Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/EpRubO0xDS59iLN7jCE0c4KdRdM.roa
File: EpRubO0xDS59iLN7jCE0c4KdRdM.roa (raw, json)
Hash identifier: 5x6YM6sYsZ+Gf9v+2wY97d2PuJDznAyxvIWq5l+zOJM=
Subject key identifier: 12:94:6E:6C:ED:31:0D:2E:7D:88:B3:7B:8C:21:34:73:82:9D:45:D3
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BC90829E0ACA0D53B3E9568D6F790B894
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/EpRubO0xDS59iLN7jCE0c4KdRdM.roa
Signing time: Mon 13 Nov 2023 14:13:57 +0000
ROA not before: Mon 13 Nov 2023 14:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.174.0/23 maxlen: 23
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 15 Nov 2023 11:16:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:08:29:e0:ac:a0:d5:3b:3e:95:68:d6:f7:90:b8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 13 14:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12946e6ced310d2e7d88b37b8c213473829d45d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:85:88:89:94:fe:54:c2:07:e8:33:a6:cd:21:
6d:dd:1a:0d:d3:c0:3a:7c:9b:2a:7b:4a:5e:3a:77:
66:06:0d:52:61:42:bd:70:5c:86:95:9e:4b:58:95:
ba:b7:d0:72:d2:d4:cf:ed:5d:51:c5:e5:f0:86:88:
31:99:d8:a2:98:0f:f1:53:eb:ff:e1:15:90:ee:b4:
26:9f:3a:83:b5:e1:f8:ce:6c:61:44:5a:38:2d:82:
12:0b:10:bd:ed:81:a7:6d:fa:b9:00:49:28:bb:ca:
e5:31:99:62:3a:06:fb:4b:c2:cf:5e:4a:0c:30:18:
c8:38:c2:6b:43:01:5b:ca:9b:50:7a:d7:15:ae:1f:
9b:af:d4:dd:15:a8:df:0b:21:8b:b0:10:e9:10:ed:
31:50:50:f1:ad:80:64:9e:8b:f5:52:b1:93:6a:eb:
84:3f:af:ec:d7:6a:30:32:ab:8b:e3:f9:81:e7:b0:
e0:7d:b1:1e:49:a8:bc:d1:2b:74:89:c0:34:1f:1f:
a6:e1:a9:b6:30:10:aa:47:a4:75:30:00:bd:c4:ae:
a1:19:0d:af:9b:2a:00:06:2d:a9:3d:bb:2c:dc:80:
43:69:1c:72:4d:3f:fa:80:2f:67:90:50:f4:b9:e1:
fe:8c:db:9c:5c:bb:70:3d:2b:fe:ef:ea:e0:d7:e1:
d7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:94:6E:6C:ED:31:0D:2E:7D:88:B3:7B:8C:21:34:73:82:9D:45:D3
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/EpRubO0xDS59iLN7jCE0c4KdRdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.180.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:78:8f:cd:07:50:c3:6d:d1:1b:4c:8d:6b:71:97:8b:c4:c9:
e4:6d:62:2c:d4:6a:a3:87:cb:5e:12:16:9c:92:93:07:3d:b4:
25:2c:5f:ae:cb:a9:90:04:1f:b4:bc:2f:bb:e8:30:07:80:9e:
e2:7b:bb:f1:e1:f7:71:4e:be:99:a9:16:53:53:ef:ee:a1:30:
23:35:2d:6f:ad:4e:2b:ca:5d:ea:02:d1:6e:da:35:fc:56:6c:
ee:0c:7e:eb:ce:12:50:4f:4d:ae:4b:2e:b4:f8:bf:0d:91:e0:
3a:07:63:73:95:3a:ac:61:57:47:db:a9:8e:ab:01:05:f3:f4:
a2:91:44:65:dc:d4:bf:56:27:03:cc:8c:6c:b4:b3:1d:d6:48:
e1:4c:cb:92:7e:74:c2:27:1a:c4:9f:4a:22:30:0e:bc:18:df:
86:a5:39:f3:12:76:64:ca:c9:b6:1f:39:6d:a7:e5:2e:d3:cc:
5b:ce:ec:7e:c0:31:1e:48:df:73:90:66:8e:08:2c:66:0a:c0:
57:31:9c:e2:26:29:44:de:ed:3b:09:f9:a2:99:d8:0d:7e:ee:
75:57:c5:e2:10:a6:12:f0:df:fd:29:96:fc:2d:5b:ac:79:b7:
ef:b6:2e:c6:9b:22:e0:62:49:c3:ff:b6:af:fd:b4:dc:cf:bc:
a9:4c:a5:aa
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgISAYvJCCngrKDVOz6VaNb3kLiUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMTEzMTQxMzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjk0NmU2Y2VkMzEwZDJlN2Q4OGIzN2I4YzIxMzQ3MzgyOWQ0NWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoWIiZT+VMIH6DOmzSFt3RoN08A6
fJsqe0peOndmBg1SYUK9cFyGlZ5LWJW6t9By0tTP7V1RxeXwhogxmdiimA/xU+v/
4RWQ7rQmnzqDteH4zmxhRFo4LYISCxC97YGnbfq5AEkou8rlMZliOgb7S8LPXkoM
MBjIOMJrQwFbyptQetcVrh+br9TdFajfCyGLsBDpEO0xUFDxrYBknov1UrGTauuE
P6/s12owMquL4/mB57DgfbEeSai80St0icA0Hx+m4am2MBCqR6R1MAC9xK6hGQ2v
myoABi2pPbss3IBDaRxyTT/6gC9nkFD0ueH+jNucXLtwPSv+7+rg1+HX2wIDAQAB
o4ICbjCCAmowHQYDVR0OBBYEFBKUbmztMQ0ufYize4whNHOCnUXTMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvRXBSdWJPMHhEUzU5aUxON2pDRTBjNEtkUmRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGDBggrBgEFBQcBBwEB/wR0MHIwcAQCAAEwajAMAwQBPkii
AwQCPkioAwQBPkiuMAwDBAI+SLQDBAA+SLYwDAMEAz5IuAMEAT5IvAMEAD5IvzAM
AwQBURUCAwQDURUAMAwDBAFRFQoDBARRFQADBACwOTMDBACwOTUDBAGwOToDBACw
OT8wDQYJKoZIhvcNAQELBQADggEBAMh4j80HUMNt0RtMjWtxl4vEyeRtYizUaqOH
y14SFpySkwc9tCUsX67LqZAEH7S8L7voMAeAnuJ7u/Hh93FOvpmpFlNT7+6hMCM1
LW+tTivKXeoC0W7aNfxWbO4MfuvOElBPTa5LLrT4vw2R4DoHY3OVOqxhV0fbqY6r
AQXz9KKRRGXc1L9WJwPMjGy0sx3WSOFMy5J+dMInGsSfSiIwDrwY34alOfMSdmTK
ybYfOW2n5S7TzFvO7H7AMR5I33OQZo4ILGYKwFcxnOImKUTe7TsJ+aKZ2A1+7nVX
xeIQphLw3/0plvwtW6x5t++2LsabIuBiScP/tq/9tNzPvKlMpao=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org