Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IDaz4mSzNDqcrU1H1dJf1G04gRM.roa
File: IDaz4mSzNDqcrU1H1dJf1G04gRM.roa (raw, json)
Hash identifier: D1QmOMtwGsaDVH53aqpvCCM+u40SrADVjl9yrWTt8Pk=
Subject key identifier: 20:36:B3:E2:64:B3:34:3A:9C:AD:4D:47:D5:D2:5F:D4:6D:38:81:13
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189BA4BD24F2B0F39FA6CFDDAB193D69D5B
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IDaz4mSzNDqcrU1H1dJf1G04gRM.roa
Signing time: Thu 03 Aug 2023 07:27:58 +0000
ROA not before: Thu 03 Aug 2023 07:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 62.72.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 13:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:4b:d2:4f:2b:0f:39:fa:6c:fd:da:b1:93:d6:9d:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 3 07:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2036b3e264b3343a9cad4d47d5d25fd46d388113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:56:82:e0:ff:70:6e:41:8f:54:17:22:ac:af:
a7:ae:28:77:d6:cb:a2:5a:e3:a4:bb:b6:b8:79:a7:
f8:46:0f:2d:a7:ec:20:1d:ab:eb:d5:74:b3:2d:1b:
90:9b:f9:2f:c5:d5:a5:df:dd:21:6d:6d:7e:19:fb:
85:5f:1f:42:4d:2b:b4:04:1f:45:8c:3a:ee:0b:4a:
d5:34:61:de:d9:fe:a6:2c:e0:f0:ed:1b:9e:ae:5f:
cc:d1:54:11:8d:ab:83:e1:c5:0b:50:5c:2c:79:e7:
78:cd:ef:40:5d:f1:3c:60:8d:66:ce:39:04:c8:5f:
5e:97:e0:03:32:91:69:c8:66:d7:ad:73:5e:28:c2:
74:d1:7a:40:ea:9f:6c:fb:48:fb:30:3c:29:21:12:
9b:0e:d9:18:8a:6e:9a:1e:8d:50:7d:fa:b5:be:dd:
ba:44:fc:2d:c8:d3:68:25:e0:bd:be:e8:42:0c:c8:
49:27:98:89:18:c8:ae:53:24:db:1b:69:5f:85:96:
ff:d7:e9:37:df:1b:3e:d1:c6:5a:d3:07:f7:7c:ba:
40:a4:60:d6:f7:13:dc:b8:8c:32:b9:f3:66:21:ca:
84:9f:9f:b2:a7:ff:b3:94:d8:67:b4:58:a5:a7:83:
6a:b4:40:9b:da:d2:75:94:17:cb:93:cb:e8:71:31:
5e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:36:B3:E2:64:B3:34:3A:9C:AD:4D:47:D5:D2:5F:D4:6D:38:81:13
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IDaz4mSzNDqcrU1H1dJf1G04gRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.170.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:97:e9:a7:62:60:56:b0:25:cb:53:8e:4b:81:7d:44:c5:9a:
ac:e9:58:19:72:76:c3:6c:f9:cc:ec:fe:67:e3:97:e5:4a:c8:
75:87:d1:13:ff:d4:81:0a:ce:66:48:4d:51:47:df:15:e5:c9:
e7:61:25:5f:3e:d0:81:99:f6:be:8b:f0:1e:06:ba:8b:2d:88:
9c:f7:bb:bb:c6:c1:23:50:b3:07:2b:58:50:16:ca:ab:a9:54:
a4:96:6f:1f:ba:0a:c8:76:5c:8d:98:ef:22:a1:48:37:24:5b:
74:7d:2f:ca:c8:f3:52:55:bb:9c:d2:65:bb:21:d5:f0:3b:dc:
12:bd:fb:30:4b:37:72:d2:23:e7:a0:ce:c2:b7:cf:5c:b0:6b:
d1:cb:f1:f9:0f:3d:e8:27:db:33:c0:25:62:26:7f:af:b6:8b:
4c:2b:87:98:61:bc:44:52:96:9d:42:f6:c2:16:3f:65:d7:9f:
8d:80:ed:27:9b:02:8e:9a:45:27:c6:c8:13:fe:11:4c:eb:ba:
81:d5:d7:cb:b9:bf:04:29:dd:4d:30:3d:25:ee:ad:09:e8:fc:
40:c9:af:56:3f:1a:98:e7:03:4d:de:96:67:63:1e:63:44:68:
22:ec:ee:dc:e8:58:dd:dd:3f:5b:bd:a2:03:69:a8:12:74:8e:
59:31:9d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org