Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/poW3dNMw5R2JnKdwfNa0rVq18tE.roa
File: poW3dNMw5R2JnKdwfNa0rVq18tE.roa (raw, json)
Hash identifier: XVWrZz2MMAQ7PV6reVDLI3BJQgcLGfSf+hqTKXMQZXU=
Subject key identifier: A6:85:B7:74:D3:30:E5:1D:89:9C:A7:70:7C:D6:B4:AD:5A:B5:F2:D1
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B1D819E94C72236F73EE51D5D333594BD
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/poW3dNMw5R2JnKdwfNa0rVq18tE.roa
Signing time: Wed 11 Oct 2023 06:51:55 +0000
ROA not before: Wed 11 Oct 2023 06:51:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 12 Oct 2023 06:52:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:81:9e:94:c7:22:36:f7:3e:e5:1d:5d:33:35:94:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 11 06:51:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a685b774d330e51d899ca7707cd6b4ad5ab5f2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:1b:95:c4:22:4a:0b:ca:41:dd:3c:09:69:
77:a6:3c:62:e1:52:4c:be:b7:8b:05:77:7f:5e:94:
45:83:80:5a:7a:e2:32:2b:cf:24:02:72:69:34:a4:
ac:d6:0a:b8:1f:47:1f:1c:82:42:5f:e4:69:ad:8f:
b6:84:e4:cf:c4:a6:44:a9:75:60:e9:11:e8:ed:0d:
65:25:9d:6d:1e:9a:5e:eb:43:48:de:f0:72:9f:63:
b0:4b:35:6c:31:74:2f:05:b7:47:c0:53:74:4d:88:
b9:e5:6d:4d:57:59:79:ce:97:2c:33:49:8e:24:f6:
43:6f:2f:f0:a4:db:20:b7:cf:3d:a9:cb:ca:67:b0:
cb:d1:b3:01:bb:13:3f:9c:63:10:21:c4:ef:5c:13:
5a:e7:f6:09:9f:7e:d7:e7:62:d6:e9:16:f7:c2:d6:
53:3d:6a:6d:66:b2:e1:9f:09:47:1c:c4:4b:e0:0b:
1d:14:f4:40:f4:87:ac:a2:88:3f:d5:cd:28:f9:04:
84:8b:b4:89:ab:4c:2c:3c:31:bf:9b:7c:24:8d:76:
7f:ef:46:d5:64:ae:95:d3:ee:d6:1f:ee:df:e2:df:
00:f7:a5:0e:ca:52:29:54:49:51:30:5b:0e:bd:2f:
5a:69:34:38:1f:ce:eb:bd:0c:30:0b:94:b8:95:5c:
c0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:85:B7:74:D3:30:E5:1D:89:9C:A7:70:7C:D6:B4:AD:5A:B5:F2:D1
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/poW3dNMw5R2JnKdwfNa0rVq18tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
94:a9:f6:2a:63:91:14:92:3c:af:86:a2:cf:34:1c:de:34:33:
36:54:70:f5:5e:f7:8b:b3:d8:ce:52:1c:fc:c0:ab:81:b7:15:
c3:94:23:0a:a5:64:4e:7c:f7:1f:0c:f2:63:b3:cb:d2:79:81:
bd:0b:75:66:ef:29:ed:6c:db:66:11:66:1b:ac:6b:67:d7:78:
79:cd:7e:24:99:00:05:87:d9:f3:19:33:78:a1:a3:97:a8:e4:
a9:09:99:bf:25:32:98:a0:c1:3f:fd:eb:c0:b4:ad:bf:19:43:
ff:cb:5e:e5:6e:ab:13:f2:67:1d:5a:6c:74:7a:99:2f:3e:8e:
2d:15:0f:52:bc:8d:d0:25:23:f8:3b:f1:0a:2d:16:7d:33:47:
52:74:b6:87:9c:70:26:32:20:7c:35:35:66:0a:70:59:ad:c6:
6d:ad:56:ea:4a:3b:83:0e:ed:e3:a6:06:97:c1:99:62:90:ea:
b0:43:6d:8e:c8:a3:ee:f6:7b:76:1b:87:b0:51:fe:30:db:97:
11:02:24:25:4a:05:68:c8:91:98:0f:a8:40:ef:08:c7:62:31:
c8:25:b7:04:2d:68:56:8d:c5:0e:94:dc:2d:80:d4:3a:3e:70:
e1:9d:11:cf:3f:b9:2d:43:79:1f:b4:10:46:25:58:dd:42:b4:
bf:87:b0:c1
-----BEGIN CERTIFICATE-----
MIIFajCCBFKgAwIBAgISAYsdgZ6UxyI29z7lHV0zNZS9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMDExMDY1MTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjg1Yjc3NGQzMzBlNTFkODk5Y2E3NzA3Y2Q2YjRhZDVhYjVmMmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfUblcQiSgvKQd08CWl3pjxi4VJM
vreLBXd/XpRFg4BaeuIyK88kAnJpNKSs1gq4H0cfHIJCX+RprY+2hOTPxKZEqXVg
6RHo7Q1lJZ1tHppe60NI3vByn2OwSzVsMXQvBbdHwFN0TYi55W1NV1l5zpcsM0mO
JPZDby/wpNsgt889qcvKZ7DL0bMBuxM/nGMQIcTvXBNa5/YJn37X52LW6Rb3wtZT
PWptZrLhnwlHHMRL4AsdFPRA9Iesoog/1c0o+QSEi7SJq0wsPDG/m3wkjXZ/70bV
ZK6V0+7WH+7f4t8A96UOylIpVElRMFsOvS9aaTQ4H87rvQwwC5S4lVzAIQIDAQAB
o4ICdjCCAnIwHQYDVR0OBBYEFKaFt3TTMOUdiZyncHzWtK1atfLRMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvcG9XM2ROTXc1UjJKbktkd2ZOYTByVnExOHRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGLBggrBgEFBQcBBwEB/wR8MHoweAQCAAEwcjAMAwQAPkih
AwQCPkioMAwDBAA+SK0DBAQ+SKAwDAMEAD5IswMEAD5ItjAMAwQDPki4AwQBPki8
AwQAPki/MAwDBAFRFQIDBANRFQAwDAMEAVEVCgMEBFEVAAMEALA5MwMEALA5NQME
AbA5OgMEALA5PzANBgkqhkiG9w0BAQsFAAOCAQEAlKn2KmORFJI8r4aizzQc3jQz
NlRw9V73i7PYzlIc/MCrgbcVw5QjCqVkTnz3HwzyY7PL0nmBvQt1Zu8p7WzbZhFm
G6xrZ9d4ec1+JJkABYfZ8xkzeKGjl6jkqQmZvyUymKDBP/3rwLStvxlD/8te5W6r
E/JnHVpsdHqZLz6OLRUPUryN0CUj+DvxCi0WfTNHUnS2h5xwJjIgfDU1ZgpwWa3G
ba1W6ko7gw7t46YGl8GZYpDqsENtjsij7vZ7dhuHsFH+MNuXEQIkJUoFaMiRmA+o
QO8Ix2IxyCW3BC1oVo3FDpTcLYDUOj5w4Z0Rzz+5LUN5H7QQRiVY3UK0v4ewwQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org