Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/aCots3QRqaX9-Oz30eeVt6aDXVY.roa
File: aCots3QRqaX9-Oz30eeVt6aDXVY.roa (raw, json)
Hash identifier: zV8VZ0FKPZOVsEYxt+md4zsbvVnWYx2066qOJS5jvCc=
Subject key identifier: 68:2A:2D:B3:74:11:A9:A5:FD:F8:EC:F7:D1:E7:95:B7:A6:83:5D:56
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018CC6B79F5EFC2C164A60628C885D853CC0
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/aCots3QRqaX9-Oz30eeVt6aDXVY.roa
Signing time: Mon 01 Jan 2024 20:29:31 +0000
ROA not before: Mon 01 Jan 2024 20:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 62.72.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 09:37:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:9f:5e:fc:2c:16:4a:60:62:8c:88:5d:85:3c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 20:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=682a2db37411a9a5fdf8ecf7d1e795b7a6835d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ed:6c:26:6b:74:92:47:7d:e2:36:54:03:e5:
8a:29:1e:ee:de:7f:c9:b9:fd:4f:af:da:86:85:d0:
40:a0:2b:bd:96:e5:b0:dd:a4:30:b0:af:21:3c:bb:
a5:23:3a:08:bc:1f:90:86:fe:6f:bb:d4:3d:25:19:
da:ca:9d:24:b7:99:e0:fc:e5:69:4e:a9:8e:2e:c4:
ec:ff:e0:78:7c:ff:7e:29:29:08:a8:23:cb:36:c4:
55:96:54:31:98:f2:be:69:b8:6a:ad:8f:ae:dc:4e:
82:f6:c8:2c:6a:28:a4:a3:52:36:98:a3:df:f3:0d:
6a:95:24:b0:cf:4d:9c:7a:be:c2:5b:68:a9:be:08:
2e:ca:f6:7a:b4:67:ca:e3:f7:f1:ac:fe:a5:b3:79:
fb:a4:9d:96:ce:7d:92:ba:1c:5f:e3:d6:0b:e1:40:
bb:16:cb:a8:74:27:d4:be:48:f2:6f:ed:b6:81:50:
2d:1b:6a:fc:e9:69:2e:6c:7e:03:e8:0b:c2:a1:30:
46:30:2b:5f:61:c4:eb:20:82:66:a1:a5:e6:b0:1d:
aa:05:8c:2c:53:2a:43:4f:23:89:3d:1e:fb:a0:4f:
2d:ff:11:55:cd:aa:e5:3a:ba:2f:7b:5b:a0:f6:b5:
a7:80:5d:cf:90:0a:11:0f:4a:dc:23:6e:67:75:a5:
df:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:2A:2D:B3:74:11:A9:A5:FD:F8:EC:F7:D1:E7:95:B7:A6:83:5D:56
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/aCots3QRqaX9-Oz30eeVt6aDXVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.175.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:d4:eb:7f:ae:78:8e:84:87:f3:dd:b8:d2:cf:a7:b3:10:52:
92:5b:fa:5c:ed:31:94:3b:39:43:15:c9:40:39:8d:2c:47:ae:
d0:4c:a0:7e:51:a7:a9:46:31:75:69:75:62:d9:e8:5e:15:98:
e2:0d:f5:9a:0d:73:3f:34:7c:d2:85:e9:0b:e9:6e:62:b5:90:
e6:cd:d9:92:12:81:f3:56:c4:00:c5:4e:08:41:e2:62:99:db:
95:b3:f0:34:75:1b:2c:24:be:9f:fe:c6:85:e5:4b:68:cb:2a:
59:0e:35:4f:44:17:63:df:5e:e9:5c:98:f7:35:3a:35:7b:a2:
2b:74:86:3f:62:2b:71:0e:4c:37:7d:da:a0:c7:73:ea:54:06:
64:3c:2a:d6:71:2d:48:63:3c:71:77:1f:6c:46:4c:1b:cb:ec:
ef:ab:8e:b6:87:5c:27:62:e3:14:7a:d3:02:93:c3:e2:36:b9:
4e:0b:31:73:9d:5f:be:88:10:9a:fb:0c:31:a0:60:eb:77:3a:
a4:1e:b7:d9:0a:25:08:eb:dd:e3:ca:f7:bb:3f:8c:dc:1c:f7:
1b:31:33:b6:da:9c:f4:a8:5e:7a:64:63:88:f2:b5:5b:51:c2:
2a:6d:a6:46:16:6d:c0:0b:79:d4:58:ac:82:30:a6:73:21:aa:
20:01:03:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org