Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ta_rbn8wKdZ71fo3LrwGlwD_hHY.roa
File: ta_rbn8wKdZ71fo3LrwGlwD_hHY.roa (raw, json)
Hash identifier: Cwt3XUTzVov4/zh5XH9auHJk24StCms2BmT/M94iwh0=
Subject key identifier: B5:AF:EB:6E:7F:30:29:D6:7B:D5:FA:37:2E:BC:06:97:00:FF:84:76
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189CEAD6A0135A953175B3C3E8FC60B15B3
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ta_rbn8wKdZ71fo3LrwGlwD_hHY.roa
Signing time: Mon 07 Aug 2023 06:26:58 +0000
ROA not before: Mon 07 Aug 2023 06:26:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 62.72.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Dec 2023 06:52:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ce:ad:6a:01:35:a9:53:17:5b:3c:3e:8f:c6:0b:15:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 7 06:26:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5afeb6e7f3029d67bd5fa372ebc069700ff8476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b0:8d:a3:24:8c:03:63:fe:01:cc:e5:13:04:
9f:65:78:8a:d9:3e:b8:df:57:87:93:cd:4f:99:7b:
d9:9d:93:01:6a:47:e6:14:48:59:2a:7a:32:e8:4e:
50:54:d1:0f:d5:f5:b7:5e:ed:77:43:93:f2:b3:26:
01:1f:db:e7:b5:fd:64:5b:61:84:1a:77:81:a8:e4:
d6:05:24:38:90:52:b3:7e:29:84:ad:54:4c:01:c3:
ca:d4:c2:0c:f1:f7:5c:50:43:66:74:e8:00:5e:3a:
65:a5:3a:0d:05:27:ea:ce:fc:85:dd:36:ab:96:8c:
fc:d4:ae:7e:d7:1b:ac:6c:ec:f4:ed:51:d2:df:c2:
51:b7:42:e0:dd:de:69:c0:eb:d2:8b:27:0f:97:94:
93:f9:a8:c6:88:e2:8e:a7:a3:37:0a:83:c1:b6:9c:
63:5d:17:cc:a8:1d:b0:5e:a8:0c:e1:50:f6:3e:1c:
69:e7:1b:70:54:87:22:99:ef:61:90:88:ff:52:b7:
4f:3e:b0:4e:38:c0:c0:eb:81:3f:2d:f9:75:53:45:
f0:f1:0e:47:b9:38:33:14:89:af:bc:f8:9b:01:73:
b3:5d:e4:04:50:18:34:00:8e:36:bc:9c:cb:45:a1:
30:f9:8f:5b:1c:dd:5b:5c:07:2c:76:f4:a5:e9:46:
81:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AF:EB:6E:7F:30:29:D6:7B:D5:FA:37:2E:BC:06:97:00:FF:84:76
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ta_rbn8wKdZ71fo3LrwGlwD_hHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.191.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:0e:13:7d:5e:b1:54:d9:0f:78:4f:67:8b:3f:65:71:ea:16:
39:06:c3:a5:85:15:1f:95:b4:90:6b:21:40:86:ff:5f:7c:26:
10:df:1e:fc:f3:f9:fe:ea:be:69:ef:2b:e3:0f:5b:ba:e4:7b:
10:6e:ed:de:1a:09:46:63:ad:40:af:d8:43:5e:07:d3:c9:07:
3b:12:7b:9e:0c:51:57:78:71:22:93:8e:77:d7:e2:ee:93:14:
7c:37:6b:fe:17:a7:6b:12:f2:12:64:5d:57:2d:30:4b:d9:f8:
8f:3f:51:91:bc:48:2b:82:04:28:b1:0e:73:16:23:a1:0e:4f:
2c:51:41:46:95:cf:ce:d8:52:3d:59:ce:ff:2c:05:15:dc:7e:
80:82:aa:a3:3f:43:d4:ec:63:b4:4a:9b:c4:cc:5d:0d:78:ab:
c6:5f:19:1c:95:73:7b:76:75:5c:38:8e:90:05:2a:d2:a1:fd:
ab:dd:ef:af:50:f7:08:76:8c:f9:d0:b7:35:64:7e:d4:46:2c:
04:47:3e:30:db:61:ba:59:e6:24:74:a3:1b:30:fd:45:2e:1e:
31:e2:1a:e8:00:15:65:f1:ed:61:28:ae:b7:78:7d:ea:ea:f8:
f4:5c:3b:bd:8e:0b:1b:7e:88:5b:82:94:76:a6:1e:70:13:89:
01:82:47:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org