Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sUecHsh6y4Ne0ISqsEHVnetP7G4.roa
File: sUecHsh6y4Ne0ISqsEHVnetP7G4.roa (raw, json)
Hash identifier: kaRe2SYLK+SkWg0UWtHZnqEA2Nyq5If0JpMHYzeFNCA=
Subject key identifier: B1:47:9C:1E:C8:7A:CB:83:5E:D0:84:AA:B0:41:D5:9D:EB:4F:EC:6E
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018FAEED5E2966868D3B690947F519610AFB
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sUecHsh6y4Ne0ISqsEHVnetP7G4.roa
Signing time: Sat 25 May 2024 08:45:42 +0000
ROA not before: Sat 25 May 2024 08:45:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 62.72.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 14:13:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ae:ed:5e:29:66:86:8d:3b:69:09:47:f5:19:61:0a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: May 25 08:45:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1479c1ec87acb835ed084aab041d59deb4fec6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:7c:55:73:74:30:b9:7e:91:f1:c0:5d:47:8c:
d1:9b:26:39:db:27:74:04:fe:4a:a5:12:04:20:3a:
65:e0:7f:5d:8a:3b:eb:53:98:b5:61:df:50:7f:e9:
6e:14:3b:c7:f4:41:1c:26:04:63:69:dd:ec:5d:7d:
40:72:d2:53:23:9d:6b:a1:3d:7a:2f:fb:ac:20:b3:
83:0d:73:12:7e:f8:67:0a:99:0b:e5:20:34:fa:fc:
34:40:d3:91:d2:6a:44:7f:eb:84:9c:38:7d:45:2e:
47:09:ed:d7:a0:a8:20:e0:98:36:06:26:0b:8f:4c:
bd:52:60:58:c2:64:c3:54:cf:a1:78:ec:43:99:9a:
b0:cc:47:da:ea:a2:b9:fa:18:bd:24:d4:d4:99:3f:
80:20:3c:df:08:84:68:d0:24:19:5a:e3:20:b5:cb:
03:03:95:b9:f4:63:1c:ce:64:ef:d2:ca:99:c7:1b:
2d:5b:b7:c6:0c:3a:0c:65:ab:84:31:81:37:42:f6:
7a:e0:0b:38:f1:3c:22:e7:39:6f:bd:24:72:34:fe:
3e:05:a6:89:99:83:b7:ac:44:7c:a0:0e:12:6a:07:
99:39:8b:1e:06:f3:01:56:84:b8:2c:73:0e:b1:d1:
34:53:99:16:8b:ee:1b:9a:91:6b:d9:fc:42:ff:de:
4f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:47:9C:1E:C8:7A:CB:83:5E:D0:84:AA:B0:41:D5:9D:EB:4F:EC:6E
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sUecHsh6y4Ne0ISqsEHVnetP7G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.188.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:e3:d6:08:be:a6:2f:6b:85:de:1d:06:81:49:44:65:65:ee:
3d:2d:a8:12:f3:95:43:fc:46:6f:a2:4d:ff:ab:bb:5d:a4:a3:
fc:d7:1c:cc:2d:79:ff:26:97:db:43:00:aa:43:bf:5a:10:ec:
a3:4f:f1:51:05:3a:d3:0b:91:5b:4f:a4:d5:14:95:38:05:08:
49:7c:62:c0:9e:ff:a1:be:5e:56:24:c8:51:1a:93:f1:d0:7f:
b0:c4:bd:5b:02:cd:e3:01:e3:12:70:0d:a2:e4:6e:84:74:10:
17:bb:dd:10:70:14:9b:05:46:f5:ad:26:df:0a:dc:31:48:50:
a7:26:cf:a4:57:c9:c9:27:7b:c6:82:41:59:fb:1e:77:f9:7f:
4f:a0:fb:f8:f6:5c:ae:eb:ce:ec:10:58:79:e6:36:27:c4:42:
c4:9d:ce:e7:77:30:90:c0:c4:58:21:60:d9:c5:81:01:51:d8:
4a:19:13:36:33:88:11:3b:ae:03:cc:59:83:36:a1:be:01:7f:
10:d2:98:2c:32:c0:94:36:cf:1c:04:cb:6d:9a:13:50:fa:db:
6e:11:b4:da:a9:12:a4:d8:e6:61:b3:09:d3:33:ac:41:d6:74:
1d:56:ee:6a:a1:e1:be:1d:26:da:b1:b5:f0:f0:d5:ae:f4:5d:
ac:4c:71:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org