Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Nsg7NSOXttQbWX1P6xN1h0hBiuM.roa
File: Nsg7NSOXttQbWX1P6xN1h0hBiuM.roa (raw, json)
Hash identifier: zfS16/QVG0RWU4xCcnjWnkXs0IFI9vD37UDXQY2BzsY=
Subject key identifier: 36:C8:3B:35:23:97:B6:D4:1B:59:7D:4F:EB:13:75:87:48:41:8A:E3
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189CEAD69869A90DE351B39CC9C6BAA5435
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Nsg7NSOXttQbWX1P6xN1h0hBiuM.roa
Signing time: Mon 07 Aug 2023 06:26:58 +0000
ROA not before: Mon 07 Aug 2023 06:26:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 13:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ce:ad:69:86:9a:90:de:35:1b:39:cc:9c:6b:aa:54:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 7 06:26:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36c83b352397b6d41b597d4feb13758748418ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:11:77:9e:a0:16:3b:43:49:1b:a0:85:cd:08:
ca:27:c5:bf:70:d2:e2:b4:b4:c7:b7:f3:11:6c:f1:
64:6e:da:d1:3d:88:22:7e:c2:8a:29:ba:1e:a0:3b:
d1:a7:6e:a0:71:36:20:e3:6b:06:57:8e:83:da:af:
4d:28:d6:49:15:dd:5d:70:40:eb:aa:c6:b3:1a:2d:
82:7c:dd:b9:c4:a5:87:50:6a:4c:8c:2a:46:ac:fa:
7d:0f:ff:3f:cc:56:6f:05:b7:1b:b3:86:36:ef:8c:
61:50:af:2e:4a:71:d6:15:03:c3:de:96:35:57:c9:
a3:81:6a:b9:1a:11:e1:39:8e:94:dd:be:80:50:8d:
a3:16:79:4d:c1:5d:08:cd:65:34:70:8a:a7:8c:7d:
96:b5:05:fd:ba:1e:26:ea:d2:41:35:2c:63:98:75:
b4:23:d0:a7:32:9e:99:17:38:d6:01:d1:4e:4a:58:
be:cb:73:fd:0b:fd:b7:ba:13:2e:7b:ed:5d:6e:fb:
9b:8e:37:8d:70:e8:b6:0c:14:f5:90:bd:d8:18:ee:
cb:2c:15:c5:ab:34:24:30:34:05:64:38:60:6a:34:
ef:30:4c:7d:57:31:04:ca:6b:a6:e8:84:43:c1:f1:
3f:ce:79:ec:53:bc:aa:d8:f5:ca:dc:be:e7:0b:5f:
78:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C8:3B:35:23:97:B6:D4:1B:59:7D:4F:EB:13:75:87:48:41:8A:E3
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Nsg7NSOXttQbWX1P6xN1h0hBiuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.165.0/24
62.72.169.0-62.72.170.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.1.0/24
81.21.8.0/24
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
06:0e:23:63:77:ee:34:75:18:4b:2e:39:a5:bc:d3:1a:a0:b7:
96:76:cc:72:77:fe:60:12:91:9a:f4:f5:aa:e5:eb:dc:44:ff:
97:d7:25:82:89:d5:f6:7a:3c:92:09:d8:90:45:80:01:6e:53:
7c:95:8c:44:06:90:6c:ff:e5:8a:40:07:0a:7a:95:d8:ec:c6:
f4:d0:16:2d:4a:b4:35:c2:1a:b8:a4:25:10:47:b5:14:43:d9:
0e:e2:8f:99:35:35:1c:c7:02:68:d3:bc:7f:81:51:9d:3e:03:
db:75:7d:1e:72:93:8b:fd:96:bc:f4:6f:d1:4e:5b:74:99:37:
91:05:f4:4e:d1:70:83:bb:ce:95:22:00:10:86:fb:45:0b:60:
b8:2b:5b:b3:92:e1:4b:e9:6a:1d:e0:60:6f:2b:b6:6d:7b:d0:
2c:cd:c8:26:a5:a9:dc:24:35:a7:ed:01:1e:35:08:07:fb:ad:
7c:0d:da:99:6b:00:50:11:03:51:1a:49:63:d9:a7:8f:97:30:
68:19:ab:6c:80:62:1c:c9:ef:17:04:08:93:e7:08:d6:e4:09:
28:e7:1f:4e:e7:83:74:41:dc:d0:2d:bb:d6:94:1a:a5:3c:b5:
50:f1:36:0a:99:bf:09:39:9b:50:a4:8f:5f:4e:cd:c6:0e:f1:
61:a1:6e:9a
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAYnOrWmGmpDeNRs5zJxrqlQ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwODA3MDYyNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNmM4M2IzNTIzOTdiNmQ0MWI1OTdkNGZlYjEzNzU4NzQ4NDE4YWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhF3nqAWO0NJG6CFzQjKJ8W/cNLi
tLTHt/MRbPFkbtrRPYgifsKKKboeoDvRp26gcTYg42sGV46D2q9NKNZJFd1dcEDr
qsazGi2CfN25xKWHUGpMjCpGrPp9D/8/zFZvBbcbs4Y274xhUK8uSnHWFQPD3pY1
V8mjgWq5GhHhOY6U3b6AUI2jFnlNwV0IzWU0cIqnjH2WtQX9uh4m6tJBNSxjmHW0
I9CnMp6ZFzjWAdFOSli+y3P9C/23uhMue+1dbvubjjeNcOi2DBT1kL3YGO7LLBXF
qzQkMDQFZDhgajTvMEx9VzEEymum6IRDwfE/znnsU7yq2PXK3L7nC194pQIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFDbIOzUjl7bUG1l9T+sTdYdIQYrjMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvTnNnN05TT1h0dFFiV1gxUDZ4TjFoMGhCaXVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfDAMAwQA
PkihAwQCPkigAwQAPkilMAwDBAA+SKkDBAA+SKoDBAA+SLEDBAA+SLMwDAMEAD5I
tQMEAD5ItgMEAD5IuTAMAwQAPki7AwQBPki8AwQAPki/AwQAURUBAwQAURUIMAwD
BAFRFQoDBARRFQADBACwOTMDBACwOT8wDQYJKoZIhvcNAQELBQADggEBAAYOI2N3
7jR1GEsuOaW80xqgt5Z2zHJ3/mASkZr09arl69xE/5fXJYKJ1fZ6PJIJ2JBFgAFu
U3yVjEQGkGz/5YpABwp6ldjsxvTQFi1KtDXCGrikJRBHtRRD2Q7ij5k1NRzHAmjT
vH+BUZ0+A9t1fR5yk4v9lrz0b9FOW3SZN5EF9E7RcIO7zpUiABCG+0ULYLgrW7OS
4Uvpah3gYG8rtm170CzNyCalqdwkNaftAR41CAf7rXwN2plrAFARA1EaSWPZp4+X
MGgZq2yAYhzJ7xcECJPnCNbkCSjnH07ng3RB3NAtu9aUGqU8tVDxNgqZvwk5m1Ck
j19OzcYO8WGhbpo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org