Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/DFGwPpgkp5L4yIja1hvKhO_Miag.roa
File: DFGwPpgkp5L4yIja1hvKhO_Miag.roa (raw, json)
Hash identifier: rKdSxb1WIXKojX5I38wemyhVtGRLxbSGtcDsUPuBjKg=
Subject key identifier: 0C:51:B0:3E:98:24:A7:92:F8:C8:88:DA:D6:1B:CA:84:EF:CC:89:A8
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018A9E87BBD205B97D8AE7570D37B8D2182A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/DFGwPpgkp5L4yIja1hvKhO_Miag.roa
Signing time: Sat 16 Sep 2023 15:06:50 +0000
ROA not before: Sat 16 Sep 2023 15:06:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.171.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 18 Sep 2023 08:13:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9e:87:bb:d2:05:b9:7d:8a:e7:57:0d:37:b8:d2:18:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 16 15:06:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c51b03e9824a792f8c888dad61bca84efcc89a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8b:83:55:36:25:6a:57:f0:a4:d1:7c:c0:04:
04:bd:5e:07:f1:ff:50:c6:41:5a:b0:02:bf:ec:57:
9b:22:4c:ec:14:12:dd:a0:92:b9:c7:64:87:44:02:
36:1a:09:1b:be:c4:cd:c2:75:38:bb:1b:d3:c6:1a:
a8:e0:16:00:4e:c7:68:43:58:77:f8:98:88:d4:90:
2d:a6:75:d7:46:4c:9d:83:1b:7f:f1:46:ae:7d:5c:
9d:64:fe:71:3a:62:cc:28:e3:cf:49:94:2d:19:29:
42:d2:62:c0:aa:86:50:23:a5:7a:bd:7f:22:95:6f:
2c:b4:b1:d2:bf:22:b5:82:d9:a2:b0:5c:db:93:dd:
b8:ce:c9:9b:7b:70:ed:b8:2a:26:63:10:ff:bb:f1:
a5:88:76:d6:57:f6:c3:cb:c0:12:e2:02:f1:c3:d9:
a0:c6:e6:4b:69:81:32:32:81:7c:62:e2:15:b3:c1:
3f:2d:2a:7e:21:73:4c:3e:ec:ad:db:09:e3:a7:8f:
91:b4:81:7d:38:6a:1d:97:9a:ef:1c:19:4f:24:9e:
2b:56:63:3a:01:db:49:3b:06:84:a1:8d:0b:85:1b:
31:3d:cb:8d:84:34:a3:4e:74:3a:ce:e7:49:c4:02:
82:54:6c:50:c5:3c:1a:2f:d8:0a:dd:6c:31:5e:25:
72:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:51:B0:3E:98:24:A7:92:F8:C8:88:DA:D6:1B:CA:84:EF:CC:89:A8
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/DFGwPpgkp5L4yIja1hvKhO_Miag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.165.255
62.72.168.0/22
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.1.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
69:9d:d4:24:bb:36:20:ed:2f:e8:3f:93:00:79:4a:a2:0e:5f:
d2:bb:c8:30:02:d9:51:83:62:87:25:5b:31:34:50:e4:69:ba:
f2:ab:d4:f6:09:4d:a8:2b:c0:29:32:7c:ca:85:33:f3:9f:49:
fd:b9:ae:1e:14:70:2e:f4:1e:43:59:29:eb:2b:c7:fe:43:d8:
5f:af:4f:d7:b2:ce:99:7e:02:6b:a2:5d:09:7d:09:0c:41:2b:
8b:96:cd:cc:f7:71:b1:8c:9a:47:9d:63:0f:e4:41:fd:83:4f:
c6:6b:bf:f8:36:5b:b3:e4:a0:4f:4f:92:5b:cb:63:85:79:74:
c7:98:6c:92:db:05:09:21:2e:b4:6b:6d:df:fa:0f:8b:f9:a6:
f3:0d:ca:92:fd:c4:9a:97:34:5e:0d:53:2e:a5:9f:2f:90:bf:
60:60:45:c8:93:b3:90:4d:ec:8a:6f:a5:5f:62:dc:81:90:32:
d9:96:16:1d:ad:c7:77:82:3e:5c:b8:5f:3f:b2:e9:dc:07:18:
be:ca:03:28:4a:6f:bf:6b:ba:03:76:36:11:55:55:db:54:03:
d7:6e:16:9c:be:e7:1d:da:ba:62:91:e1:02:b7:65:7e:25:e5:
a9:5d:45:fb:5b:f4:35:02:70:54:14:02:93:9f:c6:d8:0b:22:
5a:99:59:f2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAYqeh7vSBbl9iudXDTe40hgqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwOTE2MTUwNjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzUxYjAzZTk4MjRhNzkyZjhjODg4ZGFkNjFiY2E4NGVmY2M4OWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIuDVTYlalfwpNF8wAQEvV4H8f9Q
xkFasAK/7FebIkzsFBLdoJK5x2SHRAI2GgkbvsTNwnU4uxvTxhqo4BYATsdoQ1h3
+JiI1JAtpnXXRkydgxt/8UaufVydZP5xOmLMKOPPSZQtGSlC0mLAqoZQI6V6vX8i
lW8stLHSvyK1gtmisFzbk924zsmbe3DtuComYxD/u/GliHbWV/bDy8AS4gLxw9mg
xuZLaYEyMoF8YuIVs8E/LSp+IXNMPuyt2wnjp4+RtIF9OGodl5rvHBlPJJ4rVmM6
AdtJOwaEoY0LhRsxPcuNhDSjTnQ6zudJxAKCVGxQxTwaL9gK3WwxXiVygQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFAxRsD6YJKeS+MiI2tYbyoTvzImoMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvREZHd1BwZ2twNUw0eUlqYTFodktoT19NaWFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQwDAME
AD5IoQMEAT5IpAMEAj5IqDAMAwQAPkitAwQEPkigAwQAPkixAwQAPkizMAwDBAA+
SLUDBAA+SLYwDAMEAz5IuAMEAT5IvAMEAD5IvzAMAwQAURUBAwQDURUAMAwDBAFR
FQoDBARRFQADBACwOTMDBACwOTUDBAGwOToDBAGwOT4wDQYJKoZIhvcNAQELBQAD
ggEBAGmd1CS7NiDtL+g/kwB5SqIOX9K7yDAC2VGDYoclWzE0UORpuvKr1PYJTagr
wCkyfMqFM/OfSf25rh4UcC70HkNZKesrx/5D2F+vT9eyzpl+AmuiXQl9CQxBK4uW
zcz3cbGMmkedYw/kQf2DT8Zrv/g2W7PkoE9PklvLY4V5dMeYbJLbBQkhLrRrbd/6
D4v5pvMNypL9xJqXNF4NUy6lny+Qv2BgRciTs5BN7IpvpV9i3IGQMtmWFh2tx3eC
Ply4Xz+y6dwHGL7KAyhKb79rugN2NhFVVdtUA9duFpy+5x3aumKR4QK3ZX4l5ald
Rftb9DUCcFQUApOfxtgLIlqZWfI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org