cb:ed:c2:e4:4d:ea:1e:09:d2:2d:3c:b9:54:41:ec:9a:c6:
f4:7b:a9:bb:72:e5:37:2d:b2:a3:d1:2f:5e:60:0e:ce:07:cc:
dc:4c:46:0b:5e:1c:a4:8a:b6:b5:ec:a7:45:e0:b5:7b:19:a2:
22:12:80:c1:59:f7:56:1e:53:cf:1e:53:be:33:73:ab:60:61:
c0:28:4f:30:02:f0:70:a8:9b:30:ac:3e:8a:cb:21:e6:3f:09:
13:e0:32:78:13:4e:a9:ed:78:41:d5:7f:a9:c8:5e:62:b7:bc:
46:9a:72:50:a4:99:75:fd:1b:66:76:e9:a3:14:d7:ec:45:ad:
47:44:b4:f0:30:c0:06:e6:ff:ad:b9:7f:87:4d:e8:71:8a:75:
9d:f9:c8:c0:95:c5:a2:52:05:26:d7:b6:ee:f1:db:2e:f5:21:
83:6c:d8:46:56:1d:88:60:98:83:ea:36:49:de:b9:93:ae:ec:
8d:16:88:98:77:02:f8:30:46:27:5c:b4:87:77:e0:ef:78:9e:
02:3c:be:8d:3e:e3:69:31:c7:3e:31:bc:27:30:6a:1c:12:78:
f2:85:ec:b7:83:57:54:d0:38:34:22:83:be:cf:3f:1a:4b:8d:
a0:3e:09:4d:6d:c2:a0:24:9e:79:b7:49:d1:76:c5:7d:50:89:
c1:48:55:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org