Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ahHuoL2noH8YpgLHW3k8hg6kWFg.roa
File: ahHuoL2noH8YpgLHW3k8hg6kWFg.roa (raw, json)
Hash identifier: HFGLelJ4zS/JZLEpch1HeRJ4WMysWHLs2FE9/QUnYuY=
Subject key identifier: 6A:11:EE:A0:BD:A7:A0:7F:18:A6:02:C7:5B:79:3C:86:0E:A4:58:58
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BDD2CC8FD3873B98658C31B2DD52F49DA
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ahHuoL2noH8YpgLHW3k8hg6kWFg.roa
Signing time: Fri 17 Nov 2023 12:06:21 +0000
ROA not before: Fri 17 Nov 2023 12:06:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199077
IP address blocks: 62.72.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 18:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dd:2c:c8:fd:38:73:b9:86:58:c3:1b:2d:d5:2f:49:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 17 12:06:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a11eea0bda7a07f18a602c75b793c860ea45858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:84:30:07:95:d3:e7:66:46:06:eb:06:4d:0a:
ef:34:0e:3a:45:7e:70:05:03:ad:3a:cf:29:a6:cf:
ea:77:42:01:ef:2d:a7:7c:2d:7b:91:5c:93:91:3d:
62:38:c3:b0:4b:f5:e0:2c:ce:f8:d0:04:81:85:10:
d2:65:d8:d2:98:76:10:0c:c0:31:b0:9d:50:09:28:
c0:c4:09:91:d5:35:b3:ed:6b:9b:39:b6:e1:33:03:
9c:57:99:18:03:d1:88:97:a3:74:6b:ef:79:33:28:
f0:5d:c0:bf:b2:a9:7b:1c:09:3a:1f:51:a5:71:ce:
8a:b1:cd:92:66:14:e8:c6:7b:66:1d:32:ec:e3:06:
64:1a:5b:76:3d:b8:32:0c:9b:6d:e3:99:90:85:97:
e1:cc:c8:64:f7:d0:78:2f:55:8b:2b:5c:37:8b:5d:
d1:f7:6a:ac:e2:3c:b0:c6:ad:27:d7:f6:a7:0e:2d:
68:9e:65:72:77:55:18:62:63:ca:92:bb:38:7d:68:
7f:34:d9:27:7c:40:a0:a6:c0:55:52:b4:9f:c2:f9:
64:05:24:2c:5c:c2:b9:a2:4b:bb:38:1a:d8:b6:99:
73:6b:bd:05:ca:51:2c:f1:15:05:21:08:cf:eb:c2:
f2:72:83:49:05:4a:ff:4a:6c:a9:f0:b7:ef:6f:69:
cd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:11:EE:A0:BD:A7:A0:7F:18:A6:02:C7:5B:79:3C:86:0E:A4:58:58
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ahHuoL2noH8YpgLHW3k8hg6kWFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.187.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:a7:df:55:a6:49:cf:1a:16:91:c3:62:fd:67:ee:0e:fd:ac:
26:f5:f6:4e:2d:db:21:ae:49:7b:47:cf:37:8f:42:84:6a:95:
e8:54:af:d9:4b:38:b7:91:fd:b2:d0:6c:4e:b1:d2:a6:82:6b:
48:b0:d0:c2:5a:00:14:04:e8:ea:b1:b1:f2:a7:05:70:6e:5c:
ed:d8:13:80:33:b1:bb:08:d8:da:4e:24:fd:dd:29:c8:fb:45:
0d:c8:58:91:af:22:f7:91:e6:4c:c1:31:47:6e:ed:44:5a:83:
fc:a1:e2:3d:13:b3:c4:2e:52:bd:14:bf:a0:c2:34:67:8f:c1:
ef:12:03:4f:47:32:e7:03:7a:35:b0:f4:36:19:42:58:70:3b:
ba:f1:8d:7c:49:5d:38:5a:39:c0:e9:85:3c:7f:9f:ba:4e:ff:
f3:9c:bb:c9:b3:12:85:1f:eb:0b:c3:02:5d:d7:e7:72:c7:d4:
fe:63:f8:d6:db:11:a0:65:0e:56:12:ed:ee:86:e5:fa:e7:5a:
20:c8:e2:df:c3:1b:18:a6:c9:d3:68:5f:a8:0e:3b:1e:cf:19:
a4:c8:65:8f:4a:32:d9:9e:f9:ef:1f:8e:7c:55:2e:07:b7:03:
94:ae:42:5e:85:00:5d:3a:cc:05:d0:7f:5e:3b:85:85:4b:1d:
6d:1b:75:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org