Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/TBCN34Le_V6wk7eZhuJRiOFqzrk.roa
File: TBCN34Le_V6wk7eZhuJRiOFqzrk.roa (raw, json)
Hash identifier: NUMyAn4kb07BpNnioRErUyRNcLPyr8aSVpsSgnRzANk=
Subject key identifier: 4C:10:8D:DF:82:DE:FD:5E:B0:93:B7:99:86:E2:51:88:E1:6A:CE:B9
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01890608F3E0684975180EB1F1A1D53698D8
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/TBCN34Le_V6wk7eZhuJRiOFqzrk.roa
Signing time: Thu 29 Jun 2023 07:23:17 +0000
ROA not before: Thu 29 Jun 2023 07:23:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.163.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 16:04:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:06:08:f3:e0:68:49:75:18:0e:b1:f1:a1:d5:36:98:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 29 07:23:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c108ddf82defd5eb093b79986e25188e16aceb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8a:5a:e0:bd:56:44:96:43:1e:cc:b8:1f:c6:
df:02:6e:ef:84:b0:67:26:dd:20:53:b1:7e:9a:a5:
95:86:e7:6d:3a:47:9e:75:a9:ba:ed:9e:ae:dd:21:
a0:d2:40:89:30:12:10:22:fa:7c:8b:7e:54:f4:57:
7d:fe:69:0a:c9:86:28:dc:63:96:42:07:50:9c:95:
19:e6:a1:02:8f:6c:b3:08:53:80:2e:fe:5b:f1:e6:
53:38:24:1e:28:04:27:b0:95:c1:fa:be:fa:36:9c:
5e:7c:52:4e:cf:49:74:dd:44:a6:24:7a:5f:3e:4f:
91:19:df:9f:f1:20:e1:48:a1:fb:ba:c8:92:2a:a9:
3f:ab:08:36:3e:35:eb:7a:01:4b:d3:1e:41:84:85:
e7:44:5f:7a:26:97:90:26:ed:f7:74:b5:d2:fa:5a:
33:6f:ec:f3:ad:df:78:69:e3:ec:e1:7d:c2:58:50:
1e:3d:47:69:8e:98:93:e3:e0:a7:f1:89:14:03:96:
a2:10:2e:84:9b:82:e9:6a:b7:5f:64:65:2c:db:c1:
e4:9d:3f:aa:0a:7e:38:7d:9b:82:01:ce:ab:a8:cf:
e6:4a:18:0d:b1:ec:0e:b9:5d:c0:55:75:7b:ef:a9:
0c:a2:5b:2f:5e:37:0e:86:1f:03:4f:d6:c2:ec:64:
6e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:10:8D:DF:82:DE:FD:5E:B0:93:B7:99:86:E2:51:88:E1:6A:CE:B9
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/TBCN34Le_V6wk7eZhuJRiOFqzrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.169.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.184.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.12.0/22
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
86:03:2e:b2:27:20:d7:35:a1:07:82:83:5e:aa:ef:84:c3:77:
a1:d7:92:5f:25:c2:00:ab:10:e4:e1:93:ed:e3:15:b7:a1:ee:
1c:c4:e4:30:50:41:df:ae:d8:45:da:f2:ae:cf:4a:e7:7d:ca:
93:36:6f:c6:79:04:3e:8d:e9:e5:dc:15:94:63:7d:f3:f5:9e:
ff:3f:aa:e9:69:d0:1b:35:94:b7:2f:d5:19:7f:78:e4:2b:1d:
cd:41:e5:70:84:6e:07:aa:b5:c0:66:74:a1:f4:77:d8:4c:9e:
d6:9a:16:d0:7b:28:01:82:f4:5c:66:b0:49:3e:37:2d:df:c1:
b3:a2:b1:25:90:4c:d9:ec:35:c5:c0:fc:c1:f6:cb:36:74:8b:
e9:80:4b:ec:51:dd:9d:54:2a:e3:21:83:80:e9:4c:fd:65:37:
5b:aa:8e:ab:31:a3:05:d4:8d:b0:17:5d:fc:e7:c4:be:1e:40:
4d:e4:ee:cd:26:75:60:ea:a0:79:e9:9e:73:de:27:9d:35:79:
0a:1b:86:f7:81:f7:73:cb:1b:9f:0b:6f:80:14:4f:26:5a:17:
3f:26:63:35:a7:85:61:f1:7d:aa:79:82:61:85:ff:2f:5e:a0:
10:76:ba:c3:3d:7f:e7:cb:39:9d:28:21:08:bd:55:b0:e9:37:
93:c2:e2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org