Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FDM8cqTdPMyRdwG21_vWtWcSMe0.roa
File: FDM8cqTdPMyRdwG21_vWtWcSMe0.roa (raw, json)
Hash identifier: dATgrbCB8oaSiZ2g1ebnqZaSzMEWchifx3jKHOAw/lg=
Subject key identifier: 14:33:3C:72:A4:DD:3C:CC:91:77:01:B6:D7:FB:D6:B5:67:12:31:ED
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0192CD2D163AA16368116819350E632351CD
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FDM8cqTdPMyRdwG21_vWtWcSMe0.roa
Signing time: Sun 27 Oct 2024 08:52:16 +0000
ROA not before: Sun 27 Oct 2024 08:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.164.0/23 maxlen: 23
62.72.185.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 12:16:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:cd:2d:16:3a:a1:63:68:11:68:19:35:0e:63:23:51:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 27 08:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14333c72a4dd3ccc917701b6d7fbd6b5671231ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0a:e2:db:bc:8b:b1:1f:ed:7e:81:0b:9c:6f:
9f:28:fd:22:79:ed:1f:3f:37:06:3c:6d:5b:94:21:
ad:ac:fd:f9:c3:97:a3:db:9c:f0:0f:47:2b:f3:ca:
6b:a5:51:38:34:be:7a:64:ca:0a:10:b6:3e:95:70:
10:50:b6:3b:75:b2:b1:ae:f6:ff:51:fc:4e:18:6f:
e6:34:f0:d5:9f:07:0d:fc:86:f0:54:f6:f2:57:0e:
32:61:e2:f0:a0:6f:3d:be:c0:ff:de:05:34:6a:44:
d3:f5:25:0a:4d:0b:16:5e:49:f6:cb:dc:00:2e:1c:
b3:c5:3e:9f:71:79:72:68:eb:21:b5:00:39:f6:71:
8c:11:b8:ff:5f:35:48:f3:c4:4b:48:3c:be:61:48:
32:42:0e:2a:54:be:b9:a1:d4:10:04:12:56:d6:d2:
0d:c3:2f:86:45:dd:ce:af:04:23:d0:fc:9c:f2:6c:
a0:d5:6b:a6:9c:35:9b:18:27:22:0e:17:b6:ac:d1:
70:97:0f:78:c8:a3:5a:8e:ad:e0:50:91:52:69:96:
6b:9b:54:4e:79:32:de:90:3d:32:d5:a8:65:9e:c1:
71:03:36:bd:e8:1a:87:ea:fc:9a:2a:0e:ea:c9:6b:
e0:42:da:5f:1c:aa:44:12:c2:98:d7:a8:f1:ae:91:
59:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:33:3C:72:A4:DD:3C:CC:91:77:01:B6:D7:FB:D6:B5:67:12:31:ED
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FDM8cqTdPMyRdwG21_vWtWcSMe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.167.255
62.72.185.0/24
62.72.189.0/24
81.21.2.0-81.21.7.255
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:d7:97:71:e7:e6:14:f2:5c:45:4b:80:5f:d7:82:2a:2f:a4:
6c:14:03:2f:90:e7:e9:a6:e2:03:8f:6e:b6:1e:29:6c:77:b1:
ee:f5:36:0d:6b:4b:ed:5d:b6:a7:40:33:ff:d7:01:f8:c8:c1:
7e:8b:31:30:f5:a1:2b:da:2d:ce:24:a9:d2:9f:02:55:e2:8d:
dd:1e:2a:4a:0a:ba:2b:ea:95:0e:e9:05:b8:35:23:50:26:0a:
85:91:60:20:7e:3c:8a:26:7c:1b:4a:35:2c:02:9c:fc:3e:d6:
cd:6e:35:2f:ac:89:d6:bb:db:dd:df:ce:84:6c:45:74:c0:4c:
94:3c:14:41:56:ef:a4:60:99:ae:22:e4:d7:3f:e5:c4:3d:3e:
5f:5e:8c:fc:4b:6b:44:b2:26:c0:00:bf:db:09:ca:d9:dc:58:
06:be:86:ed:3b:94:52:c2:2f:90:f7:07:ea:d2:b7:de:ac:1d:
e0:09:64:ec:d0:a7:8a:fc:af:bb:b1:b2:25:f6:3d:f0:08:b7:
81:e9:99:f9:60:b7:2f:48:61:d5:fa:3a:3d:00:4e:bf:2f:62:
35:c2:73:a1:a1:f1:9d:9c:30:ed:02:11:b9:9b:b1:13:7e:89:
03:ae:f5:62:16:0b:4b:0e:5c:14:95:50:40:97:51:81:05:72:
a1:11:b9:1a
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgISAZLNLRY6oWNoEWgZNQ5jI1HNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjQxMDI3MDg1MjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDMzM2M3MmE0ZGQzY2NjOTE3NzAxYjZkN2ZiZDZiNTY3MTIzMWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowri27yLsR/tfoELnG+fKP0iee0f
PzcGPG1blCGtrP35w5ej25zwD0cr88prpVE4NL56ZMoKELY+lXAQULY7dbKxrvb/
UfxOGG/mNPDVnwcN/IbwVPbyVw4yYeLwoG89vsD/3gU0akTT9SUKTQsWXkn2y9wA
LhyzxT6fcXlyaOshtQA59nGMEbj/XzVI88RLSDy+YUgyQg4qVL65odQQBBJW1tIN
wy+GRd3OrwQj0Pyc8myg1WumnDWbGCciDhe2rNFwlw94yKNajq3gUJFSaZZrm1RO
eTLekD0y1ahlnsFxAza96BqH6vyaKg7qyWvgQtpfHKpEEsKY16jxrpFZtwIDAQAB
o4ICMTCCAi0wHQYDVR0OBBYEFBQzPHKk3TzMkXcBttf71rVnEjHtMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvRkRNOGNxVGRQTXlSZHdHMjFfdld0V2NTTWUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuMAwDBAE+SKID
BAM+SKADBAA+SLkDBAA+SL0wDAMEAVEVAgMEA1EVAAMEALA5PzANBgkqhkiG9w0B
AQsFAAOCAQEAq9eXcefmFPJcRUuAX9eCKi+kbBQDL5Dn6abiA49uth4pbHex7vU2
DWtL7V22p0Az/9cB+MjBfosxMPWhK9otziSp0p8CVeKN3R4qSgq6K+qVDukFuDUj
UCYKhZFgIH48iiZ8G0o1LAKc/D7WzW41L6yJ1rvb3d/OhGxFdMBMlDwUQVbvpGCZ
riLk1z/lxD0+X16M/EtrRLImwAC/2wnK2dxYBr6G7TuUUsIvkPcH6tK33qwd4Alk
7NCnivyvu7GyJfY98Ai3gemZ+WC3L0hh1fo6PQBOvy9iNcJzoaHxnZww7QIRuZux
E36JA671YhYLSw5cFJVQQJdRgQVyoRG5Gg==
-----END CERTIFICATE-----
Generated at Sun Nov 3 17:45:25 2024 by rpki-client on console-ams.rpki-client.org