Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/VNrsglw_PHnwaYOJ0UN4ZMeCja8.roa
File: VNrsglw_PHnwaYOJ0UN4ZMeCja8.roa (raw, json)
Hash identifier: qOUswRfDLxiTCOMX99WlnZLNJGBtgKX0gXwxo/qhKR8=
Subject key identifier: 54:DA:EC:82:5C:3F:3C:79:F0:69:83:89:D1:43:78:64:C7:82:8D:AF
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C4E161B7987E98A783612CA6D73947CBC
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/VNrsglw_PHnwaYOJ0UN4ZMeCja8.roa
Signing time: Sat 09 Dec 2023 10:18:40 +0000
ROA not before: Sat 09 Dec 2023 10:18:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 10 Dec 2023 11:50:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4e:16:1b:79:87:e9:8a:78:36:12:ca:6d:73:94:7c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 9 10:18:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54daec825c3f3c79f0698389d1437864c7828daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:71:66:ba:5d:49:5b:30:55:8e:30:50:f6:9a:
88:ae:ed:26:4f:44:bd:71:da:43:82:cc:40:59:de:
d5:c8:b5:8e:8f:15:6f:48:b0:01:ca:e7:07:52:02:
c7:b8:94:f2:03:26:d7:0b:f6:73:a7:96:4c:33:7f:
81:e3:f0:3a:e9:c7:da:df:a1:e4:bd:af:d1:6e:70:
fc:28:22:94:d7:32:ee:e5:40:3d:54:4d:72:9a:b6:
4d:8a:64:ef:a5:72:43:19:d8:b4:d1:29:08:72:12:
26:f4:9b:6f:1d:0d:e7:c1:1c:eb:7d:ac:07:8a:bc:
6d:42:ae:8f:ed:9e:fb:a3:5c:b4:90:0f:cd:2e:5f:
64:4c:60:3c:10:13:7c:31:d7:98:5f:c2:be:e2:f9:
91:f8:2a:68:c9:75:97:fb:d7:f2:69:18:bb:f7:0d:
4a:9b:42:7c:65:9b:2b:62:04:a5:16:ed:30:07:e9:
15:48:94:57:98:75:3b:ca:b8:3f:fe:06:8d:50:92:
5d:5a:1d:d1:30:5b:92:61:7b:29:f6:9d:c3:9f:b0:
4e:b7:4f:df:c0:40:9b:df:26:b6:a4:aa:5d:b9:0e:
34:62:b2:cb:7c:db:b5:f4:1d:6f:6c:81:47:ff:78:
47:d8:6b:d0:ab:5c:7a:3f:6a:5e:4e:86:31:eb:f6:
89:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DA:EC:82:5C:3F:3C:79:F0:69:83:89:D1:43:78:64:C7:82:8D:AF
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/VNrsglw_PHnwaYOJ0UN4ZMeCja8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.180.0/23
62.72.184.0/22
62.72.189.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
85:bb:ec:35:d3:cf:bc:7f:c8:65:73:6c:17:36:9a:c2:af:70:
e4:37:71:d5:63:b4:1e:de:bf:ad:0e:31:23:a6:85:40:7d:fe:
f6:60:b5:40:aa:5d:45:eb:3a:48:a8:7d:d4:e0:8f:c4:1c:a4:
47:74:9f:28:71:c6:c2:10:33:56:d7:78:1d:aa:e9:90:3a:c6:
83:1c:c0:5f:a2:5e:4b:3e:63:1d:8e:08:49:a8:81:95:3b:02:
dc:38:89:59:e8:34:ea:ca:80:29:9c:99:e5:63:ff:03:2c:63:
32:c1:81:43:03:4c:49:86:00:d4:e8:f3:0d:b4:9b:44:fb:65:
52:68:6a:10:3d:09:9c:c8:67:df:90:61:12:01:5c:c7:ae:0d:
c6:ee:50:72:5d:db:a1:9c:df:6b:cd:b9:68:d3:3f:11:0f:7c:
a1:4b:de:9d:00:8e:ca:10:4e:c6:2d:be:68:09:5a:b1:07:de:
4c:de:c0:eb:4d:49:ac:04:0d:c3:b2:cf:05:04:40:89:1a:10:
b7:87:ce:9a:87:dd:e1:6d:b1:38:1b:10:ed:bb:82:6a:53:84:
e6:ed:46:45:f8:c4:38:94:ac:8e:6c:55:1e:9b:0f:2f:9d:5d:
70:dc:42:eb:73:76:dc:67:e2:7f:95:19:5d:02:8a:d0:0b:66:
dc:9c:6f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org