Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/pOG94wO9Xe5tNztOSsA_mWgnyQU.roa
File: pOG94wO9Xe5tNztOSsA_mWgnyQU.roa (raw, json)
Hash identifier: xRYcal+R1rc8+CTv0tj6nRyKZNiphdFACVTwjZmejBc=
Subject key identifier: A4:E1:BD:E3:03:BD:5D:EE:6D:37:3B:4E:4A:C0:3F:99:68:27:C9:05
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018934BF2C76CCA2F55A88A63770049CC446
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/pOG94wO9Xe5tNztOSsA_mWgnyQU.roa
Signing time: Sat 08 Jul 2023 09:04:51 +0000
ROA not before: Sat 08 Jul 2023 09:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.163.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
81.21.9.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.11.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Jul 2023 06:16:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:34:bf:2c:76:cc:a2:f5:5a:88:a6:37:70:04:9c:c4:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jul 8 09:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4e1bde303bd5dee6d373b4e4ac03f996827c905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:dd:ed:4e:0d:b4:a9:58:4e:f9:5b:24:c6:
a6:0d:d8:a3:bc:4e:17:eb:df:50:6d:bc:aa:76:68:
58:98:40:fe:62:62:3d:d9:4a:e4:99:8d:b6:7a:e4:
e2:27:71:80:a4:3d:14:90:c6:53:55:cb:94:12:ad:
96:68:43:6e:f5:ea:c8:f1:56:82:80:38:65:fa:fb:
3b:8b:77:fb:a4:21:7e:a8:ec:6c:49:ba:08:11:09:
14:a5:a7:96:15:79:29:64:98:74:4c:f2:1e:f1:5d:
71:b7:d6:5a:2c:3e:6e:ab:6a:c9:4e:05:d7:5a:a8:
f0:28:bb:4b:37:7f:8c:26:ab:0f:54:9c:25:3a:76:
e1:72:a9:00:af:85:bb:68:1e:f8:51:ab:4a:7d:6c:
da:a0:8f:e1:a5:aa:13:2a:4b:52:d6:b1:13:87:83:
99:55:b8:a7:f1:34:9e:6e:e6:4a:9d:ab:8e:b5:3b:
35:22:aa:dd:19:ff:52:af:dd:89:8e:59:6f:39:2a:
99:a8:40:b8:2e:20:2c:58:f0:bc:47:99:a7:92:1c:
f5:69:fe:a9:e3:1e:b2:4d:a6:86:aa:30:eb:e3:b2:
3e:74:e2:77:26:74:5c:21:1f:af:3a:d1:95:27:ef:
6c:10:0c:fc:37:d0:87:53:2d:71:e9:a6:34:bd:79:
64:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E1:BD:E3:03:BD:5D:EE:6D:37:3B:4E:4A:C0:3F:99:68:27:C9:05
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/pOG94wO9Xe5tNztOSsA_mWgnyQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.169.0/24
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.9.0-81.21.15.255
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:66:01:73:43:14:0b:e0:7d:84:9f:67:42:d2:93:33:84:92:
79:2b:b8:67:73:05:78:c5:25:e2:15:e9:88:7b:df:f1:c7:8e:
29:77:07:52:c2:43:b3:86:e2:0b:5f:98:47:84:75:ed:ca:6f:
e1:4c:ce:3d:2e:8b:d9:ea:a4:61:73:72:f3:fb:d6:1e:cc:49:
a6:ca:d7:ce:75:de:a3:8b:98:38:7f:d2:7f:2f:5d:dd:5b:f8:
a2:67:d8:5b:4e:1c:02:a9:07:a5:88:30:3b:81:38:69:59:b1:
4c:79:bf:5d:69:7b:54:12:7a:2c:03:91:3f:f3:f3:16:92:c5:
e8:ae:6d:75:b0:e8:19:cb:cb:e5:ce:d4:10:85:ec:96:64:2c:
85:67:62:84:58:e9:de:e7:d1:59:d2:ae:49:d7:dc:bd:ee:5d:
c6:95:30:81:8f:86:9d:33:fd:bd:53:ca:58:33:6a:3a:15:a6:
fa:34:1b:d6:44:3b:ab:bc:ab:fe:68:b4:80:51:0c:4d:5d:3b:
27:3f:55:1e:13:ef:82:7e:b5:a4:04:b9:da:08:ab:e7:d2:9b:
67:5d:6b:fa:7b:b4:a5:c8:5d:80:9b:9b:5d:bd:f5:49:21:6c:
64:c5:c1:7d:85:ca:96:22:dd:82:ce:b4:20:de:ce:49:e1:d8:
d6:55:94:bb
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAYk0vyx2zKL1WoimN3AEnMRGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwNzA4MDkwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGUxYmRlMzAzYmQ1ZGVlNmQzNzNiNGU0YWMwM2Y5OTY4MjdjOTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAge3d7U4NtKlYTvlbJMamDdijvE4X
699QbbyqdmhYmED+YmI92UrkmY22euTiJ3GApD0UkMZTVcuUEq2WaENu9erI8VaC
gDhl+vs7i3f7pCF+qOxsSboIEQkUpaeWFXkpZJh0TPIe8V1xt9ZaLD5uq2rJTgXX
WqjwKLtLN3+MJqsPVJwlOnbhcqkAr4W7aB74UatKfWzaoI/hpaoTKktS1rETh4OZ
Vbin8TSebuZKnauOtTs1IqrdGf9Sr92JjllvOSqZqEC4LiAsWPC8R5mnkhz1af6p
4x6yTaaGqjDr47I+dOJ3JnRcIR+vOtGVJ+9sEAz8N9CHUy1x6aY0vXlkJwIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFKThveMDvV3ubTc7TkrAP5loJ8kFMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvcE9HOTR3TzlYZTV0Tnp0T1NzQV9tV2dueVFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcMAwDBAA+SKED
BAI+SKADBAA+SKkDBAA+SLEDBAA+SLMwDAMEAD5ItQMEAD5ItgMEAD5IuTAMAwQA
Pki7AwQBPki8AwQAPki/MAwDBABRFQkDBARRFQADBACwOT8wDQYJKoZIhvcNAQEL
BQADggEBAG5mAXNDFAvgfYSfZ0LSkzOEknkruGdzBXjFJeIV6Yh73/HHjil3B1LC
Q7OG4gtfmEeEde3Kb+FMzj0ui9nqpGFzcvP71h7MSabK18513qOLmDh/0n8vXd1b
+KJn2FtOHAKpB6WIMDuBOGlZsUx5v11pe1QSeiwDkT/z8xaSxeiubXWw6BnLy+XO
1BCF7JZkLIVnYoRY6d7n0VnSrknX3L3uXcaVMIGPhp0z/b1TylgzajoVpvo0G9ZE
O6u8q/5otIBRDE1dOyc/VR4T74J+taQEudoIq+fSm2dda/p7tKXIXYCbm1299Ukh
bGTFwX2FypYi3YLOtCDezknh2NZVlLs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org