Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IwCfIVx-U0OWZgIQgbMjwlQbFVE.roa
File: IwCfIVx-U0OWZgIQgbMjwlQbFVE.roa (raw, json)
Hash identifier: gkDA+TBaqArVbYmPNxP91t88FydG08CsGldrh9qOZdc=
Subject key identifier: 23:00:9F:21:5C:7E:53:43:96:66:02:10:81:B3:23:C2:54:1B:15:51
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018A924F6094833D493152951E7F8B33D4F2
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IwCfIVx-U0OWZgIQgbMjwlQbFVE.roa
Signing time: Thu 14 Sep 2023 06:09:50 +0000
ROA not before: Thu 14 Sep 2023 06:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.171.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 19:17:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:92:4f:60:94:83:3d:49:31:52:95:1e:7f:8b:33:d4:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 14 06:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23009f215c7e53439666021081b323c2541b1551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:35:e9:2b:91:b8:7d:a5:f4:de:0d:35:6c:4d:
a1:00:3d:c3:08:12:38:1a:8b:85:4a:5d:a1:46:f6:
db:ce:e5:7a:c2:89:f9:d6:fe:d6:32:2e:96:1e:f3:
8f:cf:c2:ec:ad:02:28:6b:ba:69:a3:92:7e:ae:81:
93:30:a5:f7:3b:e7:39:a4:f3:26:9b:3f:9c:47:23:
32:54:95:d7:0b:d6:66:49:87:61:7a:fd:76:ea:8d:
69:86:49:ba:cd:0a:0c:4b:84:60:77:f2:2b:e1:98:
72:9b:f4:a8:e3:1a:03:79:b1:32:e8:29:cf:d2:44:
cd:02:b7:1e:a4:1e:45:b0:72:87:fa:63:88:ed:9a:
de:29:3f:d0:58:8b:6a:ed:9f:c8:e7:61:62:1c:67:
14:84:0c:43:c9:67:00:35:53:07:19:d5:d3:23:16:
79:a0:0c:11:9b:54:36:20:77:82:4f:13:6d:b6:d1:
af:ce:3d:b6:62:c4:1d:7c:1e:e2:2e:05:c5:b8:9e:
ae:7d:85:7b:4c:3b:90:ff:68:9c:b0:c4:19:2a:13:
ee:6a:bc:c6:db:d4:9c:16:4e:3f:c3:3d:47:40:4a:
1d:63:55:1e:8c:1a:b1:81:f1:04:95:d1:e2:11:ec:
3b:2a:0d:84:93:a8:41:c7:74:51:52:16:95:7e:0f:
08:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:00:9F:21:5C:7E:53:43:96:66:02:10:81:B3:23:C2:54:1B:15:51
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/IwCfIVx-U0OWZgIQgbMjwlQbFVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.165.255
62.72.168.0/22
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.1.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
71:f5:53:c9:14:73:1a:30:9f:71:b0:bd:b3:cc:7f:ff:a6:53:
80:29:51:b2:c1:89:df:6e:97:c4:df:06:b1:14:53:f2:a8:37:
44:7e:27:e1:23:93:85:30:c5:b5:e9:bc:96:f1:8e:27:f7:25:
0e:94:f4:b6:25:b3:ab:fc:f8:33:0f:e5:a2:22:52:8d:e7:ae:
87:73:67:27:c0:a2:80:37:00:d3:65:d6:4d:58:28:a6:00:4e:
dc:5d:88:47:fe:1f:9e:56:1d:7f:fe:1b:79:c5:0f:3a:79:bf:
d5:5d:22:4b:f7:4c:a5:08:33:38:2d:25:26:96:6a:e7:d4:86:
59:52:60:17:bc:7a:a7:2e:5a:99:b2:0b:da:86:68:4b:1b:7d:
8c:05:4d:fa:1d:6b:68:da:30:ad:e8:90:8d:aa:7e:2d:55:d4:
28:d4:2e:1b:6a:37:5f:40:95:5d:3f:3e:72:83:6e:95:6a:76:
86:f2:e4:a8:df:cf:22:68:cb:75:4d:26:2f:15:fd:6b:f6:21:
6a:7b:6b:58:5f:5b:98:6a:b3:22:e2:6b:ec:41:13:56:f5:b5:
a5:d8:62:07:d7:1b:22:1b:18:3c:1b:bb:cb:85:b3:4e:37:e5:
f0:02:20:e2:34:f0:62:f9:f1:57:3c:c5:30:29:b0:b7:5c:53:
48:9b:e4:d2
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAYqST2CUgz1JMVKVHn+LM9TyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwOTE0MDYwOTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzAwOWYyMTVjN2U1MzQzOTY2NjAyMTA4MWIzMjNjMjU0MWIxNTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjXpK5G4faX03g01bE2hAD3DCBI4
GouFSl2hRvbbzuV6won51v7WMi6WHvOPz8LsrQIoa7ppo5J+roGTMKX3O+c5pPMm
mz+cRyMyVJXXC9ZmSYdhev126o1phkm6zQoMS4Rgd/Ir4Zhym/So4xoDebEy6CnP
0kTNArcepB5FsHKH+mOI7ZreKT/QWItq7Z/I52FiHGcUhAxDyWcANVMHGdXTIxZ5
oAwRm1Q2IHeCTxNtttGvzj22YsQdfB7iLgXFuJ6ufYV7TDuQ/2icsMQZKhPuarzG
29ScFk4/wz1HQEodY1UejBqxgfEEldHiEew7Kg2Ek6hBx3RRUhaVfg8I1QIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFCMAnyFcflNDlmYCEIGzI8JUGxVRMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvSXdDZklWeC1VME9XWmdJUWdiTWp3bFFiRlZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQwDAME
AD5IoQMEAT5IpAMEAj5IqDAMAwQAPkitAwQEPkigAwQAPkixAwQAPkizMAwDBAA+
SLUDBAA+SLYwDAMEAz5IuAMEAT5IvAMEAD5IvzAMAwQAURUBAwQDURUAMAwDBAFR
FQoDBARRFQADBACwOTMDBACwOTUDBAGwOToDBAGwOT4wDQYJKoZIhvcNAQELBQAD
ggEBAHH1U8kUcxown3GwvbPMf/+mU4ApUbLBid9ul8TfBrEUU/KoN0R+J+Ejk4Uw
xbXpvJbxjif3JQ6U9LYls6v8+DMP5aIiUo3nrodzZyfAooA3ANNl1k1YKKYATtxd
iEf+H55WHX/+G3nFDzp5v9VdIkv3TKUIMzgtJSaWaufUhllSYBe8eqcuWpmyC9qG
aEsbfYwFTfoda2jaMK3okI2qfi1V1CjULhtqN19AlV0/PnKDbpVqdoby5KjfzyJo
y3VNJi8V/Wv2IWp7a1hfW5hqsyLia+xBE1b1taXYYgfXGyIbGDwbu8uFs0435fAC
IOI08GL58Vc8xTApsLdcU0ib5NI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org