Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/s2TavAih3CxwE8rb2d31yxKolP8.roa
File: s2TavAih3CxwE8rb2d31yxKolP8.roa (raw, json)
Hash identifier: pPkQzdbRQO0+++Zly3dW/BovAuMOJM4lY2365w4vnjA=
Subject key identifier: B3:64:DA:BC:08:A1:DC:2C:70:13:CA:DB:D9:DD:F5:CB:12:A8:94:FF
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189C0695FA6390458AC9722A3459713EC20
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/s2TavAih3CxwE8rb2d31yxKolP8.roa
Signing time: Fri 04 Aug 2023 11:57:58 +0000
ROA not before: Fri 04 Aug 2023 11:57:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.12.0/24 maxlen: 24
81.21.13.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
81.21.15.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.170.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 05 Aug 2023 09:35:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:69:5f:a6:39:04:58:ac:97:22:a3:45:97:13:ec:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 4 11:57:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b364dabc08a1dc2c7013cadbd9ddf5cb12a894ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:62:99:6c:ec:93:82:a1:69:57:3e:77:9b:19:
84:00:27:4f:57:43:f3:0d:90:d3:b0:75:ce:42:10:
0a:46:f6:17:86:4d:65:d1:8c:3d:c4:d1:da:94:a3:
c4:53:d6:40:77:a5:31:41:07:a4:e7:a5:9a:1d:d0:
8e:63:0d:76:40:9e:24:50:a9:f2:fc:2c:a6:49:a8:
fb:e5:88:8a:e5:88:b2:b8:b9:ee:5d:63:58:d3:aa:
3a:1d:d1:f2:1d:25:b7:f7:b1:0d:04:e0:58:dd:b5:
bf:7f:5e:d7:a8:8e:b7:0f:d2:26:fd:47:ce:30:bc:
4f:6f:6b:cf:63:a2:46:0a:2c:15:1a:9a:25:fb:09:
06:c4:89:3e:78:92:67:55:c7:e2:b3:22:7c:cd:3f:
92:da:8f:4f:b3:3f:d5:5d:b3:80:8a:1b:ac:14:29:
5e:6a:3c:3a:4a:7d:2d:53:aa:2b:14:df:64:78:95:
3c:cb:ec:bf:5b:e0:aa:88:87:de:43:b0:56:93:04:
c1:06:15:d0:c6:e8:02:6e:a6:04:bc:9e:0a:bf:d6:
50:e5:85:c6:98:a8:ef:03:d5:ea:88:fc:36:a1:67:
5f:69:21:cf:ca:e9:83:2d:62:b1:d9:d4:53:8b:e1:
00:98:81:8a:e0:e4:a5:0c:88:50:e6:5b:14:b7:88:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:64:DA:BC:08:A1:DC:2C:70:13:CA:DB:D9:DD:F5:CB:12:A8:94:FF
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/s2TavAih3CxwE8rb2d31yxKolP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.163.255
62.72.165.0/24
62.72.169.0-62.72.170.255
62.72.177.0/24
62.72.179.0/24
62.72.181.0-62.72.182.255
62.72.185.0/24
62.72.187.0-62.72.189.255
62.72.191.0/24
81.21.1.0/24
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
36:ff:57:ac:6f:3a:64:bb:25:5e:b5:40:af:b5:dd:5c:74:73:
61:e1:f3:fa:06:ea:90:92:93:7e:ec:89:c3:4b:83:5f:44:fe:
63:27:ed:f9:45:e8:99:b7:73:f5:c5:8f:d0:89:91:1f:d8:ea:
9f:f1:b5:57:9d:d3:5d:35:58:65:4a:8a:83:b1:be:ef:57:48:
ef:61:90:e0:86:34:fc:71:d4:3f:d7:00:22:05:a4:38:a1:5c:
e7:b8:fe:c0:67:15:60:0e:0f:05:ec:26:6b:64:1f:eb:9a:d6:
6e:ed:7f:38:4d:1a:7c:31:11:1c:41:9a:6a:cb:1e:a0:01:8e:
13:a0:b2:ce:0e:b9:01:25:a9:e8:84:65:83:8a:84:fd:70:cd:
32:c1:cb:b2:96:10:24:56:e5:27:c4:9d:50:bf:16:c8:7a:b7:
71:bb:a6:0f:03:50:05:96:08:bb:dc:d0:c5:f2:1d:5f:e1:85:
fd:dc:69:2c:1b:cc:55:e2:44:e3:83:9b:0c:df:fa:20:12:8a:
6b:ec:f3:77:a9:93:6e:4c:f2:37:fb:f6:d9:58:e1:6d:27:40:
ae:2d:a4:fd:35:14:0b:61:eb:b0:30:4b:a5:98:40:fe:10:f4:
4f:f7:e9:16:21:fd:87:78:3e:33:79:6d:5c:2b:7c:5c:13:bd:
02:e8:e5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org