Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/YTAySajZbyhH90sA4JwJnH8Su58.roa
File: YTAySajZbyhH90sA4JwJnH8Su58.roa (raw, json)
Hash identifier: XzPtaX5t2b7ZJ/wo5AphM6JdYGXkb3jCc0rbxKVfB50=
Subject key identifier: 61:30:32:49:A8:D9:6F:28:47:F7:4B:00:E0:9C:09:9C:7F:12:BB:9F
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018D173F80DA39AFC2DB88536868963C1F13
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/YTAySajZbyhH90sA4JwJnH8Su58.roa
Signing time: Wed 17 Jan 2024 11:47:34 +0000
ROA not before: Wed 17 Jan 2024 11:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.164.0/23 maxlen: 23
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 08:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:3f:80:da:39:af:c2:db:88:53:68:68:96:3c:1f:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 17 11:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61303249a8d96f2847f74b00e09c099c7f12bb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dd:bd:e0:9d:8e:54:54:56:55:4c:76:ac:bc:
c8:5d:af:cf:b0:8b:86:94:4a:8f:da:36:1b:49:82:
ee:45:09:69:c1:99:05:95:89:1c:f6:5f:d4:c4:44:
ce:f7:9f:d6:95:f1:f8:c8:73:77:0e:e4:c1:ab:42:
35:00:5a:d3:6b:2d:b0:76:c1:07:4b:6f:74:e0:ad:
bd:b8:0f:03:c0:d6:9b:8c:12:4d:4a:fd:a5:01:4e:
44:d9:27:c1:57:3a:0a:96:fe:9e:ac:00:8b:d9:ea:
fc:80:a2:ee:bd:c8:6b:26:67:33:d6:df:c0:76:c2:
eb:97:83:dc:73:fa:68:b1:4e:e8:0e:99:9c:6f:76:
4e:45:2b:84:88:eb:b7:81:11:b1:a1:51:f5:9a:3b:
be:74:87:fc:63:60:6b:c5:b8:52:da:af:13:36:8c:
d6:6d:62:7d:68:da:33:a5:74:f4:90:cf:51:cc:5c:
d2:64:95:1b:ee:5b:f1:4b:92:eb:3f:01:d6:58:ca:
fd:e7:fb:aa:10:8a:03:67:80:4a:9a:20:3b:53:6e:
30:98:60:73:ad:9e:9c:81:32:86:0f:77:e2:ee:1a:
98:45:e2:64:6b:74:1d:16:55:1a:f1:18:70:d6:b7:
0d:1c:bb:40:dc:4f:ae:49:5a:91:e4:a6:f1:93:19:
7c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:30:32:49:A8:D9:6F:28:47:F7:4B:00:E0:9C:09:9C:7F:12:BB:9F
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/YTAySajZbyhH90sA4JwJnH8Su58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.167.255
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a4:a0:c4:19:e0:b2:e3:09:17:39:78:96:e1:75:97:a4:d1:
4a:27:b5:46:33:8a:3f:af:54:b2:5e:21:5b:51:55:ba:1e:0b:
a3:36:c2:db:5e:16:23:02:11:0f:76:4c:4a:11:8d:3b:d6:b8:
cf:86:43:d3:9f:db:3f:9b:dd:8d:1d:58:9a:79:11:4f:2a:bd:
17:34:61:77:a0:6d:75:b8:73:f8:fa:15:85:bf:c8:72:c6:92:
ba:89:0d:c7:98:68:44:c7:a5:cf:1e:85:b3:7e:77:64:d6:0b:
f0:51:f5:e5:5a:5f:62:e0:33:15:96:ef:d5:75:da:ad:1e:9a:
88:d9:34:44:df:18:13:77:4b:84:fc:d7:f0:cf:ee:30:ec:22:
c4:31:d5:9b:08:b1:53:36:01:ff:d7:2c:a6:1c:01:c8:8f:0e:
4b:e9:77:63:aa:c8:81:7f:98:6f:11:8b:ff:2d:16:8e:6c:3f:
93:fe:b3:9c:3e:1c:80:5d:1b:35:96:3a:00:d8:d3:ba:8a:6e:
8f:f3:bc:e9:f6:ef:b6:e5:0d:98:a7:fb:ca:87:b6:44:35:f4:
2f:98:9e:d7:75:3a:0f:93:d3:63:5c:58:5a:cd:3e:7e:de:44:
04:bd:22:82:64:e8:d2:a8:c8:18:73:23:d8:15:e4:9f:b8:8e:
b6:a5:78:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org