Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Z7QpXPS3Tj-Fttv_bJcSQS_eRys.roa
File: Z7QpXPS3Tj-Fttv_bJcSQS_eRys.roa (raw, json)
Hash identifier: 6ijnc8RYoLweaL9RX4jg6V04JmRAU4G5u6aThIP9Mus=
Subject key identifier: 67:B4:29:5C:F4:B7:4E:3F:85:B6:DB:FF:6C:97:12:41:2F:DE:47:2B
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0187FF907504D7A0D9132BA74D741D375F54
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Z7QpXPS3Tj-Fttv_bJcSQS_eRys.roa
Signing time: Tue 09 May 2023 08:11:09 +0000
ROA not before: Tue 09 May 2023 08:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 62.72.173.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 07:47:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:90:75:04:d7:a0:d9:13:2b:a7:4d:74:1d:37:5f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: May 9 08:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67b4295cf4b74e3f85b6dbff6c9712412fde472b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:eb:bb:7a:57:7c:79:54:6e:74:29:6e:d1:
29:05:83:b4:e8:2c:30:4b:f2:89:1a:3a:05:8c:7d:
9d:cc:cc:f4:0a:7a:38:87:b0:16:43:77:c0:c7:57:
39:9c:f5:5a:87:d1:d2:47:c1:ab:89:fb:f6:1c:40:
a8:40:79:9a:b1:9e:47:ab:07:d9:e2:80:3e:e4:3c:
f6:36:d9:d1:97:1d:1c:aa:25:24:2d:84:6c:f7:3e:
bd:48:b5:b9:28:82:b4:d9:b0:3e:fb:45:7e:b0:33:
66:62:2b:22:dd:b9:1e:fa:30:67:dd:14:e4:8b:2a:
c8:8d:d8:3c:cd:c9:a5:2c:8e:19:a3:ee:6a:e8:52:
77:8c:56:e9:fb:2c:5c:55:6b:70:74:f5:d4:80:a4:
c4:5e:e5:a6:a9:7f:2d:f2:5e:b3:39:f2:16:6b:7f:
74:79:15:60:0a:8b:d0:79:29:8c:d0:1e:17:ba:d8:
dd:a1:05:e3:bb:b1:9f:98:83:34:bf:4e:d7:96:d6:
b9:e4:71:9b:eb:d3:4a:13:d4:aa:eb:d2:56:fb:b1:
10:df:3d:8f:dc:43:f1:b2:93:f0:bf:ed:6c:11:a0:
e1:69:fe:18:7a:aa:d5:7d:9d:16:33:ae:4d:6c:10:
50:1e:b1:49:10:72:dc:58:a8:72:12:77:11:63:32:
be:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B4:29:5C:F4:B7:4E:3F:85:B6:DB:FF:6C:97:12:41:2F:DE:47:2B
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Z7QpXPS3Tj-Fttv_bJcSQS_eRys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.173.0/24
176.57.58.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:3b:92:ec:64:7c:6c:e4:88:9f:b2:e7:b8:7d:dd:aa:96:90:
06:ee:63:40:45:2e:33:65:de:7f:4f:79:e9:38:c2:59:77:a5:
ca:0a:f7:3d:a0:8b:8e:33:c0:6b:08:4f:5a:23:e4:cc:f2:08:
a7:a7:1b:aa:1c:6c:6f:9f:e0:f4:36:59:82:d2:ba:21:3d:3a:
e2:e0:d5:2e:ab:c4:1a:b1:f8:1b:34:21:b6:e1:53:86:72:1f:
71:43:ca:72:3e:5c:e3:8b:a5:3c:f7:c8:10:dd:c0:d4:6c:36:
2b:1f:8c:0f:f9:74:b7:6d:fb:f9:af:1c:aa:b9:45:ef:03:dd:
fb:b5:7c:31:10:76:fe:5a:4a:e5:54:cb:75:0c:55:bc:e5:56:
ef:d8:97:be:58:83:da:50:41:c5:36:2e:2e:ac:f0:86:19:18:
a1:0a:04:de:40:a8:6d:f0:c9:39:d2:e3:3f:33:4c:fb:58:27:
c2:21:15:5f:c7:a3:73:c1:cb:5f:4a:a4:44:1b:c6:d1:5c:a6:
b5:ed:06:e2:ea:55:ee:bb:ab:05:8d:a4:cd:b4:a6:c8:6d:b2:
b7:38:28:12:03:79:da:aa:2c:15:d8:79:53:4e:e0:14:3a:2f:
76:c6:66:a3:e5:46:0a:a5:f2:0e:76:86:79:f9:83:b2:5a:22:
c1:d9:48:2c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYf/kHUE16DZEyunTXQdN19UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwNTA5MDgxMTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2I0Mjk1Y2Y0Yjc0ZTNmODViNmRiZmY2Yzk3MTI0MTJmZGU0NzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSbru3pXfHlUbnQpbtEpBYO06Cww
S/KJGjoFjH2dzMz0Cno4h7AWQ3fAx1c5nPVah9HSR8Grifv2HECoQHmasZ5HqwfZ
4oA+5Dz2NtnRlx0cqiUkLYRs9z69SLW5KIK02bA++0V+sDNmYisi3bke+jBn3RTk
iyrIjdg8zcmlLI4Zo+5q6FJ3jFbp+yxcVWtwdPXUgKTEXuWmqX8t8l6zOfIWa390
eRVgCovQeSmM0B4XutjdoQXju7GfmIM0v07Xlta55HGb69NKE9Sq69JW+7EQ3z2P
3EPxspPwv+1sEaDhaf4YeqrVfZ0WM65NbBBQHrFJEHLcWKhyEncRYzK+XwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGe0KVz0t04/hbbb/2yXEkEv3kcrMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvWjdRcFhQUzNUai1GdHR2X2JKY1NRU19lUnlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPkitAwQB
sDk6MA0GCSqGSIb3DQEBCwUAA4IBAQCuO5LsZHxs5Iifsue4fd2qlpAG7mNARS4z
Zd5/T3npOMJZd6XKCvc9oIuOM8BrCE9aI+TM8ginpxuqHGxvn+D0NlmC0rohPTri
4NUuq8QasfgbNCG24VOGch9xQ8pyPlzji6U898gQ3cDUbDYrH4wP+XS3bfv5rxyq
uUXvA937tXwxEHb+WkrlVMt1DFW85Vbv2Je+WIPaUEHFNi4urPCGGRihCgTeQKht
8Mk50uM/M0z7WCfCIRVfx6NzwctfSqREG8bRXKa17Qbi6lXuu6sFjaTNtKbIbbK3
OCgSA3naqiwV2HlTTuAUOi92xmaj5UYKpfIOdoZ5+YOyWiLB2Ugs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org