Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/I49gCx6UnJyIvkCigTi39I25rYc.roa
File: I49gCx6UnJyIvkCigTi39I25rYc.roa (raw, json)
Hash identifier: QcnuhLqYnVlTn78D5s7h66KvmcCjwPMqbTWIW9QvY5c=
Subject key identifier: 23:8F:60:0B:1E:94:9C:9C:88:BE:40:A2:81:38:B7:F4:8D:B9:AD:87
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189C50DB85A741792D6BDB19393B9A6F06F
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/I49gCx6UnJyIvkCigTi39I25rYc.roa
Signing time: Sat 05 Aug 2023 09:35:57 +0000
ROA not before: Sat 05 Aug 2023 09:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 06:26:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c5:0d:b8:5a:74:17:92:d6:bd:b1:93:93:b9:a6:f0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 5 09:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=238f600b1e949c9c88be40a28138b7f48db9ad87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fc:dc:3f:3f:9f:6a:2e:ac:7e:83:c3:81:b8:
c1:d9:4f:f9:e5:94:8d:8a:03:18:a2:0a:f7:6c:a2:
d2:ea:ba:e5:17:17:fd:e3:c9:7b:1a:3b:2d:03:37:
af:76:44:3e:e4:45:37:a0:4f:22:6b:33:4f:78:48:
87:28:ca:3e:39:0a:a9:d0:3d:81:59:c4:e7:1c:ad:
5f:5a:ed:78:99:cd:59:b7:08:db:28:64:d6:06:60:
28:e5:90:4f:e4:5c:74:50:74:7e:80:53:3a:cb:98:
30:81:89:5d:6a:fc:29:95:4f:80:1e:9a:21:67:d9:
dc:21:a5:f6:f9:5e:bb:c7:03:77:45:80:64:a3:ef:
31:60:0f:be:fc:c9:df:61:77:e3:d5:41:db:79:0b:
38:9b:2a:97:2e:83:64:d8:4f:1e:3d:b0:7a:af:dd:
8f:dd:49:ac:16:ff:0b:ef:d2:a0:b5:8a:e2:6a:0e:
d7:07:ab:d3:71:7e:40:79:2b:a7:e2:4b:4f:5d:76:
c8:36:b9:75:50:d6:06:93:d5:18:70:ec:4f:34:6e:
79:8c:cb:4e:5b:b3:01:09:59:35:a0:59:c3:8d:f6:
94:37:61:54:7d:69:1c:d8:30:dd:7c:24:b6:d9:14:
cf:66:b7:d3:4c:cd:13:59:76:5d:98:da:f7:ec:ff:
b6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8F:60:0B:1E:94:9C:9C:88:BE:40:A2:81:38:B7:F4:8D:B9:AD:87
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/I49gCx6UnJyIvkCigTi39I25rYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.165.0/24
62.72.169.0-62.72.170.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.1.0/24
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
28:22:83:db:b4:a4:fd:61:84:61:5c:09:46:15:55:36:bc:88:
b6:1c:e4:c0:bf:ca:db:4e:31:21:7a:90:20:22:66:d9:53:97:
95:4e:af:31:56:b1:d7:b3:41:f4:85:32:72:a3:0c:42:8b:a6:
d5:7f:d2:74:15:2e:63:50:9f:b3:04:dd:24:39:1a:12:06:29:
32:d8:07:7a:27:1b:d9:6d:98:83:7c:76:e3:ea:d7:28:12:0d:
5a:cc:19:53:2e:f2:0f:dd:2b:38:d9:9d:b6:c6:a1:cb:66:92:
de:69:6f:15:ce:20:15:b2:69:71:4d:70:c7:ae:23:44:5e:2d:
62:e5:dd:3f:03:f5:21:e0:d5:1d:aa:29:7d:ae:2b:5f:ce:82:
7c:75:ad:3e:68:8c:8a:28:ae:91:0d:9e:69:c0:73:bf:6c:8e:
2c:dd:c1:ab:96:b0:bd:c7:1f:dc:c3:2a:9d:be:1f:ab:cd:d0:
d1:1f:8f:a9:35:81:b5:73:d5:81:47:46:cd:1b:a7:6c:5f:dd:
69:c0:40:b9:cd:96:91:c9:15:0c:20:c0:36:51:f7:b0:0f:1c:
bf:1e:69:ac:9b:1d:ff:8c:d2:de:a4:b1:a7:09:55:50:4d:82:
3a:a9:d9:7b:54:7e:e8:12:5b:13:b5:fb:8a:e4:76:65:34:1d:
14:3c:81:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org