Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/PG3bMXTtTiE9h3rdPykA6rDbcxs.roa
File: PG3bMXTtTiE9h3rdPykA6rDbcxs.roa (raw, json)
Hash identifier: mWWHJCYfdTv73yZn6a6FLO3OZBDhrlyyanTTWl1QweY=
Subject key identifier: 3C:6D:DB:31:74:ED:4E:21:3D:87:7A:DD:3F:29:00:EA:B0:DB:73:1B
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C80D8936D7C38E45EEECE6A26DEDFAB08
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/PG3bMXTtTiE9h3rdPykA6rDbcxs.roa
Signing time: Tue 19 Dec 2023 06:52:06 +0000
ROA not before: Tue 19 Dec 2023 06:52:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.160.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 10:27:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:80:d8:93:6d:7c:38:e4:5e:ee:ce:6a:26:de:df:ab:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 19 06:52:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c6ddb3174ed4e213d877add3f2900eab0db731b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:02:13:b1:57:b0:86:99:00:aa:75:03:9f:b0:
da:ff:71:c7:99:a9:71:40:76:cf:f6:b4:a3:42:ac:
f9:f2:cd:9c:5c:6f:4e:0d:97:09:1a:74:e4:8a:49:
a0:1b:e4:8d:f2:d3:e3:a4:5e:99:c6:c9:de:5b:82:
86:83:b9:9e:7d:c7:87:b8:f0:e3:c7:67:37:87:87:
2f:99:70:b6:0d:02:87:22:88:b5:82:4d:ca:0e:de:
87:32:76:22:3a:ab:82:b6:5f:b0:ad:e9:f2:cd:6e:
ee:cd:d7:f9:92:0b:7d:0a:69:17:32:71:8e:6f:3b:
61:72:75:e1:4d:06:12:f1:45:e8:f6:e3:7d:0f:49:
9e:19:8e:10:e0:02:e1:12:4d:2c:a0:c9:fe:5d:78:
61:44:83:5c:89:eb:99:7b:18:6a:f8:98:0a:fe:74:
43:4a:01:2f:4e:94:bc:39:a4:03:a9:f3:07:22:2e:
81:d3:01:12:cb:6d:58:43:2f:e0:1c:6d:13:6c:19:
79:65:a5:57:04:73:32:5a:e9:67:4b:be:4c:d4:ea:
6d:62:98:76:1f:ea:c7:97:35:fd:3b:d6:77:d0:7f:
26:f8:74:20:b1:fd:be:66:eb:ae:02:7a:6d:95:90:
3e:6c:6d:b0:e1:7b:92:34:b9:6a:dc:b3:e3:a6:54:
37:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6D:DB:31:74:ED:4E:21:3D:87:7A:DD:3F:29:00:EA:B0:DB:73:1B
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/PG3bMXTtTiE9h3rdPykA6rDbcxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.160.0/24
62.72.162.0-62.72.167.255
62.72.181.0/24
62.72.188.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
34:b6:f1:f7:a6:94:ba:78:64:ca:23:9a:12:d8:b3:ed:ce:ee:
ef:4a:ff:13:6b:14:52:a4:8a:b6:af:f7:a8:08:4a:48:1f:17:
79:60:44:0f:02:7c:fb:35:e9:3a:d1:f9:72:3b:6d:64:a6:ca:
b2:1a:4c:50:a8:c7:e7:8a:d7:94:52:32:60:3b:f2:f4:66:d9:
ef:e0:3b:7f:97:3f:39:85:75:a3:09:fa:22:61:04:31:c8:7b:
4f:38:7f:95:61:fe:0c:8c:15:8d:a8:1a:cf:86:87:da:74:dd:
37:72:c0:20:b4:6f:a9:34:ff:c9:bf:01:32:ac:70:2f:4e:53:
b5:2e:bd:c0:00:45:c5:9a:26:91:df:15:f6:05:c4:b4:9c:9c:
c4:ef:5f:5b:f7:97:f6:9b:71:59:21:ef:b1:45:48:3c:cb:1b:
9c:77:47:e9:e6:80:30:80:f4:78:03:5c:f7:81:c4:3c:4f:b2:
ea:bb:eb:65:ca:7f:c0:a7:25:57:0b:96:ee:20:d9:57:9c:74:
d1:0c:1d:d9:5f:97:b0:c0:10:b3:d7:81:81:43:b2:92:4a:f1:
16:ba:f9:57:a6:22:00:04:03:c4:d7:37:67:32:6a:c6:24:f9:
6f:9a:12:c6:54:81:a8:27:69:9d:1e:96:be:46:0a:57:cb:6a:
96:06:eb:97
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYyA2JNtfDjkXu7Oaibe36sIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMjE5MDY1MjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzZkZGIzMTc0ZWQ0ZTIxM2Q4NzdhZGQzZjI5MDBlYWIwZGI3MzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngITsVewhpkAqnUDn7Da/3HHmalx
QHbP9rSjQqz58s2cXG9ODZcJGnTkikmgG+SN8tPjpF6ZxsneW4KGg7mefceHuPDj
x2c3h4cvmXC2DQKHIoi1gk3KDt6HMnYiOquCtl+wrenyzW7uzdf5kgt9CmkXMnGO
bzthcnXhTQYS8UXo9uN9D0meGY4Q4ALhEk0soMn+XXhhRINcieuZexhq+JgK/nRD
SgEvTpS8OaQDqfMHIi6B0wESy21YQy/gHG0TbBl5ZaVXBHMyWulnS75M1OptYph2
H+rHlzX9O9Z30H8m+HQgsf2+ZuuuAnptlZA+bG2w4XuSNLlq3LPjplQ3VQIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFDxt2zF07U4hPYd63T8pAOqw23MbMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvUEczYk1YVHRUaUU5aDNyZFB5a0E2ckRiY3hzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAPkigMAwD
BAE+SKIDBAM+SKADBAA+SLUDBAA+SLwwDAMEAVEVAgMEA1EVADAMAwQBURUKAwQE
URUAAwQAsDkzAwQAsDk1AwQBsDk6AwQAsDk/MA0GCSqGSIb3DQEBCwUAA4IBAQA0
tvH3ppS6eGTKI5oS2LPtzu7vSv8TaxRSpIq2r/eoCEpIHxd5YEQPAnz7Nek60fly
O21kpsqyGkxQqMfniteUUjJgO/L0Ztnv4Dt/lz85hXWjCfoiYQQxyHtPOH+VYf4M
jBWNqBrPhofadN03csAgtG+pNP/JvwEyrHAvTlO1Lr3AAEXFmiaR3xX2BcS0nJzE
719b95f2m3FZIe+xRUg8yxucd0fp5oAwgPR4A1z3gcQ8T7Lqu+tlyn/ApyVXC5bu
INlXnHTRDB3ZX5ewwBCz14GBQ7KSSvEWuvlXpiIABAPE1zdnMmrGJPlvmhLGVIGo
J2mdHpa+RgpXy2qWBuuX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org