Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Trfol5Nxtqj7dwU4r1PnKI3D7EA.roa
File: Trfol5Nxtqj7dwU4r1PnKI3D7EA.roa (raw, json)
Hash identifier: iZAsL/SjPr/NKsdZ4OQToNSLyTFpYlXvwDuaDufnqTg=
Subject key identifier: 4E:B7:E8:97:93:71:B6:A8:FB:77:05:38:AF:53:E7:28:8D:C3:EC:40
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B84668FF952D1DAE0A55B25449194D7B4
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Trfol5Nxtqj7dwU4r1PnKI3D7EA.roa
Signing time: Tue 31 Oct 2023 06:23:15 +0000
ROA not before: Tue 31 Oct 2023 06:23:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.164.0/22 maxlen: 22
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 05 Nov 2023 06:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:84:66:8f:f9:52:d1:da:e0:a5:5b:25:44:91:94:d7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 31 06:23:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eb7e8979371b6a8fb770538af53e7288dc3ec40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:07:9b:26:db:33:a0:46:3e:2c:2c:78:c4:c8:
c8:7d:35:e8:40:08:c0:3f:1f:e7:df:8a:4a:1f:26:
48:07:24:83:b1:5e:42:f0:f4:ea:32:71:d8:b4:17:
0d:4b:b8:2e:e9:fc:c1:55:7f:22:70:ed:53:94:1d:
e9:ed:1f:16:49:ad:07:cb:89:71:c8:d8:8e:84:86:
56:b2:17:8d:3c:39:56:56:ff:38:6c:a1:ea:2b:b9:
ca:90:bf:93:b0:d0:81:b8:14:79:a9:08:f0:b6:b2:
a2:54:da:03:7c:b2:0a:e0:cd:e2:6b:c5:8f:f8:32:
4e:ae:76:a7:2a:8b:c0:ee:eb:4a:ea:71:5d:7b:ba:
98:2f:59:45:ae:b7:6a:fd:52:91:1c:44:7b:71:b3:
f3:aa:16:62:85:f4:83:bb:2b:b8:5b:b2:c1:71:4a:
ad:71:d4:78:5e:7b:52:20:1e:f8:51:94:e1:5f:84:
37:42:ad:22:65:65:b7:24:de:e8:db:4e:21:20:0f:
d7:2e:7f:34:47:c6:8f:74:44:b0:f7:3b:83:dc:0a:
32:6d:c4:f9:a9:2b:f5:77:27:40:45:c9:c4:06:7c:
2b:26:b7:07:d2:6a:94:77:a9:9d:fa:4c:e7:bc:61:
ef:03:c0:c5:98:bf:a1:2b:09:ab:bc:2f:c5:d1:7f:
8d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B7:E8:97:93:71:B6:A8:FB:77:05:38:AF:53:E7:28:8D:C3:EC:40
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Trfol5Nxtqj7dwU4r1PnKI3D7EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
61:5c:2e:8e:e3:d3:23:a4:18:03:d9:d6:ef:b7:88:bb:83:36:
ee:55:7a:33:8c:d1:2a:4b:4a:da:c7:d2:bf:eb:bf:e1:23:61:
40:48:ad:09:2a:98:31:10:89:7b:92:ef:03:3e:e0:c7:f9:72:
b0:4c:49:ea:1d:20:66:42:36:13:c8:09:8e:59:67:cc:f3:7f:
2d:da:75:a1:74:fa:61:21:58:a9:92:5c:b8:12:be:d6:ed:4e:
db:16:24:1c:e6:7e:f4:1d:fd:f5:3d:ed:31:75:6c:28:4e:e5:
05:7a:44:5a:b0:ac:80:c7:da:93:3f:01:79:68:2a:26:af:82:
27:a5:85:58:e4:d8:1e:bc:22:0f:f8:28:ec:34:a8:ae:48:33:
27:a0:ca:a4:34:fd:f3:46:4b:4c:0e:dc:0c:3e:c9:64:f4:08:
51:53:ee:55:17:f6:c9:71:41:a7:fe:ad:4d:13:49:37:8a:7a:
76:5f:b6:7f:b0:e2:91:5f:f8:52:c1:83:09:f4:41:32:d1:de:
a0:60:50:42:26:05:be:68:f0:41:c0:a3:cd:2a:0b:42:f6:73:
54:4f:95:45:fb:2e:6e:9c:79:13:ab:a5:0f:32:80:cd:88:f7:
07:30:69:d8:91:d5:16:93:63:14:0c:cf:aa:e3:7d:a2:6b:bc:
be:fd:d8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org