Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/itPHa-dpASlkp4oJwFYzqOFtnvg.roa
File: itPHa-dpASlkp4oJwFYzqOFtnvg.roa (raw, json)
Hash identifier: IGnsB3xbN0rtT8G79enobFVYWr4qrVtY3z8ylQN9cSw=
Subject key identifier: 8A:D3:C7:6B:E7:69:01:29:64:A7:8A:09:C0:56:33:A8:E1:6D:9E:F8
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C632B86F00CE554305BD317AEF64E25D5
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/itPHa-dpASlkp4oJwFYzqOFtnvg.roa
Signing time: Wed 13 Dec 2023 12:34:06 +0000
ROA not before: Wed 13 Dec 2023 12:34:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Dec 2023 06:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:63:2b:86:f0:0c:e5:54:30:5b:d3:17:ae:f6:4e:25:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 13 12:34:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ad3c76be769012964a78a09c05633a8e16d9ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:92:55:8c:95:13:b7:2b:d7:f8:c3:62:ae:cf:
a4:69:22:13:7f:ab:89:60:85:8c:8f:be:33:1c:d9:
08:e1:0d:8a:68:d8:60:61:c7:4c:9b:d1:b8:77:40:
07:e9:aa:8e:5e:6d:5a:7a:23:93:f1:bd:ae:d8:9e:
64:ae:d6:34:4b:01:02:9e:b7:73:29:fc:51:48:4c:
c4:08:dd:86:46:d2:fb:dc:9c:5b:ec:a4:e0:bf:af:
c3:d7:e7:7c:fe:48:bf:0a:b2:46:dd:fc:3c:11:ff:
e6:da:23:2c:c3:07:50:7e:dd:ca:24:39:a4:5a:58:
67:a7:f8:e8:13:82:1a:ef:9a:d3:52:04:4c:6a:e7:
4f:67:7f:e3:65:62:64:1e:b1:1b:c0:cf:64:d7:9e:
66:3d:bf:4e:02:6d:ce:08:17:dd:43:93:39:5d:1d:
c5:a8:80:b4:ee:ae:3e:99:48:a1:30:21:b5:44:2b:
ee:e6:e0:21:2c:24:ef:10:13:e6:1b:ad:53:51:ca:
b6:3b:86:43:ee:83:db:2c:54:63:36:77:79:69:69:
5d:26:81:8b:3f:fd:ec:cc:b0:44:d5:7a:7f:18:d7:
ca:ae:15:29:af:48:54:6e:3a:07:e3:75:fc:ea:c5:
11:10:90:88:ce:af:c0:c1:b6:f9:de:ac:82:70:86:
92:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D3:C7:6B:E7:69:01:29:64:A7:8A:09:C0:56:33:A8:E1:6D:9E:F8
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/itPHa-dpASlkp4oJwFYzqOFtnvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.180.0/23
62.72.184.0/22
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
95:18:9b:44:f5:8f:41:02:c0:b6:fc:54:5f:23:65:6a:58:16:
c7:dd:b1:53:aa:ce:34:99:38:58:6f:c1:97:85:46:84:bf:70:
54:0a:b3:03:b8:42:32:1d:7a:f5:00:20:f3:67:b3:e3:f5:a4:
05:09:17:d1:44:b3:ab:ff:6d:b2:28:ae:bd:0f:3f:a5:fb:cb:
32:8d:1e:e1:ac:50:92:f7:3c:a8:2e:6b:f6:80:73:9d:3e:e4:
12:0e:be:a4:7f:7a:cd:17:ed:3f:bd:3c:6e:98:f2:41:6c:e7:
5f:a9:85:2f:3d:aa:97:62:b9:c3:c0:fc:2c:f6:57:8c:24:d1:
cc:82:fd:fc:80:a1:1c:e2:1b:8d:08:16:7b:e2:7e:ab:6a:22:
21:8e:09:5c:3d:b1:21:f2:3a:c6:58:3d:15:ef:84:5a:2d:4d:
4a:fd:5a:d7:6a:73:92:f4:85:c6:b6:34:ca:7b:cf:01:a9:dc:
5b:ff:6a:cf:fa:b3:55:8a:e3:f0:ea:54:f5:55:26:30:98:08:
ce:f0:0e:79:14:0d:35:4b:22:86:c2:e5:69:9a:24:48:a5:3d:
4b:90:9b:c7:db:4d:74:ba:99:84:57:6e:c4:6f:ca:c2:2b:41:
d9:f0:0d:e1:7e:bf:95:09:7b:be:6e:67:5a:aa:de:ec:64:01:
07:93:13:32
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYxjK4bwDOVUMFvTF672TiXVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMjEzMTIzNDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWQzYzc2YmU3NjkwMTI5NjRhNzhhMDljMDU2MzNhOGUxNmQ5ZWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05JVjJUTtyvX+MNirs+kaSITf6uJ
YIWMj74zHNkI4Q2KaNhgYcdMm9G4d0AH6aqOXm1aeiOT8b2u2J5krtY0SwECnrdz
KfxRSEzECN2GRtL73Jxb7KTgv6/D1+d8/ki/CrJG3fw8Ef/m2iMswwdQft3KJDmk
Wlhnp/joE4Ia75rTUgRMaudPZ3/jZWJkHrEbwM9k155mPb9OAm3OCBfdQ5M5XR3F
qIC07q4+mUihMCG1RCvu5uAhLCTvEBPmG61TUcq2O4ZD7oPbLFRjNnd5aWldJoGL
P/3szLBE1Xp/GNfKrhUpr0hUbjoH43X86sUREJCIzq/Awbb53qyCcIaSMwIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFIrTx2vnaQEpZKeKCcBWM6jhbZ74MB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvaXRQSGEtZHBBU2xrcDRvSndGWXpxT0Z0bnZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUMAwDBAE+SKID
BAI+SKgDBAE+SK4DBAE+SLQDBAI+SLgwDAMEAVEVAgMEA1EVADAMAwQBURUKAwQE
URUAAwQAsDkzAwQAsDk1AwQBsDk6AwQAsDk/MA0GCSqGSIb3DQEBCwUAA4IBAQCV
GJtE9Y9BAsC2/FRfI2VqWBbH3bFTqs40mThYb8GXhUaEv3BUCrMDuEIyHXr1ACDz
Z7Pj9aQFCRfRRLOr/22yKK69Dz+l+8syjR7hrFCS9zyoLmv2gHOdPuQSDr6kf3rN
F+0/vTxumPJBbOdfqYUvPaqXYrnDwPws9leMJNHMgv38gKEc4huNCBZ74n6raiIh
jglcPbEh8jrGWD0V74RaLU1K/VrXanOS9IXGtjTKe88Bqdxb/2rP+rNViuPw6lT1
VSYwmAjO8A55FA01SyKGwuVpmiRIpT1LkJvH2010upmEV27Eb8rCK0HZ8A3hfr+V
CXu+bmdaqt7sZAEHkxMy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org