Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/_zfSCDfYFlY9VRlR4iKOqCHVg1A.roa
File: _zfSCDfYFlY9VRlR4iKOqCHVg1A.roa (raw, json)
Hash identifier: v0z1PXgRv8gQMnUfTDlvqLn3Jf6ebLg3KRlJtMIBAwI=
Subject key identifier: FF:37:D2:08:37:D8:16:56:3D:55:19:51:E2:22:8E:A8:21:D5:83:50
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BC9082A7CDB87C7C6D29F7B7D12BD2F0E
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/_zfSCDfYFlY9VRlR4iKOqCHVg1A.roa
Signing time: Mon 13 Nov 2023 14:13:57 +0000
ROA not before: Mon 13 Nov 2023 14:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57974
IP address blocks: 62.72.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Nov 2023 19:43:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:08:2a:7c:db:87:c7:c6:d2:9f:7b:7d:12:bd:2f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 13 14:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff37d20837d816563d551951e2228ea821d58350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4b:5c:6c:80:b5:c8:ea:85:22:af:dd:e6:ad:
8f:3c:0d:f4:38:85:fa:70:78:27:a5:c5:e1:b6:da:
3b:60:e0:a2:48:55:24:f5:90:ac:d3:9b:fe:3f:a3:
d2:1b:bd:54:66:3f:1a:8f:ae:db:98:07:81:c3:fa:
0a:df:de:b2:0d:4a:81:ee:89:eb:e3:b9:96:77:06:
c1:ff:cd:9c:05:90:fc:5b:6e:d4:88:60:57:45:b6:
e2:a5:a0:b5:b6:f6:8e:54:35:0b:13:b3:0e:4d:c9:
6b:f1:66:8d:82:60:ac:65:ff:d3:2c:58:d7:a0:43:
14:43:fe:68:50:a8:69:b1:16:b8:7b:f2:d9:2a:b6:
db:08:f2:26:e8:d8:49:a3:21:ee:46:75:59:be:1c:
b5:c3:1c:88:46:4c:19:f1:dc:99:18:7d:d0:dc:16:
a4:34:36:77:c7:03:44:0c:b1:48:48:f1:4b:7e:53:
b1:57:79:ce:cf:67:dd:6b:63:9b:01:0b:88:e0:1a:
b6:ea:75:97:a6:72:36:45:4e:ae:fa:a9:9a:3b:8c:
31:62:0d:17:07:a6:62:e6:c5:6f:bc:a1:9e:97:09:
2a:bd:e6:d0:fa:4a:be:3e:ad:d6:49:2a:3d:65:3f:
8e:79:f5:47:6d:e8:70:15:fe:c0:ad:0f:91:fd:1f:
c6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:37:D2:08:37:D8:16:56:3D:55:19:51:E2:22:8E:A8:21:D5:83:50
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/_zfSCDfYFlY9VRlR4iKOqCHVg1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.181.0/24
Signature Algorithm: sha256WithRSAEncryption
29:ec:39:73:bc:9b:90:5e:2c:5f:46:0e:31:8a:63:db:95:72:
26:da:21:1d:26:d7:24:35:8a:ad:33:a2:7f:fb:9c:94:57:a2:
07:63:eb:66:3c:d6:f4:21:f8:ea:c3:09:63:7d:64:61:cc:0f:
fd:36:e5:d0:f3:6c:45:eb:97:73:d2:e2:f3:ab:7e:a5:c9:01:
9b:50:15:2a:1f:36:93:fc:67:5e:ac:bf:ff:73:1f:20:8f:92:
9a:4d:50:01:2d:71:72:43:1a:3e:af:e6:74:a3:aa:cd:e5:22:
47:94:9c:3d:0b:4c:8a:12:28:87:08:c1:4b:e1:33:5d:f5:c6:
2a:78:58:41:8d:3a:01:46:91:80:48:18:2a:94:68:37:4b:0c:
3a:0c:da:5f:34:46:4d:40:52:64:05:76:eb:67:be:39:1f:21:
18:87:98:e5:7f:96:29:7f:26:98:f1:44:ac:31:cb:16:41:ab:
d3:2a:88:1e:7a:b4:78:4c:a4:32:ff:de:52:3c:a6:56:27:e5:
b0:f7:f3:32:ad:94:9f:c6:2f:1a:6d:15:5d:0a:57:08:25:7b:
95:85:34:7a:c6:e1:b5:e9:90:01:01:a8:b3:89:2c:b8:37:db:
6b:ac:4d:98:02:be:c4:c1:f3:88:52:aa:f9:46:10:77:17:e6:
dc:88:a3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org