Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/MrTKWRi6OI0e_FbpQLL2VVhRix8.roa
File: MrTKWRi6OI0e_FbpQLL2VVhRix8.roa (raw, json)
Hash identifier: rCg/wqPKYcFU43LOcacs2D6S3GUWf/XeVAnRKQOwogY=
Subject key identifier: 32:B4:CA:59:18:BA:38:8D:1E:FC:56:E9:40:B2:F6:55:58:51:8B:1F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018AF993BDC91F4AE1B6FEF3A35016102DA2
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/MrTKWRi6OI0e_FbpQLL2VVhRix8.roa
Signing time: Wed 04 Oct 2023 07:25:23 +0000
ROA not before: Wed 04 Oct 2023 07:25:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 05 Oct 2023 06:03:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:93:bd:c9:1f:4a:e1:b6:fe:f3:a3:50:16:10:2d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 4 07:25:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32b4ca5918ba388d1efc56e940b2f65558518b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1f:4f:d7:22:87:44:4a:7a:72:d9:a5:bc:2d:
dd:40:5f:64:e1:01:c9:c8:fe:b6:10:a6:3e:31:44:
fe:51:59:cd:b8:ba:f8:7c:8d:30:88:3d:06:e1:91:
77:10:cb:62:cd:0e:e9:5d:1a:0c:2d:bd:0c:d6:f0:
a1:f1:3b:14:31:9b:54:2c:34:3b:36:93:66:df:5d:
b4:39:72:c6:bb:13:d9:c7:78:7d:f5:f3:0c:e7:a8:
11:86:9c:d5:58:34:ea:36:96:2d:36:09:b8:c3:a9:
22:a4:8a:ff:22:4a:e8:63:79:66:15:e0:d4:9e:1c:
b1:9e:b6:4e:27:e9:5b:eb:87:f4:cf:26:ff:03:e7:
49:ea:88:b0:5e:73:16:98:22:6f:2d:89:52:47:4a:
d0:c9:af:42:66:ff:da:31:63:1c:15:e9:0b:72:3a:
d6:bf:8c:c3:fd:9b:e1:fb:8c:6d:bd:19:17:1a:53:
ce:30:b6:94:d0:17:20:0e:d1:62:44:51:16:4c:aa:
30:0f:a5:00:1c:1d:0b:c2:96:a4:02:18:a1:7d:ff:
32:35:cf:f0:a6:5d:4c:f6:20:8f:0b:3f:72:05:11:
17:09:ef:2e:94:47:98:bd:39:36:67:c2:e8:73:fd:
12:f2:26:3a:4d:f8:c9:00:5b:57:c8:d7:81:1e:6c:
e0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B4:CA:59:18:BA:38:8D:1E:FC:56:E9:40:B2:F6:55:58:51:8B:1F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/MrTKWRi6OI0e_FbpQLL2VVhRix8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:33:21:ab:44:49:51:f0:13:e7:46:91:5f:ce:f2:06:35:16:
38:70:02:1b:11:ee:f9:80:65:0f:fb:1d:26:4f:63:77:9a:b6:
db:a5:ca:0a:00:75:77:86:95:32:01:4e:7f:c0:ce:8d:2a:76:
60:9f:61:e8:0d:6e:59:a4:fe:46:5a:66:38:11:ab:ab:f0:9f:
42:d3:f1:78:77:d7:79:32:e4:5f:03:da:98:20:38:f6:93:85:
a0:60:f6:ae:88:03:cb:c2:5c:18:fa:c2:76:3e:07:c0:97:97:
5c:70:70:28:d3:fc:5d:1d:49:7f:ea:04:bc:0a:13:d1:0c:25:
c4:1a:9e:e5:1f:8a:5d:ce:04:73:0b:80:8b:94:45:65:fb:a8:
52:86:6a:52:a9:92:3f:d5:42:c0:eb:ca:0f:f8:ca:91:1e:89:
8d:67:d2:ec:c1:29:f2:ca:74:6b:9a:b0:7f:b6:1c:be:d0:4e:
72:91:cd:e7:da:ef:a0:72:29:50:9c:a5:9f:ec:1f:18:68:99:
f6:b0:d3:2c:ce:38:58:2c:f3:0c:b8:a9:a5:48:fa:e8:ba:f4:
e9:a0:cb:5a:2a:a8:a5:e7:60:9c:62:01:fe:a1:8f:6f:a1:e8:
29:0c:01:41:a8:c1:ac:be:00:90:eb:41:f3:52:64:69:99:54:
ba:8a:0b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org