Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/aXpk8ZUI8Jsf03V3tUKx9qWrC-0.roa
File: aXpk8ZUI8Jsf03V3tUKx9qWrC-0.roa (raw, json)
Hash identifier: 4OOJIwbVRTqZmgnP9gC8W08Gf33UVfPNZUWiekpdpzo=
Subject key identifier: 69:7A:64:F1:95:08:F0:9B:1F:D3:75:77:B5:42:B1:F6:A5:AB:0B:ED
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0187798AA2A6603053A352A1986315D9A35D
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/aXpk8ZUI8Jsf03V3tUKx9qWrC-0.roa
Signing time: Thu 13 Apr 2023 07:35:41 +0000
ROA not before: Thu 13 Apr 2023 07:35:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 62.72.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 May 2023 08:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:79:8a:a2:a6:60:30:53:a3:52:a1:98:63:15:d9:a3:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 13 07:35:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=697a64f19508f09b1fd37577b542b1f6a5ab0bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:e8:69:8c:ac:da:a8:92:2f:ae:c1:8e:21:
9b:d1:59:c7:f8:55:3f:04:79:63:52:a8:44:9c:06:
bd:55:39:0f:f0:30:29:02:95:01:9e:23:bb:3f:b1:
54:41:ad:7a:6d:70:c4:61:4e:cf:5c:a8:39:96:d7:
27:e6:45:89:58:3d:70:48:0f:ce:74:cd:2d:5b:dd:
cb:78:ac:c9:67:d5:b1:93:66:7b:4f:2f:d1:4f:4e:
e8:9a:91:29:83:11:a5:50:7a:a3:6e:02:1b:4d:2b:
5c:ab:e7:16:82:00:37:47:32:c7:f4:a9:9c:b8:e6:
3a:0b:3c:54:0b:68:f9:53:41:db:79:6b:ec:f2:31:
cf:fc:f9:00:c6:0b:bb:ab:b3:40:c3:8e:58:5f:f4:
b4:89:2b:81:f9:ba:bf:a0:1f:eb:b7:e0:6e:e9:f8:
7c:14:8c:a8:1f:46:55:83:2d:1d:d1:8d:9f:7f:55:
f4:35:8a:3d:fa:5f:21:4c:ee:1d:a9:52:92:1e:db:
f3:5b:7f:a7:a1:e2:fc:6b:b2:b0:b5:40:e3:ce:91:
b3:a5:95:df:24:e6:c1:1e:89:93:8c:42:2a:70:8a:
48:a3:58:1b:63:f9:8c:ff:4e:66:4a:6f:3f:11:a2:
a1:07:e1:83:c9:f4:62:bd:bc:e4:78:0e:b0:07:ee:
e6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7A:64:F1:95:08:F0:9B:1F:D3:75:77:B5:42:B1:F6:A5:AB:0B:ED
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/aXpk8ZUI8Jsf03V3tUKx9qWrC-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.191.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:f7:27:b7:5e:6d:89:65:a0:7c:ec:51:7a:2a:e2:3c:a2:38:
de:cf:0a:d8:04:69:e1:b8:eb:bb:9d:6a:11:1f:ca:e0:44:25:
15:43:fa:0f:d4:e2:b2:03:04:e4:66:c2:cc:51:55:b8:b9:55:
f4:23:14:52:e9:80:ff:03:91:a7:a7:11:71:2c:a3:76:23:5e:
46:e4:33:1a:b7:04:6c:f1:34:16:64:51:02:af:be:ba:9a:ac:
21:2f:42:64:c3:d8:47:2e:6b:8f:ae:29:b3:0c:77:d1:68:51:
6a:60:7c:b3:91:60:a9:25:a7:b3:7c:fa:b2:79:1f:8a:ef:24:
0b:1a:cb:8d:bd:a5:0b:6f:e4:1a:3b:32:3e:59:e1:92:a3:ec:
19:d8:8d:2b:d5:96:cc:cd:24:21:09:40:18:4d:4f:64:28:2c:
3a:fa:22:d8:7f:5c:7e:10:1c:0d:c5:3d:56:a2:de:cd:14:bf:
b6:cd:9d:e5:89:c8:44:41:f6:a7:50:2b:a4:2e:3b:41:5b:d5:
ba:96:d9:e0:d0:28:d8:2c:e6:db:54:e3:7b:44:3d:75:34:17:
c4:22:ee:64:3c:68:05:93:88:54:15:7d:b7:d1:7c:77:d6:74:
4a:1c:08:35:69:cc:9a:e2:ca:ce:65:53:91:ca:0f:8a:57:6b:
bc:98:c6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org