Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/tnNLEVePcTH-EIsVBtmJXHo9-3c.roa
File: tnNLEVePcTH-EIsVBtmJXHo9-3c.roa (raw, json)
Hash identifier: d8TaMbc16bx6bHs0sU0jn6qHumfC8yiBjrtyVXT1x3s=
Subject key identifier: B6:73:4B:11:57:8F:71:31:FE:10:8B:15:06:D9:89:5C:7A:3D:FB:77
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B657F7E16BF08A435C5C3DEF3F4186C07
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/tnNLEVePcTH-EIsVBtmJXHo9-3c.roa
Signing time: Wed 25 Oct 2023 06:22:16 +0000
ROA not before: Wed 25 Oct 2023 06:22:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.164.0/22 maxlen: 22
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 31 Oct 2023 06:23:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:7f:7e:16:bf:08:a4:35:c5:c3:de:f3:f4:18:6c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 25 06:22:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6734b11578f7131fe108b1506d9895c7a3dfb77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1d:1f:fc:c0:9b:aa:cb:96:ae:d7:2f:51:2c:
7f:8c:64:d5:72:40:f7:22:d9:70:56:0e:94:d0:ec:
c6:35:3f:2b:73:5e:8e:85:76:21:5c:26:bd:59:8a:
2e:60:18:22:e5:75:35:12:9f:a3:8e:fc:0f:ef:d4:
7a:4a:18:d4:cd:99:98:49:7e:d6:f0:7b:09:a4:da:
1a:82:28:c7:62:2b:1a:07:af:d9:bf:f9:86:3f:20:
38:b2:1f:d8:b8:90:74:d1:f3:73:0c:3d:0f:49:d2:
81:a9:2d:77:b3:0b:33:e8:44:be:c5:6c:54:77:9a:
0d:b4:fe:9a:c9:c8:86:48:69:a1:6c:80:10:0a:69:
0d:ef:91:51:95:99:22:26:ab:2f:f3:60:26:90:7f:
c4:d5:6d:e3:29:b8:0a:76:92:11:f8:86:51:78:a8:
56:c2:f0:9f:e9:e7:10:45:74:6c:db:96:13:c2:99:
b1:ca:4b:cf:55:46:04:7f:ee:a1:ac:d0:3e:45:59:
ec:94:71:00:d5:c3:86:40:8f:58:fb:55:7c:8a:39:
17:0e:c1:7b:ba:09:70:c9:a0:27:5f:86:00:70:1e:
03:33:04:cf:53:b8:c6:cd:f4:f0:c0:03:32:a4:33:
14:f2:35:f1:3f:67:a9:60:3c:da:e2:9a:09:a4:6a:
ad:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:73:4B:11:57:8F:71:31:FE:10:8B:15:06:D9:89:5C:7A:3D:FB:77
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/tnNLEVePcTH-EIsVBtmJXHo9-3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
26:10:c4:eb:35:a8:08:ab:c7:a8:0a:9e:13:c3:a1:a1:f4:01:
37:65:fe:7d:f0:36:99:a7:d3:7e:4b:21:fe:68:b4:20:30:e6:
6c:93:44:df:43:6a:7c:71:dc:80:ed:b7:73:29:2b:da:30:95:
5b:7a:60:dc:29:0e:de:bb:c7:5a:8e:cc:68:09:61:ee:ea:e0:
73:13:91:08:8f:49:b9:8a:d8:14:48:4e:e2:4a:ae:27:bb:dc:
dc:b1:52:57:b9:38:0b:34:0b:f4:08:de:00:2d:66:74:ed:08:
c1:c3:02:af:10:3f:88:45:a1:dd:6e:d4:8c:d1:c9:31:ef:5f:
49:da:21:83:83:71:88:52:c2:37:23:e3:35:14:d5:f9:92:6c:
f4:d8:24:56:5a:e0:f2:e3:a7:21:27:0f:8a:0b:2a:dc:34:2b:
52:d2:50:ac:94:1b:ee:36:c3:22:7a:5e:a2:f5:ab:23:f5:8b:
8c:b8:c8:54:53:e3:fb:7f:05:70:5e:8a:49:92:71:8e:c8:ef:
b1:3a:be:f1:ca:c0:54:af:51:38:48:6a:56:17:35:df:e8:16:
f5:3c:53:fa:e9:81:bc:5a:a8:56:42:36:e4:6e:a3:43:a7:27:
21:2c:bc:c9:ac:bb:56:9b:9c:0d:39:b9:86:61:ef:97:80:88:
c0:ae:e3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org