Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/P_9MaKT-ueZNZ8zf6_Y6kLg7C5M.roa
File: P_9MaKT-ueZNZ8zf6_Y6kLg7C5M.roa (raw, json)
Hash identifier: xjJMfjt5uK2bkx+xUtYn7YZpZfnKV0/V2nE6ADZgtJA=
Subject key identifier: 3F:FF:4C:68:A4:FE:B9:E6:4D:67:CC:DF:EB:F6:3A:90:B8:3B:0B:93
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CC6B79B439A922E30DE4A6FB3C79B64A7
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/P_9MaKT-ueZNZ8zf6_Y6kLg7C5M.roa
Signing time: Mon 01 Jan 2024 20:29:30 +0000
ROA not before: Mon 01 Jan 2024 20:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 09:37:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:9b:43:9a:92:2e:30:de:4a:6f:b3:c7:9b:64:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 20:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fff4c68a4feb9e64d67ccdfebf63a90b83b0b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:99:c5:a4:de:67:3a:0b:bb:52:f6:a9:11:17:
94:8d:d8:7f:e0:77:3c:10:e6:65:72:3c:91:fb:30:
56:d3:3b:0a:00:cb:e1:df:5b:0b:9a:a3:f2:9f:10:
c9:c2:83:99:05:7d:b4:7d:dc:de:8b:48:94:95:90:
ed:ac:35:c8:09:0a:60:69:74:f9:b3:33:31:19:b1:
eb:60:84:21:44:46:25:60:a0:5d:5c:3d:ad:f2:68:
70:80:84:05:ea:db:97:02:37:d3:84:43:6a:e8:fd:
24:a1:42:0f:b0:d7:79:66:87:cd:c7:22:0f:27:c7:
b0:67:63:ca:a9:19:c0:15:e8:4a:85:02:5a:29:87:
97:6d:a9:0e:b1:1b:6b:ce:89:c2:7b:88:cc:29:c3:
7f:d5:43:02:f4:df:af:32:57:47:89:58:31:05:92:
72:3c:da:2c:62:04:d3:16:59:0a:0f:fe:99:13:de:
bd:37:76:5c:22:34:f3:c2:51:44:f2:4d:e4:bb:d1:
b8:0b:d1:12:34:e8:c4:df:c7:f8:d0:ad:89:ed:01:
60:9f:57:e8:bf:5b:79:60:ee:67:f2:3c:7d:bc:42:
44:1a:5d:bf:a6:a7:97:96:7d:95:34:05:a7:75:7a:
05:60:72:70:dd:31:85:35:a1:e3:7a:68:5c:c5:19:
96:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:FF:4C:68:A4:FE:B9:E6:4D:67:CC:DF:EB:F6:3A:90:B8:3B:0B:93
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/P_9MaKT-ueZNZ8zf6_Y6kLg7C5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.167.255
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
21:93:ca:13:8c:c0:c4:ee:5b:14:39:64:d5:5e:ee:a3:d4:13:
52:86:3e:1e:c6:2d:e4:3a:22:c0:d3:99:59:f9:12:d0:29:da:
1f:e1:59:a0:a3:ed:52:8b:8d:63:a8:ce:2a:93:82:62:9e:32:
61:c2:d4:2c:1a:fa:b3:72:5b:83:a5:7c:f7:c5:97:d3:c6:1b:
69:5c:05:9c:71:3b:54:26:81:71:f2:47:f3:2c:df:c3:76:23:
a7:60:79:c4:36:39:03:51:f8:73:cc:f6:b0:f6:05:3e:08:4f:
49:cc:55:66:5b:e1:96:d4:ad:f3:54:5c:2b:f3:ca:64:bc:7d:
ee:28:0c:04:b5:38:eb:a8:0b:8c:67:11:31:0f:8d:64:8a:22:
3e:4a:29:73:dc:a4:81:ff:e3:7d:57:c3:2c:e9:25:49:39:fa:
1f:2a:1f:dc:de:42:d0:82:ec:4c:a0:df:29:4f:83:b7:8d:3d:
96:98:8a:c8:1c:89:09:e7:de:d6:9c:6d:99:72:e3:03:11:63:
a3:c0:b9:9e:d9:05:f3:4b:4e:53:fa:1f:5a:1c:f7:1f:75:7b:
79:f1:cb:34:27:5d:37:e9:4c:3b:bf:28:8f:87:5a:9d:7f:bf:
b0:b8:6e:ae:36:99:4c:26:4f:5c:86:37:0b:42:2c:5d:94:7b:
ed:29:55:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org