Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/bL6RMr774XWUg2GyBFIriocnEaI.roa
File: bL6RMr774XWUg2GyBFIriocnEaI.roa (raw, json)
Hash identifier: JkeGnWxnxa6zkcS/WcSJfqFUCcCEXOqB/A/gMdJHG/U=
Subject key identifier: 6C:BE:91:32:BE:FB:E1:75:94:83:61:B2:04:52:2B:8A:87:27:11:A2
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01891C73878535D1B6F0F66C20BD42B9EB3C
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/bL6RMr774XWUg2GyBFIriocnEaI.roa
Signing time: Mon 03 Jul 2023 15:51:20 +0000
ROA not before: Mon 03 Jul 2023 15:51:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.163.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
81.21.8.0/24 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.11.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jul 2023 13:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:73:87:85:35:d1:b6:f0:f6:6c:20:bd:42:b9:eb:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jul 3 15:51:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cbe9132befbe175948361b204522b8a872711a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:36:b1:c1:32:18:87:a3:90:14:96:8d:0f:55:
eb:c7:bc:36:0b:9a:0e:12:32:9e:62:46:a8:75:e7:
cc:00:f3:12:b8:9c:7b:2a:64:76:58:5a:f0:90:b7:
66:77:00:fd:3a:0b:56:a0:79:b2:ae:80:72:75:77:
db:22:dc:0a:d2:5f:46:0c:3b:7c:b4:7c:08:50:c1:
9f:a6:96:a7:a8:d0:54:8e:d6:fd:0d:6c:c8:7c:d5:
76:c3:32:c0:d6:c5:f9:b7:64:d9:1e:d5:e4:0c:45:
7f:81:3c:36:f2:4a:8b:2d:2b:cb:32:04:45:c8:57:
1d:96:f2:61:3d:74:9b:c2:1d:6b:3f:1c:fe:6d:1e:
1c:b3:47:53:e5:e6:37:46:8c:aa:42:ec:02:a1:80:
4c:60:67:59:a8:e9:94:bc:34:21:c4:72:42:74:3e:
46:e3:73:32:59:37:20:5f:13:0b:cc:8e:71:4b:88:
41:af:f5:ce:85:a2:4b:89:e0:bb:6a:e2:9d:ee:c8:
91:aa:42:65:bd:2d:33:59:7d:8e:7e:68:e9:bd:bc:
78:1f:38:a5:13:f4:d5:3f:88:8b:64:91:d9:11:d7:
0f:31:08:7a:37:48:bc:37:e4:b4:da:13:ba:29:d5:
05:17:f9:4a:00:67:bb:fd:76:84:1f:cf:ee:13:50:
63:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BE:91:32:BE:FB:E1:75:94:83:61:B2:04:52:2B:8A:87:27:11:A2
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/bL6RMr774XWUg2GyBFIriocnEaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.169.0/24
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.184.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.8.0/21
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:f0:af:f8:9d:7a:e5:ea:07:47:13:87:17:72:14:38:cb:23:
c7:c5:95:2c:80:cc:15:5f:fd:12:03:20:04:71:cd:b7:e6:83:
ef:c3:b8:97:e6:a7:88:c5:1e:9d:56:6c:a1:ad:a6:4a:2d:41:
69:22:68:5d:d4:ad:33:b5:d1:9e:fa:34:36:b3:ca:94:f4:85:
95:dc:64:11:c2:54:ed:c3:27:16:c0:6c:00:27:f7:9e:ee:b2:
63:51:cf:2d:5e:69:ce:4d:cb:b2:7a:7a:bc:f2:98:55:89:6a:
84:25:7e:0e:6c:5b:49:b1:1e:0f:c3:22:3f:4e:0b:4d:f5:a2:
33:54:2b:cc:64:9f:d7:36:fb:36:e6:0c:3e:78:8b:1c:50:59:
04:dd:77:00:48:65:89:87:0b:29:b3:be:d2:1f:96:05:d4:f9:
f0:af:80:1c:5d:22:b4:92:8a:b8:2a:96:fa:73:b4:d8:3c:d9:
f9:0a:a5:3b:98:d3:c9:97:8d:b4:90:73:fd:5f:65:8c:6c:a3:
46:d7:4f:76:8d:47:69:9c:00:de:c9:d0:4f:eb:12:45:43:4c:
37:77:a5:0b:f4:9e:e7:58:52:5a:b3:c4:be:1f:f1:1a:d1:ee:
76:22:c1:a6:3f:15:33:3c:95:3c:28:91:6b:79:46:b5:9e:34:
7f:b5:a0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org