Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ks4msKtr6c2a9X7qov4QTbvELco.roa
File: ks4msKtr6c2a9X7qov4QTbvELco.roa (raw, json)
Hash identifier: Exrirsjtt6NP0CaY1WiA8r43i9OtnZCu+vVtapVUU90=
Subject key identifier: 92:CE:26:B0:AB:6B:E9:CD:9A:F5:7E:EA:A2:FE:10:4D:BB:C4:2D:CA
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018E224A7A562952D10C0423E2CB679E0C0D
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ks4msKtr6c2a9X7qov4QTbvELco.roa
Signing time: Sat 09 Mar 2024 08:18:10 +0000
ROA not before: Sat 09 Mar 2024 08:18:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.164.0/23 maxlen: 23
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 11:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:22:4a:7a:56:29:52:d1:0c:04:23:e2:cb:67:9e:0c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Mar 9 08:18:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92ce26b0ab6be9cd9af57eeaa2fe104dbbc42dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:03:48:27:5f:41:32:f3:4e:ee:46:7b:2f:a7:
d4:30:a8:94:4d:13:f8:00:33:95:16:72:1a:d5:9d:
c4:7e:b6:9d:5d:6d:06:2b:c9:fb:9b:51:be:fa:c8:
38:2d:38:aa:6f:38:16:a4:52:68:5c:89:5f:f6:b9:
28:af:da:5d:cc:ea:25:f7:42:31:eb:40:ff:2b:92:
f2:b3:9a:1e:dd:49:59:5f:92:0d:81:88:a4:96:47:
7f:19:1d:ac:27:f9:53:a0:68:bc:d0:bf:b9:9c:99:
cb:f2:68:96:aa:87:33:3d:71:f7:75:4d:ae:29:3a:
bb:8f:4b:e6:c4:ea:e9:e2:fa:29:dc:38:1b:10:e5:
ff:2e:82:96:60:45:35:7e:bb:94:75:6c:88:df:b1:
58:2e:ab:93:bb:d0:47:73:e9:f8:77:91:52:77:4e:
63:10:c2:ee:c1:91:7a:2f:7b:5b:e9:f8:91:31:7c:
0b:82:60:0d:af:38:0f:65:ad:d5:a6:33:bf:61:78:
6c:27:2d:d1:cb:18:ce:49:b2:13:43:1f:56:0c:a7:
46:ef:5e:12:28:0c:c1:01:54:a6:5a:6b:17:83:ff:
0b:8e:9f:9c:2e:38:d5:cc:8e:2f:04:c0:c7:d9:4b:
6f:24:34:ec:ed:26:21:2b:5f:11:7f:83:64:9c:92:
85:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CE:26:B0:AB:6B:E9:CD:9A:F5:7E:EA:A2:FE:10:4D:BB:C4:2D:CA
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ks4msKtr6c2a9X7qov4QTbvELco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.167.255
62.72.189.0/24
81.21.2.0-81.21.7.255
81.21.9.0-81.21.15.255
176.57.59.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
06:05:da:c7:00:91:15:2f:f7:9a:67:d7:0b:ee:a9:5a:02:00:
f4:10:2c:cb:e4:0e:23:26:fd:76:cd:49:0a:56:3c:33:c0:9d:
ca:94:ff:0c:49:c0:19:ae:28:50:92:99:16:e9:56:03:36:35:
2a:ab:80:5f:51:a8:ab:c6:7c:27:27:3f:ee:6d:97:cc:52:b7:
04:e6:3f:2b:7f:aa:ab:a6:1b:3d:ea:e8:74:55:77:9f:c8:e1:
ee:65:7d:18:5a:5e:75:b4:0d:ce:8b:e6:23:b0:06:e9:74:62:
ec:5a:f0:bd:86:91:a5:3f:78:5a:13:ea:53:ea:59:b6:ca:aa:
bc:c6:69:96:fd:3f:4d:97:f3:c3:a2:a7:3b:9d:48:1d:7d:54:
6e:ca:ac:ad:23:a2:48:57:46:73:81:d6:c0:26:a2:10:fb:e0:
53:c0:91:66:47:dd:c5:46:82:ec:7a:bd:f6:25:b2:47:ea:7e:
1b:f7:6d:45:00:06:60:ae:a8:0f:ba:82:11:aa:0a:11:95:0a:
7f:ac:3f:b1:ba:83:39:a1:84:e9:e8:59:c4:46:03:fa:3b:97:
9e:47:18:66:ae:99:73:56:84:34:16:b4:ec:94:83:19:7c:f1:
da:58:d7:df:c3:dd:53:43:b6:92:b3:54:48:13:83:dc:d6:6c:
7f:db:6e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org