Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/kRa63jKXyEpIxdTrATbxMwbjaW4.roa
File: kRa63jKXyEpIxdTrATbxMwbjaW4.roa (raw, json)
Hash identifier: uF5adrSp71PFGMO6kZITkASDR1ycTsptVWIGyObOkq0=
Subject key identifier: 91:16:BA:DE:32:97:C8:4A:48:C5:D4:EB:01:36:F1:33:06:E3:69:6E
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018D06F7364EAD67498E48BF53F12F11E801
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/kRa63jKXyEpIxdTrATbxMwbjaW4.roa
Signing time: Sun 14 Jan 2024 07:54:41 +0000
ROA not before: Sun 14 Jan 2024 07:54:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 62.72.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 15:58:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:06:f7:36:4e:ad:67:49:8e:48:bf:53:f1:2f:11:e8:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 14 07:54:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9116bade3297c84a48c5d4eb0136f13306e3696e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:a3:85:09:20:e2:55:7d:ee:b1:aa:94:c6:
67:c7:fe:1b:12:d2:f6:7e:84:a2:22:42:53:b5:34:
6a:f8:ce:78:09:7c:27:63:91:7a:57:04:4a:0d:4d:
b0:fb:d4:10:1b:70:39:f0:68:e3:9b:5f:44:96:7c:
2c:8c:74:4a:b9:d2:e2:b0:5b:bb:6d:65:b8:84:c8:
46:5d:1d:33:d0:be:3f:47:6e:17:21:49:b3:75:3b:
6c:fd:ff:89:5a:b4:e9:04:b0:bb:5a:ce:61:bb:f8:
8b:d2:54:00:0b:0e:8e:f6:28:d1:ac:6c:c4:5e:ec:
31:59:1e:9e:d6:1b:27:57:39:92:24:2b:96:e5:ea:
ab:bf:bb:8a:ff:d1:c3:36:fc:08:de:74:05:8d:fb:
0a:66:39:36:63:c7:03:71:ad:bf:c5:c2:3b:e0:ff:
76:24:43:d7:6c:43:d7:51:97:1a:93:45:80:a5:75:
38:d6:0c:ff:0f:93:fa:c0:09:a8:64:56:08:26:f2:
e5:26:03:c3:8d:20:2c:73:3f:d5:1e:15:46:ed:d5:
44:80:eb:c4:f1:c3:a8:80:f0:a7:0b:85:52:cf:05:
27:66:3b:a8:80:f2:bf:2e:ac:75:7c:f4:31:1b:76:
c1:fa:fb:66:75:aa:30:15:f0:1d:05:32:05:79:06:
9d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:16:BA:DE:32:97:C8:4A:48:C5:D4:EB:01:36:F1:33:06:E3:69:6E
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/kRa63jKXyEpIxdTrATbxMwbjaW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.164.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:ae:f9:6a:9f:33:99:4f:d8:00:4d:e1:de:54:c8:2d:ee:0c:
3f:84:bc:6e:33:8e:c1:d9:c7:d8:76:58:92:a3:95:f3:fc:fc:
cc:18:e9:65:84:07:93:ef:3e:0d:4d:b3:a4:ae:77:b1:77:b8:
f9:80:14:90:0f:53:76:86:b0:18:ec:ab:2e:24:a3:26:d8:b2:
d6:47:4e:60:ef:36:23:25:cb:0d:2b:ca:db:57:90:1f:78:78:
b5:f3:ac:29:0c:4c:7c:ec:7d:e3:60:29:04:23:f9:3b:f7:c5:
7c:f3:f1:5b:cb:c5:e0:d6:f2:2b:eb:68:51:3c:b2:08:d5:8c:
69:74:86:3b:0d:3c:f9:c2:ce:71:af:eb:0b:3d:47:10:45:5f:
81:0c:ed:0f:a5:1a:18:03:f7:ea:49:8a:3c:54:d7:20:26:9a:
d3:f2:1f:b6:21:ad:c9:fb:e9:93:09:0f:0b:65:aa:4e:03:e0:
01:76:71:23:27:f9:06:0e:2b:79:df:58:94:aa:4b:43:cf:14:
81:8f:55:c5:29:67:c7:7e:ff:13:0b:30:61:c2:47:fe:f0:3f:
3c:1c:f3:e1:d9:91:61:7d:a7:fa:4b:87:30:e0:24:5a:81:f1:
c5:b0:20:4b:9d:dc:7e:d7:b0:07:d1:dd:3e:d6:62:63:fe:af:
ae:b2:9a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org