Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FEps2guJiPgFaE-3n4NG1b60Cjo.roa
File: FEps2guJiPgFaE-3n4NG1b60Cjo.roa (raw, json)
Hash identifier: 1NCSd9mhpBiqG7WoTAUtYeO+tE8wmklpM1D6oisqNLE=
Subject key identifier: 14:4A:6C:DA:0B:89:88:F8:05:68:4F:B7:9F:83:46:D5:BE:B4:0A:3A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018D4EE61B490084B31654F76CC0ACA8582F
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FEps2guJiPgFaE-3n4NG1b60Cjo.roa
Signing time: Sun 28 Jan 2024 07:08:39 +0000
ROA not before: Sun 28 Jan 2024 07:08:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.164.0/23 maxlen: 23
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Feb 2024 08:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4e:e6:1b:49:00:84:b3:16:54:f7:6c:c0:ac:a8:58:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 28 07:08:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=144a6cda0b8988f805684fb79f8346d5beb40a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e2:2d:18:25:f5:9d:c0:95:20:69:f6:4b:56:
c1:e1:0c:f8:ba:b6:11:e2:42:c1:dc:f3:dd:a8:3c:
4d:c0:fa:f2:79:24:0a:7e:e5:de:8c:d0:b3:31:44:
97:5b:52:39:f8:79:58:d2:cc:27:b8:59:40:c5:98:
c1:d7:da:47:f6:f4:7b:95:70:38:d2:bc:b1:73:e6:
88:b2:ee:a9:3f:52:32:0c:c2:0e:cb:96:21:18:ce:
ef:f3:fe:ad:d2:fe:26:48:d9:f4:9c:81:0b:6c:eb:
cf:8b:ea:3d:e5:52:3a:38:6b:b7:43:18:11:e6:2e:
f2:33:d7:0f:fb:46:64:21:ac:0d:3b:a2:94:c4:63:
00:87:36:52:bf:0d:98:04:6d:09:da:b0:b2:30:fa:
04:92:e8:23:bf:d9:cf:55:31:af:ce:4e:3d:4d:50:
29:6e:8c:e4:20:f2:f2:d7:41:0c:9c:0a:b0:5f:03:
b2:3a:5e:dd:dc:ca:cf:b0:64:da:b0:09:5f:fb:90:
c6:73:55:47:a4:05:a0:df:60:0b:4e:45:64:e3:ba:
9d:e9:dc:f0:dc:e1:e3:de:4a:5b:51:a2:64:85:d4:
2d:c8:53:43:be:79:9a:1e:92:98:43:cb:ed:44:56:
97:cf:d9:32:5c:de:a7:f7:b1:50:41:88:fb:7e:c6:
1b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:4A:6C:DA:0B:89:88:F8:05:68:4F:B7:9F:83:46:D5:BE:B4:0A:3A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FEps2guJiPgFaE-3n4NG1b60Cjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.167.255
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:0c:86:8e:ed:0a:40:05:20:ff:df:2e:79:42:6f:81:20:65:
1f:34:48:f7:4c:59:24:59:57:b4:c3:f2:05:11:a4:8a:fe:94:
8e:c9:29:ed:89:df:ef:1e:24:a9:59:ab:95:77:85:00:17:8f:
f2:84:18:59:2b:31:ca:dd:9f:bf:fa:ad:6e:c3:87:42:1b:6f:
5c:a8:42:38:5c:23:ea:e0:a0:87:8a:7d:67:46:27:77:68:a8:
98:28:f8:c7:90:e8:48:66:8c:2b:35:3b:b2:db:a9:94:ea:b2:
64:96:1f:a9:30:e9:38:e1:83:13:9e:2a:9e:3f:31:54:82:7a:
93:f0:49:0b:a2:c8:7f:27:a3:94:37:03:80:9a:cd:de:14:5e:
d8:03:cf:6e:80:bc:e8:de:91:75:da:55:c2:b2:2e:38:e6:05:
52:b5:48:d0:d3:7e:e1:3f:d9:ae:49:20:9a:6c:73:77:8c:c0:
51:c5:71:d6:ff:61:6c:e7:ab:08:15:ea:a7:b4:1b:32:07:16:
fc:e8:79:ed:26:d9:85:aa:6f:26:6f:89:0e:d2:58:c8:be:b7:
a3:10:12:d6:39:59:86:09:46:87:40:aa:7b:d0:74:2c:6b:7e:
c6:09:b8:9f:1f:f0:5a:a2:78:b6:b1:89:b1:bd:5d:a3:20:73:
18:92:d5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org