Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IkBLifIKL15TUN9pMmlFiAdX4iI.roa
File: IkBLifIKL15TUN9pMmlFiAdX4iI.roa (raw, json)
Hash identifier: RblPaUflNIJtUZKXt0UKHaPGyrewYfXkn4PW749nOUo=
Subject key identifier: 22:40:4B:89:F2:0A:2F:5E:53:50:DF:69:32:69:45:88:07:57:E2:22
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CF74320F0FB9F9D4CFD97F0B585295FEA
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IkBLifIKL15TUN9pMmlFiAdX4iI.roa
Signing time: Thu 11 Jan 2024 06:43:40 +0000
ROA not before: Thu 11 Jan 2024 06:43:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50132
IP address blocks: 62.72.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 08:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:43:20:f0:fb:9f:9d:4c:fd:97:f0:b5:85:29:5f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 11 06:43:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22404b89f20a2f5e5350df69326945880757e222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8e:c2:23:70:d3:c7:e1:56:83:02:aa:06:fc:
0b:fd:12:be:76:23:7c:a7:18:51:68:1d:99:6b:1d:
bf:7c:ac:55:5c:b3:6f:1f:39:43:f9:21:8c:54:8c:
64:90:82:85:a0:f0:ef:e7:7c:21:57:40:6b:a2:26:
29:4d:21:a2:f1:71:cd:06:15:16:c3:ad:6d:64:3e:
0c:17:06:ec:4b:31:ab:f8:e5:ad:50:10:85:b8:1a:
d8:eb:95:1f:d5:c5:d9:82:73:43:82:bf:31:4d:aa:
5d:1f:a6:f7:09:6b:ec:55:fb:ef:b3:a5:da:c7:99:
1c:90:b3:3a:07:84:09:0c:f1:a4:8e:12:6d:0a:52:
9a:20:0d:03:66:d5:0c:42:3e:da:ed:6b:6c:39:dc:
9b:e7:a4:ba:6f:db:c3:0b:d8:87:42:95:c4:e3:09:
86:e6:67:47:f8:6d:01:31:00:c5:cb:7e:41:38:7e:
ef:49:1f:e8:a3:26:64:8a:42:41:00:26:81:bb:09:
d9:78:bb:f8:33:fe:80:9a:f9:c5:c9:e0:f9:dc:c9:
26:f9:80:dc:19:f1:a7:76:7c:b5:1d:5f:ad:cd:ce:
d9:88:b7:a6:36:13:de:cd:bf:a9:a8:c5:d7:9b:52:
5b:d5:a1:18:47:35:70:04:67:75:61:66:57:6c:92:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:40:4B:89:F2:0A:2F:5E:53:50:DF:69:32:69:45:88:07:57:E2:22
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IkBLifIKL15TUN9pMmlFiAdX4iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:3d:72:41:62:13:bb:f3:f2:a4:d0:f2:6a:0a:a9:c2:cb:fe:
f1:b7:b0:80:88:6a:b7:9b:84:29:1f:96:68:31:28:2b:b3:24:
79:09:be:c2:b8:90:33:6c:53:09:3b:ab:ca:5b:c4:53:63:75:
5e:64:01:35:97:f0:7f:9a:6d:cc:f6:05:e5:f9:ed:d3:22:14:
ac:33:7e:c4:ac:23:e5:a2:ab:81:a3:2a:56:70:33:a5:97:e1:
e0:25:7d:b3:46:13:98:df:21:16:ec:ac:1e:89:9b:1d:a5:db:
48:d3:44:04:db:f5:5c:e9:f5:af:d1:6e:d0:2a:5a:82:af:47:
5d:b3:96:5d:81:63:5e:48:87:e3:ac:c8:ff:19:f5:5d:d6:7b:
fe:e0:9d:18:e7:7f:4a:c0:a3:6a:9b:7f:52:4d:12:ee:88:e0:
9c:fc:63:c3:78:e6:9c:7b:a8:d1:17:07:68:62:ea:86:ff:79:
da:d5:e5:57:60:df:e8:55:03:28:10:ed:2c:87:7e:4d:c3:a6:
b2:ba:2e:39:0b:74:51:79:96:4e:97:6f:58:81:79:b4:ca:0d:
4d:1f:bf:9d:a2:85:0a:bc:9a:04:8d:27:8a:6a:7c:c2:88:99:
a2:3b:59:01:92:3b:7c:09:62:f6:d8:12:df:fe:05:9f:68:f0:
c7:07:55:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org