Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/b_PP7y34JxI66qhKGSDsuTwKeF0.roa
File: b_PP7y34JxI66qhKGSDsuTwKeF0.roa (raw, json)
Hash identifier: IOygN087FSTbdDdmGuQkv51c6ZdLzrI2bKpJdQ8Vl2Y=
Subject key identifier: 6F:F3:CF:EF:2D:F8:27:12:3A:EA:A8:4A:19:20:EC:B9:3C:0A:78:5D
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189BA4827F539674E1E66BB9BA213B24A5A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/b_PP7y34JxI66qhKGSDsuTwKeF0.roa
Signing time: Thu 03 Aug 2023 07:23:58 +0000
ROA not before: Thu 03 Aug 2023 07:23:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 04 Aug 2023 11:57:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:48:27:f5:39:67:4e:1e:66:bb:9b:a2:13:b2:4a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 3 07:23:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ff3cfef2df827123aeaa84a1920ecb93c0a785d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e1:bc:0d:72:94:d0:5a:7e:ac:a4:86:4f:b5:
bd:a3:24:0a:6b:0f:1c:32:ea:f9:c5:ef:a2:85:28:
bb:bd:1c:34:70:85:34:c0:36:1a:85:fa:fc:17:b1:
63:90:9e:9e:f8:bf:d0:c2:21:ed:79:95:c1:dc:e2:
c0:0a:1e:17:81:a0:e2:4b:3f:ae:a3:a2:9d:f1:77:
eb:14:ba:54:5f:b7:1e:ed:ae:e7:99:67:83:ed:ab:
36:47:75:6c:f4:c4:01:9c:fa:34:20:5b:20:d4:33:
c0:e7:a4:08:7a:4b:9c:ea:92:24:00:1d:5e:24:ea:
c5:47:03:f2:47:39:aa:98:6b:b3:f9:0f:d2:5a:ba:
a0:2b:61:39:21:44:6d:70:3f:86:cc:07:03:e5:4b:
26:ba:08:2d:2c:6c:87:d5:cc:91:91:e0:c6:cd:93:
a9:3d:1c:3a:99:13:4b:1e:e9:08:c3:2a:1c:60:17:
7c:0e:a3:0a:06:63:6e:ba:68:15:64:1a:e7:2a:25:
4b:a2:8a:43:f4:42:f8:60:a8:09:57:e2:05:56:da:
2f:05:5d:4d:86:17:5a:a2:5f:c9:d4:40:45:60:9b:
e3:25:8f:cd:6d:63:c4:12:0d:3f:63:36:7e:07:c6:
9e:5d:4b:f1:1b:df:c4:8c:e0:9b:b6:47:e8:10:59:
3b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F3:CF:EF:2D:F8:27:12:3A:EA:A8:4A:19:20:EC:B9:3C:0A:78:5D
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/b_PP7y34JxI66qhKGSDsuTwKeF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.169.0-62.72.170.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.1.0/24
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
21:2c:35:ef:44:05:96:55:de:49:70:55:e0:ff:67:5b:f4:b8:
1d:3a:64:48:47:7a:2c:ab:a0:f4:7b:c4:68:29:f4:55:d4:8f:
a8:a4:9c:3d:d4:54:be:d1:ba:29:9b:30:4d:b8:32:b2:3b:ed:
6c:b6:a3:aa:43:8d:03:d9:15:a4:d0:14:2e:b7:ff:f6:26:fe:
4f:fb:7e:8d:fc:cb:87:0c:8d:75:d4:a3:5e:b7:ad:64:d5:1b:
3d:67:cd:05:2c:3a:7f:8a:87:5a:fa:02:24:f8:bc:41:ec:f7:
7e:d6:1a:11:fa:18:0d:07:20:37:a3:d4:f1:fe:0e:07:83:b1:
af:43:bd:6d:8e:d2:3d:e7:6d:cf:95:8c:57:55:9d:bc:2a:9f:
bc:e6:ea:15:ff:f4:af:2c:5d:25:2c:11:e1:21:ca:ab:98:3c:
72:71:1b:cc:51:92:7b:ed:26:bd:1c:7a:02:2f:37:87:36:20:
e9:49:fb:8b:04:0f:ca:31:55:98:a7:ca:f9:5b:84:35:3e:f5:
74:a1:28:a3:e6:e0:55:90:76:5d:43:47:e0:bf:aa:0b:4e:a4:
37:c2:0b:51:3c:24:de:2e:0c:c8:81:5a:7d:83:54:a9:81:2e:
ad:69:8c:f4:37:cd:10:81:89:f6:ff:de:ab:3e:4c:fa:db:7c:
10:bc:3b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org