Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/uAE1hWTCf4OZOxjjN2Q8-KxyKL4.roa
File: uAE1hWTCf4OZOxjjN2Q8-KxyKL4.roa (raw, json)
Hash identifier: C5FCpSB4Vu3Ghr1tlzF8hWFj4pBm4QPxat95JiBCJrQ=
Subject key identifier: B8:01:35:85:64:C2:7F:83:99:3B:18:E3:37:64:3C:F8:AC:72:28:BE
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BDED0182A22A0B7B525B1979375EB3FE7
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/uAE1hWTCf4OZOxjjN2Q8-KxyKL4.roa
Signing time: Fri 17 Nov 2023 19:44:21 +0000
ROA not before: Fri 17 Nov 2023 19:44:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.174.0/23 maxlen: 23
62.72.180.0/23 maxlen: 23
62.72.184.0/22 maxlen: 22
62.72.191.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
81.21.11.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 12:25:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:d0:18:2a:22:a0:b7:b5:25:b1:97:93:75:eb:3f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 17 19:44:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b801358564c27f83993b18e337643cf8ac7228be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:da:c2:cd:b3:18:43:13:7e:83:65:de:67:87:
56:b1:97:dc:4e:93:ec:bb:dc:b1:d4:6f:ac:c8:3a:
08:56:ce:08:4f:0f:55:aa:e8:fd:88:1f:31:32:e9:
4a:2b:d5:0b:65:6b:ec:2a:cc:1f:2e:bb:55:b4:7a:
38:20:ab:dc:8e:4b:9e:ff:e3:de:22:58:60:a9:e8:
16:d1:c7:d7:9a:7e:52:ab:c0:4c:64:60:af:bd:68:
9f:83:ce:92:2a:03:89:58:ac:f5:6b:71:3a:7a:84:
98:a2:12:c3:df:d7:34:b8:bd:94:53:2a:b6:e8:3a:
c0:67:cd:6a:26:6d:b5:70:62:4f:fd:ad:e1:dd:43:
3b:69:87:7f:1e:37:8c:ca:3a:ce:c9:90:e4:31:55:
75:df:77:29:c6:34:10:9b:8a:c9:79:ea:e5:f8:2c:
a5:a5:46:0b:45:ec:4f:f6:bf:fa:91:32:63:7c:35:
26:1e:6a:2e:88:9d:dc:11:90:94:ad:0f:8e:18:07:
31:92:b0:44:e8:2f:93:d3:34:5b:c4:76:66:0b:3a:
5d:79:1c:bb:b0:98:0f:83:0f:4c:88:cb:1b:22:2e:
1e:6b:57:6d:5d:c5:d2:d8:ec:6e:a2:2b:d1:87:38:
e5:e3:9f:e8:57:9e:0e:14:95:41:3f:7c:4e:f0:5d:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:01:35:85:64:C2:7F:83:99:3B:18:E3:37:64:3C:F8:AC:72:28:BE
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/uAE1hWTCf4OZOxjjN2Q8-KxyKL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.180.0/23
62.72.184.0/22
62.72.189.0/24
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:c1:d3:de:e6:24:20:7b:1c:47:52:ff:cc:01:d6:f3:59:83:
4d:bb:35:44:bc:86:6b:8d:3c:8c:6a:36:b3:91:bf:a4:07:34:
59:72:47:03:d8:d8:c9:14:ad:47:10:75:c4:fa:5a:ac:f6:5c:
28:a7:d6:75:ce:da:60:42:37:da:7c:5e:11:1d:5c:b3:53:e1:
ec:12:4e:f8:dd:91:62:07:44:09:6e:c4:8b:cf:c0:98:f5:05:
d9:31:67:f8:e2:7f:e9:17:b6:4f:69:29:18:95:15:2e:1e:44:
89:d1:46:e9:d9:1b:6d:da:6f:d6:68:68:aa:25:02:22:b3:53:
d5:54:29:3c:b8:f0:90:31:85:46:ce:54:55:32:d9:de:ad:d9:
04:ab:d0:62:2c:58:c7:9d:e7:cb:86:9d:30:e2:eb:16:e2:4b:
bf:69:aa:2d:f6:f3:94:a8:7a:ad:15:f6:a7:0f:be:66:6c:61:
d8:87:8b:1b:f9:28:db:c4:90:bb:ab:96:f1:00:15:e0:df:37:
64:96:bf:22:c2:81:2c:02:c0:2a:62:e7:32:5c:7e:b7:61:d7:
fa:4b:91:cc:27:43:25:37:77:11:fc:fd:57:21:9b:9b:9a:2b:
e1:ae:f5:0e:dc:d3:56:29:09:a3:71:5a:03:94:e8:33:bf:2c:
fa:97:57:09
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAYve0BgqIqC3tSWxl5N16z/nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMTE3MTk0NDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODAxMzU4NTY0YzI3ZjgzOTkzYjE4ZTMzNzY0M2NmOGFjNzIyOGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdrCzbMYQxN+g2XeZ4dWsZfcTpPs
u9yx1G+syDoIVs4ITw9Vquj9iB8xMulKK9ULZWvsKswfLrtVtHo4IKvcjkue/+Pe
IlhgqegW0cfXmn5Sq8BMZGCvvWifg86SKgOJWKz1a3E6eoSYohLD39c0uL2UUyq2
6DrAZ81qJm21cGJP/a3h3UM7aYd/HjeMyjrOyZDkMVV133cpxjQQm4rJeerl+Cyl
pUYLRexP9r/6kTJjfDUmHmouiJ3cEZCUrQ+OGAcxkrBE6C+T0zRbxHZmCzpdeRy7
sJgPgw9MiMsbIi4ea1dtXcXS2OxuoivRhzjl45/oV54OFJVBP3xO8F2qawIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFLgBNYVkwn+DmTsY4zdkPPiscii+MB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvdUFFMWhXVENmNE9aT3hqak4yUTgtS3h5S0w0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgMAwDBAE+SKID
BAI+SKgDBAE+SK4DBAE+SLQDBAI+SLgDBAA+SL0DBAA+SL8wDAMEAVEVAgMEA1EV
ADAMAwQBURUKAwQEURUAAwQAsDkzAwQAsDk1AwQBsDk6AwQAsDk/MA0GCSqGSIb3
DQEBCwUAA4IBAQDCwdPe5iQgexxHUv/MAdbzWYNNuzVEvIZrjTyMajazkb+kBzRZ
ckcD2NjJFK1HEHXE+lqs9lwop9Z1ztpgQjfafF4RHVyzU+HsEk743ZFiB0QJbsSL
z8CY9QXZMWf44n/pF7ZPaSkYlRUuHkSJ0Ubp2Rtt2m/WaGiqJQIis1PVVCk8uPCQ
MYVGzlRVMtnerdkEq9BiLFjHnefLhp0w4usW4ku/aaot9vOUqHqtFfanD75mbGHY
h4sb+SjbxJC7q5bxABXg3zdklr8iwoEsAsAqYucyXH63Ydf6S5HMJ0MlN3cR/P1X
IZubmivhrvUO3NNWKQmjcVoDlOgzvyz6l1cJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org