Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/UzPy1r0fXKVJcFe54g-GJnIwMGY.roa
File: UzPy1r0fXKVJcFe54g-GJnIwMGY.roa (raw, json)
Hash identifier: 0t0FFRruRUtnZKBpPoi7n7gFPzA6xFsPVLY0o8vMHsQ=
Subject key identifier: 53:33:F2:D6:BD:1F:5C:A5:49:70:57:B9:E2:0F:86:26:72:30:30:66
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C8BCDA1A991EBDE89418AE7782014010E
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/UzPy1r0fXKVJcFe54g-GJnIwMGY.roa
Signing time: Thu 21 Dec 2023 09:55:58 +0000
ROA not before: Thu 21 Dec 2023 09:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 62.72.182.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:cd:a1:a9:91:eb:de:89:41:8a:e7:78:20:14:01:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 21 09:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5333f2d6bd1f5ca5497057b9e20f862672303066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:91:55:b8:d8:90:ad:a7:3c:47:87:84:33:60:
91:49:e9:48:1c:92:2c:1f:df:9e:73:72:2c:b5:3e:
80:f1:44:23:ea:03:00:18:84:d9:91:82:3c:d7:25:
38:52:86:36:6f:9b:0a:6a:34:02:98:7d:16:af:93:
9f:b6:a3:12:09:19:41:37:73:8c:f2:4e:d1:fb:b2:
09:3c:f7:b9:14:35:e0:c4:08:28:63:53:5c:26:17:
a1:b1:7b:e4:b7:88:10:a3:88:6d:3d:83:19:c7:71:
81:c1:15:3b:33:e9:b4:0a:3a:bc:75:39:bc:f4:28:
15:ee:c4:f5:70:bb:1a:a6:a0:ed:7c:f8:78:31:ec:
ec:b4:83:74:93:c6:f9:e3:61:f1:6c:a8:9c:b4:59:
43:6d:75:7d:d6:6b:1d:30:6f:11:bb:5a:85:5c:53:
d5:d1:74:78:d2:0d:a5:e6:bd:ed:b8:d0:82:79:8a:
08:4b:e0:b7:de:a2:57:95:56:28:ab:73:ce:67:22:
a4:a5:44:eb:8b:9a:cc:7b:9d:32:e6:fe:64:06:03:
de:a8:3f:39:c7:ea:70:30:46:c6:9a:b6:09:3f:82:
81:52:1e:14:9a:43:13:03:ea:f6:ea:e5:54:8a:bf:
0b:11:67:4d:63:5c:17:95:8c:e1:46:39:c3:cd:07:
73:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:33:F2:D6:BD:1F:5C:A5:49:70:57:B9:E2:0F:86:26:72:30:30:66
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/UzPy1r0fXKVJcFe54g-GJnIwMGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.181.0-62.72.182.255
62.72.188.0/24
62.72.191.0/24
81.21.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c1:5a:0a:27:cb:1b:e5:e0:bf:d1:17:ef:57:0c:e1:c3:e5:
1e:bf:a3:01:b6:43:ba:56:55:b6:6d:c4:a5:78:06:cd:bc:43:
94:34:cc:31:2d:e8:f9:3d:b1:8e:a5:0a:e4:2e:f7:85:2f:b3:
c1:c6:65:b3:48:da:85:84:4a:a1:08:9d:a2:16:6a:17:2c:34:
7c:90:c9:1a:b7:84:02:ee:60:d6:44:05:a6:98:b7:5d:c0:d7:
c5:d3:53:15:d9:57:cd:e4:6c:9c:ff:c1:c8:5d:11:04:0f:02:
11:66:c0:f6:a6:7f:cc:07:ea:72:ee:e7:fe:74:e7:96:aa:a6:
7e:3f:5b:52:24:0d:32:c3:cc:ba:5c:4f:58:35:70:3b:6d:33:
bd:bc:d3:43:a6:dc:53:fc:21:c9:b1:00:f2:53:a9:cb:69:3d:
19:d0:92:1f:4e:5d:d9:6a:d1:0a:40:d9:db:78:91:15:9a:26:
31:08:23:55:a7:a8:ac:7c:9e:0b:44:b9:c5:7a:79:87:3c:a8:
49:61:b5:40:63:75:b9:6a:9c:0d:89:bf:83:09:fc:48:df:96:
bd:46:ca:c1:ac:cc:e0:d5:b6:57:cc:37:c1:46:1f:90:1a:cb:
73:7f:f4:47:9d:15:b6:5d:b5:38:09:41:c8:be:46:4a:40:e0:
91:5d:e1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org