Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/bEzOvDfM-qEV61TIiWQFFC5ygHo.roa
File: bEzOvDfM-qEV61TIiWQFFC5ygHo.roa (raw, json)
Hash identifier: apBjTc+Ecy4vQP89XIYB1VEsuDi5E6RPBo5Caw9PIfc=
Subject key identifier: 6C:4C:CE:BC:37:CC:FA:A1:15:EB:54:C8:89:64:05:14:2E:72:80:7A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01892B4B051A0F78F9C301D5DC49BF10F7C1
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/bEzOvDfM-qEV61TIiWQFFC5ygHo.roa
Signing time: Thu 06 Jul 2023 13:01:24 +0000
ROA not before: Thu 06 Jul 2023 13:01:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.163.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.11.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 09:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2b:4b:05:1a:0f:78:f9:c3:01:d5:dc:49:bf:10:f7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jul 6 13:01:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c4ccebc37ccfaa115eb54c8896405142e72807a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:28:32:0c:76:09:c0:d6:64:c7:d1:91:42:37:
04:23:23:41:52:ca:55:fa:e9:6e:be:75:6d:e4:c1:
c7:4b:67:98:0d:ca:eb:ea:b9:24:fd:70:5d:39:6f:
c7:bc:c5:8c:fe:b4:bd:6a:a1:8d:d0:db:cc:50:be:
15:6e:a1:53:85:d3:15:c7:3a:9c:df:ba:3b:44:8f:
cb:be:04:08:ef:de:f5:b5:f7:df:26:51:e9:df:9b:
c4:3d:38:c9:1f:6f:6b:29:55:77:48:a6:43:f0:6b:
c5:01:7d:d6:e2:62:dd:5a:db:10:e1:72:8c:a6:8a:
2b:ff:6a:42:5a:59:82:27:14:b3:41:b5:0e:17:54:
42:ec:be:82:12:b8:09:7f:75:1f:97:e3:b2:32:0a:
91:3e:d0:a0:d4:80:0d:06:0e:f8:6d:1f:14:b9:de:
65:37:dd:0c:9c:6f:bf:1c:09:95:51:dd:d4:5e:9b:
7b:5d:9f:93:ee:f0:39:6b:9f:a3:d8:99:8e:87:bf:
ba:87:ef:17:f4:84:dc:42:91:9b:57:a5:81:19:15:
22:2f:cd:0c:4a:15:fc:75:fb:5f:ce:1f:21:ee:97:
80:22:65:df:b0:05:00:7f:13:60:26:d7:0f:f0:12:
ce:9e:27:76:12:30:fe:d8:f0:7c:91:fb:66:80:98:
c1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:4C:CE:BC:37:CC:FA:A1:15:EB:54:C8:89:64:05:14:2E:72:80:7A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/bEzOvDfM-qEV61TIiWQFFC5ygHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.169.0/24
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.8.0/21
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
57:dc:10:fb:04:db:63:3f:d8:17:a2:57:56:30:c8:c1:8e:8c:
63:f2:a7:36:44:43:db:32:ed:ab:02:c4:47:d4:2e:9c:e0:6c:
19:30:29:44:f2:eb:83:a0:96:72:5e:11:4f:be:e1:45:de:18:
a2:61:37:d0:fd:e3:63:2b:f4:7f:cd:80:1a:91:67:e8:31:73:
74:4a:5f:31:4e:4c:e9:a6:ca:78:c1:92:de:9b:15:3d:09:db:
10:d3:db:f8:7f:39:ba:f8:93:8c:ff:31:11:ba:ca:34:d4:a1:
f4:21:18:30:13:90:42:d9:b5:cd:75:02:70:4c:05:ca:f3:ac:
0f:6a:9e:81:7e:c0:fa:67:1c:cb:d4:6e:dc:dc:fc:b4:d8:76:
fb:88:de:96:b1:32:07:0c:53:ea:d4:14:58:3e:ec:e3:5e:93:
77:63:4e:0c:85:4b:a5:d4:1b:4b:d0:1e:bc:f6:6c:e1:2a:ab:
4a:54:f3:89:88:e0:7b:30:0b:a9:16:a9:e0:fc:5b:9c:1b:29:
e6:2f:b8:43:68:5f:59:4c:57:cc:bb:57:8d:73:60:e9:63:e8:
1f:9d:98:c2:5e:56:f2:d9:0d:bb:74:06:2b:04:5c:4b:99:d1:
38:d7:4e:ba:03:63:44:ad:54:da:54:ae:e6:aa:f5:1c:5a:08:
55:a3:71:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org