Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/onc9h9hvgkqS42ZpwXLKUdQmTpo.roa
File: onc9h9hvgkqS42ZpwXLKUdQmTpo.roa (raw, json)
Hash identifier: lzmCofIZAPsnPB/O5hbtb4XWoduQG8D8wYlj0zNEUHU=
Subject key identifier: A2:77:3D:87:D8:6F:82:4A:92:E3:66:69:C1:72:CA:51:D4:26:4E:9A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BDECF2E698DC07EC57726D951E73754CF
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/onc9h9hvgkqS42ZpwXLKUdQmTpo.roa
Signing time: Fri 17 Nov 2023 19:43:21 +0000
ROA not before: Fri 17 Nov 2023 19:43:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57974
IP address blocks: 62.72.181.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Dec 2023 06:44:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:cf:2e:69:8d:c0:7e:c5:77:26:d9:51:e7:37:54:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 17 19:43:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2773d87d86f824a92e36669c172ca51d4264e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c1:a4:b7:e8:40:fb:dc:84:70:70:ff:36:8f:
23:bb:2c:0d:4e:43:eb:12:50:56:c8:4e:28:77:59:
6f:fd:37:92:73:32:07:e2:62:e0:99:ba:a1:d9:8f:
fe:5f:ae:56:60:6f:bf:70:f1:89:38:ef:74:ec:d1:
7b:b6:69:52:c7:14:05:a6:bc:8b:d1:b2:cc:d7:3c:
1c:05:68:a5:de:1f:47:bb:8c:1a:36:6c:db:94:35:
17:0c:f0:34:53:51:79:5b:56:ed:aa:c8:c0:10:f9:
37:06:d5:bb:68:d5:c5:63:b4:75:f2:ac:dc:9a:9a:
de:a5:69:70:4b:9a:8e:a3:ec:07:fc:7d:5d:3a:93:
e0:19:cf:87:da:6e:89:b9:91:6f:f1:47:ac:02:e0:
72:a0:e5:31:0d:16:e1:74:61:fd:ce:15:85:04:61:
04:f7:b1:f2:80:e1:12:fb:30:c4:5f:4b:61:6d:e4:
0e:77:1b:2c:d5:c7:66:d7:14:b4:3e:16:27:be:06:
84:b3:6d:9e:3a:7d:7e:9e:cf:35:0d:13:b2:4b:82:
2e:fc:32:52:b4:7b:58:f3:9b:f4:cc:13:8c:08:e5:
29:1b:02:50:1a:f9:8f:05:59:ac:b3:9a:0b:26:42:
cd:66:5b:e5:1c:5d:52:3c:7c:ee:21:d5:65:22:51:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:77:3D:87:D8:6F:82:4A:92:E3:66:69:C1:72:CA:51:D4:26:4E:9A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/onc9h9hvgkqS42ZpwXLKUdQmTpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.181.0/24
62.72.188.0/24
Signature Algorithm: sha256WithRSAEncryption
af:c0:6e:33:9b:82:74:83:13:86:96:b9:0e:25:d5:84:9d:5a:
c7:5f:04:d2:86:28:7b:b4:15:9b:66:fd:a1:53:a5:91:a3:d6:
e7:20:ab:b4:31:bd:8b:32:ea:67:e3:c3:5a:6d:c8:3c:28:48:
39:9b:71:4c:9b:b2:f1:9a:ad:d7:d4:e7:f9:60:78:17:d3:05:
e2:ac:af:8d:69:40:a8:88:6b:06:90:5f:67:b6:c6:85:cf:a5:
a5:2b:96:f2:c4:80:4f:a8:56:29:eb:fd:bc:1f:be:e7:9c:93:
4b:2f:d6:28:be:8a:66:05:d4:85:ac:98:ee:60:39:f6:7f:66:
8f:1c:ea:a5:1c:ac:25:51:bc:14:c6:ba:18:9a:58:9d:d3:3c:
59:38:c9:ae:00:9d:c6:04:fc:c3:4c:76:62:ac:7e:cd:b7:96:
33:9e:92:62:f9:4c:cd:5b:13:4d:d1:c6:a3:5f:f1:0f:e8:6d:
4e:d4:32:da:1c:5f:fc:0b:ff:cc:1f:0b:35:72:33:bd:a8:78:
15:4c:7a:66:1f:ed:f4:df:1c:db:f4:da:c1:21:8b:27:17:34:
c6:c8:22:40:58:fd:03:8c:ed:e3:23:c6:1c:eb:8a:89:77:77:
56:b3:47:d7:dd:28:d3:88:09:dc:d6:67:cb:37:6d:7f:b5:ea:
2f:2a:16:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org