Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/nDOXsX7Kge_bkls2vkFVH0mW-MA.roa
File: nDOXsX7Kge_bkls2vkFVH0mW-MA.roa (raw, json)
Hash identifier: 7MtoR6mtCUbuJtRPjiKPsHCNjFRAs06ogOTIoSZYY+Y=
Subject key identifier: 9C:33:97:B1:7E:CA:81:EF:DB:92:5B:36:BE:41:55:1F:49:96:F8:C0
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01893A21F0E8C3A6536A43825F276C53B63D
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/nDOXsX7Kge_bkls2vkFVH0mW-MA.roa
Signing time: Sun 09 Jul 2023 10:10:50 +0000
ROA not before: Sun 09 Jul 2023 10:10:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.3.0/24 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jul 2023 16:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3a:21:f0:e8:c3:a6:53:6a:43:82:5f:27:6c:53:b6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jul 9 10:10:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c3397b17eca81efdb925b36be41551f4996f8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bb:cb:da:ad:01:25:4e:ad:f8:c3:15:18:d6:
d8:4e:0b:2b:0a:61:d9:5b:6f:8a:6d:89:2f:a9:e9:
7b:3c:5d:08:b4:39:25:61:69:33:0a:ef:9d:c7:8e:
9d:06:64:d7:b0:c9:99:68:fd:7b:90:de:7a:e3:6f:
96:3d:b6:05:f4:26:2f:5a:86:c0:8c:69:48:ee:97:
12:e3:68:96:8c:59:c0:61:67:94:a2:ee:3e:b3:c0:
2b:71:d8:72:dd:8c:fa:ef:ce:d9:76:4f:00:f4:d9:
de:c2:fb:72:2e:18:5a:ea:54:3a:e0:12:0b:9b:57:
4a:f8:5a:55:9f:61:21:a5:ff:e1:92:b6:4a:9b:12:
fb:24:2d:7e:d5:f0:e8:76:cc:d8:d3:fc:ff:1e:a2:
20:e4:b6:4b:a4:fe:5d:c1:95:09:73:c6:46:46:89:
5b:97:4d:cb:1d:58:2c:12:8b:d0:f7:4a:73:96:05:
ef:8e:f6:f3:4d:31:cc:ae:92:d6:77:9f:8e:e0:e0:
aa:f6:66:d4:1f:1f:d7:9d:8a:81:fe:94:10:2b:cf:
05:74:51:b3:2e:f5:0e:a3:cf:ca:57:27:29:d5:65:
e4:fa:99:a7:b4:4d:3f:5e:e6:d9:c4:8f:4d:97:56:
d0:28:34:b0:a5:85:81:a5:4a:cd:02:e7:12:e6:91:
fb:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:33:97:B1:7E:CA:81:EF:DB:92:5B:36:BE:41:55:1F:49:96:F8:C0
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/nDOXsX7Kge_bkls2vkFVH0mW-MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.169.0/24
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.3.0/24
81.21.9.0-81.21.15.255
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
21:b4:99:a8:08:aa:3d:6e:47:ec:c2:ff:8d:96:19:88:b4:48:
f7:b6:41:d4:5e:ad:24:d6:ab:da:ba:cd:8c:85:a6:dd:b0:f0:
ca:f6:ec:61:04:d9:38:35:9d:70:ed:eb:0d:83:4f:5d:8a:d5:
e0:cd:98:c4:6a:d3:1f:71:c1:f9:87:40:72:bc:09:f5:74:14:
a3:a6:7b:8e:2e:82:6c:fa:38:54:a9:4e:4b:5e:a3:98:97:7b:
d9:8b:9b:7c:5b:13:bc:9b:b3:97:34:73:b8:2d:f9:c1:60:68:
f7:0f:44:c3:59:87:e7:de:5c:87:f9:ab:4b:5f:3f:b1:a1:b1:
a2:a7:fb:18:c7:9a:c5:8d:d9:d0:d6:8a:69:90:69:99:3d:60:
a7:30:e1:12:af:f6:c9:38:9c:a8:12:e0:4a:71:ef:9b:80:a3:
ab:40:14:83:a0:19:ed:ec:7c:8e:99:58:64:64:b8:d3:22:06:
e1:ba:cc:18:d2:7f:bb:03:30:60:16:e5:e9:d6:7c:e3:65:60:
17:1f:83:0f:c7:3c:e8:d9:be:5e:6f:cb:e0:03:d7:bf:ec:1c:
ae:f4:39:4a:dd:e3:81:9a:fa:89:42:0e:45:ac:96:fd:82:31:
2d:1e:7a:fa:70:92:5c:58:4b:26:fd:aa:4e:ab:9e:02:e0:2b:
3f:66:9d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org