Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/XeXa3-XZtbnj__xlJr409w4MyKg.roa
File: XeXa3-XZtbnj__xlJr409w4MyKg.roa (raw, json)
Hash identifier: x6t8mooEXyH/Txc76ETEU5cX6VnwPMzRO8EbjwkDLOg=
Subject key identifier: 5D:E5:DA:DF:E5:D9:B5:B9:E3:FF:FC:65:26:BE:34:F7:0E:0C:C8:A8
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C1EE2AF001967CEF6D1D2A5AC72EFFC60
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/XeXa3-XZtbnj__xlJr409w4MyKg.roa
Signing time: Thu 30 Nov 2023 06:20:21 +0000
ROA not before: Thu 30 Nov 2023 06:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.174.0/23 maxlen: 23
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.191.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 06:58:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1e:e2:af:00:19:67:ce:f6:d1:d2:a5:ac:72:ef:fc:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 30 06:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5de5dadfe5d9b5b9e3fffc6526be34f70e0cc8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:66:d8:8b:b4:cd:1a:ad:2b:43:6e:41:15:cb:
eb:82:fa:f0:36:6a:fc:8e:60:53:a3:c6:af:c3:74:
34:b6:41:da:1a:fd:27:fe:91:a5:be:b0:8f:7e:45:
89:3e:06:63:63:1d:20:c3:dd:8c:d3:6e:ad:c6:54:
44:61:e5:1d:f7:72:f5:29:5c:52:74:10:e9:0a:64:
95:38:43:38:b6:a7:6a:07:0d:3e:60:2b:4c:d4:18:
a1:41:20:bd:52:e5:78:a8:ae:c9:30:b3:e4:30:07:
fd:00:ed:d7:9b:84:99:ba:f1:90:6a:50:85:3d:e6:
75:7c:1d:f6:c6:03:0e:2d:93:4d:81:05:57:7a:ae:
64:84:20:a7:72:89:65:15:37:13:21:64:c3:55:66:
2b:41:a2:8f:ef:65:34:68:37:c0:d3:5f:f0:eb:b2:
3e:e3:c0:58:b0:66:b4:4f:ad:e9:c9:f9:b1:07:75:
5c:7b:87:e6:50:6a:78:4d:39:fe:20:7e:8a:e4:86:
bd:40:5b:b9:b2:75:96:b0:87:68:ba:09:12:36:5f:
ac:a5:fa:71:26:85:8c:94:ae:f3:7e:fc:4e:4e:57:
47:94:88:97:48:62:88:b7:be:18:ee:78:3e:dc:5a:
32:82:c7:1b:c2:19:2b:51:0d:d9:eb:2a:30:0c:70:
c9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E5:DA:DF:E5:D9:B5:B9:E3:FF:FC:65:26:BE:34:F7:0E:0C:C8:A8
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/XeXa3-XZtbnj__xlJr409w4MyKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.180.0/23
62.72.184.0/22
62.72.189.0/24
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:dd:8a:38:4a:a6:76:bb:d5:9f:8b:49:c2:d9:96:b6:09:1d:
4b:f2:2c:31:18:3a:77:f7:91:a4:6a:85:9f:fe:03:b4:e5:87:
76:1a:a1:31:f4:4e:73:73:db:bd:af:12:5a:d9:6b:9c:c7:57:
21:41:be:b0:7b:a4:8f:cc:fd:0a:9d:74:c5:cf:30:a8:14:b6:
20:91:ed:03:b8:0e:9d:ba:e4:7a:ab:7c:c3:14:b1:ab:aa:35:
93:68:e1:29:92:4e:f2:cd:5b:6f:33:30:3c:a1:3c:66:24:c4:
0f:9e:df:c0:3b:77:47:73:23:c3:3a:2c:e4:cc:22:fa:41:b3:
fd:dc:92:de:d9:82:52:87:b6:1f:a5:20:0e:14:0b:5b:41:95:
1d:6d:d9:7a:11:a6:c8:3b:0c:27:cb:69:f4:74:eb:db:41:fc:
21:8e:ea:8d:d7:df:33:6f:68:1a:f1:bc:30:ae:ed:84:33:3a:
c1:98:c6:9a:67:ce:80:d1:49:c8:5c:aa:90:6d:22:a3:05:41:
4f:f1:d6:26:0b:e1:b0:0f:fe:a0:28:0c:14:a6:ec:38:e3:bd:
f7:1e:2e:a3:93:19:0f:3f:e2:ad:c8:24:3f:ad:dc:52:17:2b:
60:cc:37:50:cc:cd:fc:80:da:84:f9:18:2d:ad:b7:ad:dc:ba:
bc:00:72:f3
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYwe4q8AGWfO9tHSpaxy7/xgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMTMwMDYyMDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGU1ZGFkZmU1ZDliNWI5ZTNmZmZjNjUyNmJlMzRmNzBlMGNjOGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWbYi7TNGq0rQ25BFcvrgvrwNmr8
jmBTo8avw3Q0tkHaGv0n/pGlvrCPfkWJPgZjYx0gw92M026txlREYeUd93L1KVxS
dBDpCmSVOEM4tqdqBw0+YCtM1BihQSC9UuV4qK7JMLPkMAf9AO3Xm4SZuvGQalCF
PeZ1fB32xgMOLZNNgQVXeq5khCCncollFTcTIWTDVWYrQaKP72U0aDfA01/w67I+
48BYsGa0T63pyfmxB3Vce4fmUGp4TTn+IH6K5Ia9QFu5snWWsIdougkSNl+spfpx
JoWMlK7zfvxOTldHlIiXSGKIt74Y7ng+3FoygscbwhkrUQ3Z6yowDHDJoQIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFF3l2t/l2bW54//8ZSa+NPcODMioMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvWGVYYTMtWFp0Ym5qX194bEpyNDA5dzRNeUtnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgMAwDBAE+SKID
BAI+SKgDBAE+SK4DBAE+SLQDBAI+SLgDBAA+SL0DBAA+SL8wDAMEAVEVAgMEA1EV
ADAMAwQBURUKAwQEURUAAwQAsDkzAwQAsDk1AwQBsDk6AwQAsDk/MA0GCSqGSIb3
DQEBCwUAA4IBAQA63Yo4SqZ2u9Wfi0nC2Za2CR1L8iwxGDp395GkaoWf/gO05Yd2
GqEx9E5zc9u9rxJa2Wucx1chQb6we6SPzP0KnXTFzzCoFLYgke0DuA6duuR6q3zD
FLGrqjWTaOEpkk7yzVtvMzA8oTxmJMQPnt/AO3dHcyPDOizkzCL6QbP93JLe2YJS
h7YfpSAOFAtbQZUdbdl6EabIOwwny2n0dOvbQfwhjuqN198zb2ga8bwwru2EMzrB
mMaaZ86A0UnIXKqQbSKjBUFP8dYmC+GwD/6gKAwUpuw44733Hi6jkxkPP+KtyCQ/
rdxSFytgzDdQzM38gNqE+Rgtrbet3Lq8AHLz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org