Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u3Ds1Cj29LPmXBkSMgmIE4woFRE.roa
File: u3Ds1Cj29LPmXBkSMgmIE4woFRE.roa (raw, json)
Hash identifier: 4PnjRpWYka/htQk1pyvn2C8FrGtyg5zNcRKMGsjPPkY=
Subject key identifier: BB:70:EC:D4:28:F6:F4:B3:E6:5C:19:12:32:09:88:13:8C:28:15:11
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 01856F4B7F04CDBDA8175326114426021E1E
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u3Ds1Cj29LPmXBkSMgmIE4woFRE.roa
Signing time: Sun 01 Jan 2023 21:44:56 +0000
ROA not before: Sun 01 Jan 2023 21:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42675
IP address blocks: 62.72.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 09:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:7f:04:cd:bd:a8:17:53:26:11:44:26:02:1e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 1 21:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb70ecd428f6f4b3e65c1912320988138c281511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b3:91:48:78:bc:41:e0:c6:ac:3d:eb:a6:65:
ea:57:2b:45:52:d9:df:7c:72:66:1f:90:bb:f4:5b:
ac:df:a8:b0:82:b5:09:23:d3:f5:b9:e1:13:06:cd:
45:50:78:ac:a6:7e:57:ac:cd:eb:43:4d:71:0e:df:
9a:a9:99:74:08:33:49:dd:d3:99:25:26:fb:e8:be:
ca:39:45:a8:48:98:e9:d3:c7:8e:7c:a9:5c:0a:55:
e2:10:e8:b6:69:69:7c:4c:f1:c8:db:af:07:2f:91:
5c:8e:74:09:ee:99:35:32:59:73:86:73:b0:68:82:
42:b5:32:6f:5d:9a:63:7b:0e:70:a6:6e:e1:55:f5:
22:66:cc:07:8c:25:f7:d4:0e:da:90:0d:f4:c8:b6:
6d:1e:d6:07:e4:ed:b8:ca:79:7b:d3:b3:53:54:cd:
ce:d1:f9:16:f1:b2:d9:d0:56:0d:20:81:ef:ad:1b:
83:0f:2d:8b:26:9b:72:11:5e:f5:68:b4:3e:97:fa:
3d:70:d1:1b:04:76:ed:a9:76:5e:0c:5b:df:35:c7:
8c:3a:3c:27:04:ce:ed:a3:a7:2b:84:81:fd:48:1d:
fb:df:04:bd:f1:02:43:b6:a3:8e:db:00:65:d6:fc:
52:b7:09:64:f9:2f:1c:28:71:bb:f7:c5:68:60:9c:
96:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:70:EC:D4:28:F6:F4:B3:E6:5C:19:12:32:09:88:13:8C:28:15:11
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u3Ds1Cj29LPmXBkSMgmIE4woFRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.179.0/24
Signature Algorithm: sha256WithRSAEncryption
31:de:85:82:84:dd:25:a6:4a:f3:3c:4b:b4:f1:b9:94:16:8e:
6c:9e:e0:47:b0:a4:b4:bf:40:b4:fd:ca:88:00:e1:6a:0e:49:
93:13:ea:36:8a:b2:55:fa:e5:0e:11:1f:8c:d9:05:c6:b5:3e:
ba:f7:2e:56:95:a6:0f:6a:33:67:ca:e5:f0:62:0d:ce:33:f8:
fd:4e:80:5a:ea:6c:24:31:44:56:e0:5e:32:3c:19:cb:54:a2:
08:b3:62:b6:bd:14:e9:d2:ed:12:a6:26:8a:50:fb:ec:87:ac:
76:f9:e4:3c:4b:4d:98:82:16:a9:f4:60:3b:12:bd:4b:49:6c:
5c:ed:ca:d3:f4:1d:fe:40:e0:48:12:7a:b3:2f:6a:0c:4a:f5:
dd:c5:12:78:c3:e9:f0:ca:aa:b1:d7:6e:0e:f3:00:5f:2a:f6:
29:4e:49:04:83:7e:0f:93:cd:f2:05:26:5c:01:6e:eb:5e:49:
e1:89:ea:da:a8:4e:21:c0:df:8b:9d:8a:ea:6f:ca:03:f8:a5:
bb:71:d1:8d:c3:ee:02:b3:96:50:a2:3e:52:a3:3e:3c:b2:a4:
be:ef:56:b1:12:01:67:89:d5:ee:c5:2b:11:49:c1:91:28:ea:
b8:10:df:76:82:17:c7:97:ae:0e:c5:27:c4:53:86:cd:28:50:
39:9a:97:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org