Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fBdzqotGUupg_Qk1S41yw6zUIyA.roa
File: fBdzqotGUupg_Qk1S41yw6zUIyA.roa (raw, json)
Hash identifier: fmOcKlr5lnRoYVJvJSY24BBRjDF6V/CqFajMb1RnBus=
Subject key identifier: 7C:17:73:AA:8B:46:52:EA:60:FD:09:35:4B:8D:72:C3:AC:D4:23:20
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C6EAAF4EBE21E288032C7B2B95107DC62
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fBdzqotGUupg_Qk1S41yw6zUIyA.roa
Signing time: Fri 15 Dec 2023 18:09:06 +0000
ROA not before: Fri 15 Dec 2023 18:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24768
IP address blocks: 62.72.170.0/24 maxlen: 24
62.72.174.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6e:aa:f4:eb:e2:1e:28:80:32:c7:b2:b9:51:07:dc:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 15 18:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c1773aa8b4652ea60fd09354b8d72c3acd42320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:89:08:1c:f0:f5:5a:56:5f:73:4c:7b:e3:5d:
bd:74:5e:2f:5f:3d:e7:5f:b3:5b:54:1a:9e:93:09:
b8:eb:29:19:2f:a7:66:cd:c8:2d:04:a0:da:01:a4:
db:81:e1:95:d7:ac:81:ee:1b:83:6a:0e:9c:c9:5b:
d7:4f:a1:f3:dd:e6:9d:bf:fd:45:c0:40:56:77:f7:
dd:db:23:b7:91:86:1e:bc:57:f5:a5:de:79:c5:41:
88:da:01:21:ad:f8:84:52:49:29:f9:be:7d:95:06:
7f:ae:23:da:5a:ec:79:40:eb:8a:f6:6c:ee:57:a7:
b0:37:c9:cf:07:f7:87:97:70:3e:18:ee:a0:5c:4c:
e8:02:24:c9:48:6f:38:8e:ba:fd:15:f8:66:6a:1f:
e5:57:43:b3:65:96:dd:15:16:85:ac:0c:24:82:42:
7a:f6:36:a5:6f:23:cb:49:fd:aa:e1:18:c2:2b:20:
ac:8e:56:7a:f1:cb:2f:ed:9b:91:ee:8c:5a:11:ae:
01:fd:8c:28:0c:6e:2a:32:e2:3a:cc:59:90:38:04:
af:28:8b:b7:c4:0c:0e:84:8e:da:16:63:b3:e6:d7:
49:62:56:46:3b:dc:34:3f:6c:8f:10:ad:a0:1d:c8:
27:da:d5:a2:25:9c:4f:78:95:b8:a2:0f:7a:f7:c9:
42:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:17:73:AA:8B:46:52:EA:60:FD:09:35:4B:8D:72:C3:AC:D4:23:20
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/fBdzqotGUupg_Qk1S41yw6zUIyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.170.0/24
62.72.174.0/24
62.72.185.0/24
Signature Algorithm: sha256WithRSAEncryption
34:81:a7:6a:b0:a1:82:59:29:0a:d9:2e:00:8e:45:c3:ae:83:
6e:62:f7:8c:33:6a:b5:2c:c2:21:ac:17:1d:13:66:c6:d9:2f:
f1:45:ad:23:a1:cc:8c:a7:cf:89:99:c4:d5:c9:10:99:c0:3a:
fc:38:64:b3:70:4b:1f:46:e9:f8:22:2b:fb:14:5f:db:6a:16:
09:d1:9a:24:f9:d8:b6:a0:25:4b:04:5a:84:e3:c0:1a:50:d9:
a1:40:14:81:c9:41:a0:34:64:f4:8d:15:29:dd:98:cc:d0:d9:
9b:d9:b6:68:2b:21:4d:75:7c:e4:12:5f:74:5c:c8:98:74:df:
0b:0f:ea:75:5b:c1:4b:19:86:55:38:17:de:e1:94:dc:c0:4d:
bf:85:f9:03:a4:89:59:5e:e7:af:ec:75:eb:7e:7c:e5:d2:b9:
c6:4e:e0:c1:bd:46:d2:ba:cb:48:39:89:69:71:2c:0c:40:be:
c5:f3:40:c6:c5:af:fa:be:94:3d:09:5d:6d:d4:7a:ce:ef:11:
8a:c8:66:d9:30:f8:cf:29:9f:13:da:7c:d0:1a:c7:92:ae:3b:
77:0e:17:f1:99:d7:4f:8c:3a:6b:64:3f:36:f1:be:19:d8:72:
95:a4:f0:f9:2f:ad:fa:0b:72:87:1d:9d:93:28:2b:d6:78:d3:
f9:ce:a6:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org