Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CtBI0V1XfWmO392OZeCM-B4oSxQ.roa
File: CtBI0V1XfWmO392OZeCM-B4oSxQ.roa (raw, json)
Hash identifier: MDifFx/Tnly6+I1/fmwJVjZdCUqC8bX70NigUJ8OTik=
Subject key identifier: 0A:D0:48:D1:5D:57:7D:69:8E:DF:DD:8E:65:E0:8C:F8:1E:28:4B:14
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B19B37F27A334883CE6F1101FD6F0C9A3
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CtBI0V1XfWmO392OZeCM-B4oSxQ.roa
Signing time: Tue 10 Oct 2023 13:07:55 +0000
ROA not before: Tue 10 Oct 2023 13:07:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 11 Oct 2023 06:51:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:b3:7f:27:a3:34:88:3c:e6:f1:10:1f:d6:f0:c9:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 10 13:07:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ad048d15d577d698edfdd8e65e08cf81e284b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:2d:5f:0d:10:9a:33:c9:bc:61:99:e8:07:
15:8a:b7:12:8c:03:81:6c:17:da:9d:9b:ad:21:16:
15:ae:56:82:c4:65:1f:65:01:62:0f:91:2e:ca:84:
a1:85:cd:64:73:e9:ef:37:d8:4a:0c:33:d6:3b:8a:
ac:d4:f6:75:5d:35:2c:ce:47:ab:1c:c7:d5:c5:0d:
9e:8c:86:cd:a9:46:a5:e5:39:ba:c8:2b:c6:8d:e6:
d8:18:69:5a:f2:62:67:69:51:3c:88:2d:09:10:1c:
22:f7:17:8b:e0:7b:82:87:4d:ba:b7:9a:e6:48:9c:
89:3a:b6:48:5c:6f:87:26:f2:9a:d4:75:9f:c1:d7:
89:6d:ef:5c:08:3d:b4:d5:8f:28:2b:54:d1:87:fa:
15:e9:60:b3:c7:79:49:05:f7:81:1a:f7:c8:ef:5d:
ed:62:a8:ce:97:05:0b:e3:8d:3f:bb:92:a9:58:69:
d1:56:68:fe:c7:50:18:55:10:0c:d7:bc:59:27:0a:
2d:d3:b8:aa:1f:2e:e7:6b:8e:08:89:99:01:ec:78:
dd:3d:ff:02:d5:05:80:af:fe:f5:7a:93:2c:66:5b:
2a:4b:84:1b:1f:bd:cf:8a:bc:1c:55:70:5f:e3:b3:
20:56:17:79:0c:6b:69:60:28:cb:37:79:06:a8:11:
73:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D0:48:D1:5D:57:7D:69:8E:DF:DD:8E:65:E0:8C:F8:1E:28:4B:14
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CtBI0V1XfWmO392OZeCM-B4oSxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:15:f0:21:9c:c0:fb:4c:d1:c9:72:4e:fd:8b:06:f2:83:8d:
c1:84:34:69:d7:78:e6:32:de:20:51:89:44:f7:70:45:39:a1:
d9:18:3e:d7:93:90:88:f2:1f:20:d3:61:73:e8:d4:32:0a:e7:
86:f6:6c:3d:c6:a6:81:23:6b:37:38:58:95:09:47:c8:ea:71:
dc:44:79:18:3c:fd:ed:20:51:5a:96:eb:22:b6:ff:df:07:cd:
73:ed:89:b0:3f:84:e5:39:76:67:b8:ab:90:a7:02:9c:d0:50:
ed:d2:5a:c2:56:14:59:79:9d:65:28:7d:e7:90:10:e6:91:8a:
1e:aa:82:a4:ee:1a:3b:42:39:e8:4c:ff:b7:d8:37:b2:2d:8c:
2b:52:84:03:55:fb:38:e8:8e:28:63:67:bd:31:1f:1f:6c:f2:
7b:5d:f9:52:6a:4a:95:0d:94:5c:8b:11:df:c4:d3:40:da:9f:
88:64:35:b8:9e:e8:8e:da:e2:66:55:98:c6:d7:ed:d5:cd:a6:
ce:0e:bb:a7:18:9b:15:22:94:c3:ee:64:00:ef:06:ec:55:15:
9d:59:5b:31:87:91:b1:1a:28:19:75:da:d5:47:16:6b:49:28:
07:fa:87:32:d2:98:5b:65:ff:34:45:43:3e:5a:42:0c:58:45:
52:a1:56:32
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAYsZs38nozSIPObxEB/W8MmjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMDEwMTMwNzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYWQwNDhkMTVkNTc3ZDY5OGVkZmRkOGU2NWUwOGNmODFlMjg0YjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDwtXw0QmjPJvGGZ6AcVircSjAOB
bBfanZutIRYVrlaCxGUfZQFiD5EuyoShhc1kc+nvN9hKDDPWO4qs1PZ1XTUszker
HMfVxQ2ejIbNqUal5Tm6yCvGjebYGGla8mJnaVE8iC0JEBwi9xeL4HuCh026t5rm
SJyJOrZIXG+HJvKa1HWfwdeJbe9cCD201Y8oK1TRh/oV6WCzx3lJBfeBGvfI713t
YqjOlwUL440/u5KpWGnRVmj+x1AYVRAM17xZJwot07iqHy7na44IiZkB7HjdPf8C
1QWAr/71epMsZlsqS4QbH73PirwcVXBf47MgVhd5DGtpYCjLN3kGqBFzWQIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFArQSNFdV31pjt/djmXgjPgeKEsUMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvQ3RCSTBWMVhmV21PMzkyT1plQ00tQjRvU3hRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcjAMAwQAPkih
AwQCPkioMAwDBAA+SK0DBAQ+SKAwDAMEAD5IswMEAD5ItjAMAwQDPki4AwQBPki8
AwQAPki/MAwDBAFRFQIDBANRFQAwDAMEAVEVCgMEBFEVAAMEALA5MwMEALA5NQME
AbA5OgMEALA5PzANBgkqhkiG9w0BAQsFAAOCAQEAoxXwIZzA+0zRyXJO/YsG8oON
wYQ0add45jLeIFGJRPdwRTmh2Rg+15OQiPIfINNhc+jUMgrnhvZsPcamgSNrNzhY
lQlHyOpx3ER5GDz97SBRWpbrIrb/3wfNc+2JsD+E5Tl2Z7irkKcCnNBQ7dJawlYU
WXmdZSh955AQ5pGKHqqCpO4aO0I56Ez/t9g3si2MK1KEA1X7OOiOKGNnvTEfH2zy
e135UmpKlQ2UXIsR38TTQNqfiGQ1uJ7ojtriZlWYxtft1c2mzg67pxibFSKUw+5k
AO8G7FUVnVlbMYeRsRooGXXa1UcWa0koB/qHMtKYW2X/NEVDPlpCDFhFUqFWMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org