Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/TFJMnwJsMoE78v3MWUcRGlEAgTo.roa
File: TFJMnwJsMoE78v3MWUcRGlEAgTo.roa (raw, json)
Hash identifier: DyCW4dIJNjSrOUboKPmmHoll98QLgbNsm0ImyuCQdAU=
Subject key identifier: 4C:52:4C:9F:02:6C:32:81:3B:F2:FD:CC:59:47:11:1A:51:00:81:3A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018A840144BB817D9C1EC13C3D70EFED19F8
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/TFJMnwJsMoE78v3MWUcRGlEAgTo.roa
Signing time: Mon 11 Sep 2023 11:29:50 +0000
ROA not before: Mon 11 Sep 2023 11:29:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 62.72.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Dec 2023 07:23:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:01:44:bb:81:7d:9c:1e:c1:3c:3d:70:ef:ed:19:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 11 11:29:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c524c9f026c32813bf2fdcc5947111a5100813a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:be:30:76:0d:67:b2:8f:39:26:3f:ad:82:5e:
ae:e4:d3:2f:4d:03:15:58:c2:91:5a:e8:80:3e:85:
36:68:94:64:0b:8a:c6:6a:b6:df:a8:7a:7f:ea:f4:
44:14:01:ec:42:fc:11:df:30:77:0f:5d:82:d8:d2:
10:f3:20:4a:52:17:72:78:6c:c0:b1:55:9e:dd:e9:
a7:22:01:ea:42:67:86:7a:72:92:8b:d5:8e:6f:a5:
95:38:51:e0:b4:59:f2:cd:73:03:15:82:bb:5a:4e:
36:ef:59:91:ce:3d:af:d6:1c:1a:1a:45:58:89:45:
54:1d:29:04:3d:2e:91:54:43:4f:2c:5d:9e:bc:be:
51:7e:16:14:8b:3e:06:5d:ac:5c:0e:b1:ed:8e:98:
2d:7f:71:83:ce:92:af:75:91:f1:bd:ea:12:f9:13:
ad:d6:8c:bd:38:02:03:74:0c:3d:3e:30:58:ec:1b:
6d:fa:f4:0f:68:46:ac:f2:52:5d:64:dd:0a:64:d0:
ef:9c:1c:e4:cd:47:88:bc:4c:af:8b:07:98:dd:4e:
da:fd:50:57:fd:c7:be:a3:e9:69:97:42:87:51:61:
69:fb:fa:36:42:1b:89:c2:9b:1a:3f:b1:10:74:eb:
06:b6:2d:e5:38:15:d9:1d:cf:f3:7e:b9:b0:18:02:
b8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:52:4C:9F:02:6C:32:81:3B:F2:FD:CC:59:47:11:1A:51:00:81:3A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/TFJMnwJsMoE78v3MWUcRGlEAgTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.188.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:22:06:e4:d9:85:e9:e3:55:98:ef:50:06:41:51:82:29:df:
72:a0:e7:2c:af:f7:76:98:e8:3c:cd:cc:3c:35:5b:5a:7a:15:
16:cd:2b:f8:65:62:80:08:29:f0:c9:dd:86:25:93:84:e5:80:
81:f0:35:13:f3:fe:bd:c3:c2:2f:fb:e0:77:26:5f:99:51:9e:
74:dc:0f:e4:00:26:bb:7a:5d:4b:70:e4:d3:bf:e2:a0:2a:25:
66:7f:95:d6:45:25:29:87:ba:f9:15:4a:d5:25:92:f6:ad:c3:
2f:29:6d:fb:4b:f1:fa:b9:c0:9f:19:ad:1f:6e:82:72:a0:8a:
bd:2b:d9:1b:67:45:5f:27:e0:14:3d:b2:f1:aa:82:3a:ce:6b:
49:25:b6:6a:92:7d:70:fe:70:7c:05:d4:20:e5:6d:35:17:52:
76:28:f0:9d:01:a7:69:c2:6c:1e:7a:11:46:7e:c5:67:8a:e8:
1a:1e:20:f7:4f:ab:47:72:5f:08:41:f0:fe:bd:53:90:8c:c0:
0e:5d:85:1a:4b:60:1e:e5:1d:d5:da:99:d3:aa:09:47:77:9b:
65:17:b1:15:14:30:76:84:a3:bd:67:a5:f6:a8:9c:cb:e1:64:
25:50:c1:b4:4d:cc:08:5a:ea:2f:a4:ea:76:cb:aa:5f:3d:7c:
57:64:ab:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org