Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KCOwgSRuPDOG_OXyWJi83wc1CYk.roa
File: KCOwgSRuPDOG_OXyWJi83wc1CYk.roa (raw, json)
Hash identifier: fdW+v/KCJemo2qGs/ITMTxmSLQmFrhILlVwUMH3GIQg=
Subject key identifier: 28:23:B0:81:24:6E:3C:33:86:FC:E5:F2:58:98:BC:DF:07:35:09:89
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018A8A8F6DBA4D8813620F80E8CA3A12BC40
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KCOwgSRuPDOG_OXyWJi83wc1CYk.roa
Signing time: Tue 12 Sep 2023 18:02:50 +0000
ROA not before: Tue 12 Sep 2023 18:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.13.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.171.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 06:09:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:8f:6d:ba:4d:88:13:62:0f:80:e8:ca:3a:12:bc:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 12 18:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2823b081246e3c3386fce5f25898bcdf07350989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c4:6b:06:0e:6e:ac:91:5a:7b:b3:77:89:27:
03:77:a4:ad:5d:46:7e:4c:1f:c8:af:9f:ab:07:a6:
ba:9c:03:21:47:e2:72:a3:82:ef:0e:5a:ed:e7:8f:
a5:8a:d1:31:26:e5:f7:7b:16:7a:33:e1:78:a5:21:
6b:a5:05:71:01:59:9f:e1:22:94:00:8d:b2:5f:33:
b2:67:7b:85:0b:7d:a4:5f:1a:95:23:d3:c3:ab:2c:
41:68:52:46:3b:75:c9:6f:0b:d7:0c:99:15:65:92:
3d:77:07:88:0d:d5:8d:56:42:db:3d:d7:14:8a:31:
fd:49:29:c0:80:bd:26:27:e1:36:05:c7:4a:42:91:
69:6d:88:12:39:f0:4f:65:d2:e3:c3:c9:c2:09:2e:
0b:89:af:74:78:66:32:a4:c1:74:49:e5:e2:c6:49:
b1:b7:3e:d3:d5:37:90:82:db:8d:7e:87:30:c3:46:
1c:3f:88:1c:33:ab:97:b0:65:61:c1:d5:d5:27:d2:
d0:a1:f6:f7:54:7f:46:97:37:99:92:38:92:0b:03:
67:54:29:eb:a9:40:dd:65:64:44:ed:5c:ac:77:a2:
82:9c:6a:eb:26:d7:04:1c:c7:41:d4:84:7d:6c:d7:
c0:33:89:24:1d:82:fe:c3:c9:9b:49:12:f4:3e:7c:
9f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:23:B0:81:24:6E:3C:33:86:FC:E5:F2:58:98:BC:DF:07:35:09:89
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/KCOwgSRuPDOG_OXyWJi83wc1CYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.165.255
62.72.168.0/22
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.1.0-81.21.8.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:f7:e3:3f:f9:ed:55:c4:1b:62:cc:8d:72:3a:d6:c8:7a:21:
b8:fd:4b:a1:71:b2:2e:da:08:9c:0c:c3:6f:31:b6:03:e4:9a:
8d:1b:57:88:a0:67:7f:f2:e3:35:01:06:5b:a0:f3:a9:8b:53:
29:b7:aa:a3:22:55:27:7d:4e:6c:54:30:8a:7b:19:ed:ec:7f:
00:73:ae:27:89:ab:9e:ce:36:d7:f3:75:bc:d2:74:55:e4:2b:
ab:8b:5a:11:b8:d7:33:33:77:24:24:8d:39:e6:89:93:a9:66:
28:5e:9b:ca:2c:44:2b:9b:8e:1e:20:08:07:fe:af:51:3b:81:
57:72:ee:13:67:15:24:d9:38:38:f0:4a:5f:e4:7a:8b:d2:bb:
ed:14:8b:4f:63:43:80:a1:5a:d8:2b:61:0f:72:af:e9:0a:54:
b2:5a:75:3b:c4:71:84:7a:ca:79:4d:62:ed:d0:e1:e4:5f:9d:
e8:6b:3d:62:81:78:c6:d3:f4:9e:79:16:4b:83:cb:48:25:36:
ae:63:16:ad:c4:df:26:d5:5c:de:a2:09:d1:3e:ef:43:b9:f9:
cf:98:d5:66:6d:03:d6:2a:6b:d8:56:d4:6a:25:fe:77:a2:c0:
1e:4c:2f:5c:53:49:75:0b:51:20:75:8f:21:e8:4d:3f:64:f2:
70:29:76:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org