Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/vpfyfywExl2nrfPjDcMfgEYipAA.roa
File: vpfyfywExl2nrfPjDcMfgEYipAA.roa (raw, json)
Hash identifier: XK0VojMzz8gde71OyT7gd94n3YSz48vRfzo2jS5TI+k=
Subject key identifier: BE:97:F2:7F:2C:04:C6:5D:A7:AD:F3:E3:0D:C3:1F:80:46:22:A4:00
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018C6807BB7024523266E51BBEA23C72C6AB
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/vpfyfywExl2nrfPjDcMfgEYipAA.roa
Signing time: Thu 14 Dec 2023 11:13:06 +0000
ROA not before: Thu 14 Dec 2023 11:13:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/23 maxlen: 23
62.72.164.0/23 maxlen: 23
62.72.164.0/22 maxlen: 22
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.171.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
81.21.14.0/23 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.4.0/22 maxlen: 24
176.57.59.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
176.57.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Dec 2023 18:09:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:68:07:bb:70:24:52:32:66:e5:1b:be:a2:3c:72:c6:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Dec 14 11:13:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be97f27f2c04c65da7adf3e30dc31f804622a400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8a:24:e2:29:05:99:dd:f7:d1:d6:bd:5d:ff:
96:d4:7d:50:86:6c:53:5e:90:11:de:be:94:21:a4:
e0:46:57:53:bf:c6:02:b4:72:0e:03:85:e2:e3:7d:
4c:9f:ed:93:ae:4f:93:f6:fd:78:3d:87:03:a5:ff:
81:0e:0e:63:1d:dc:4f:c4:01:0f:a5:e2:b6:9d:f5:
a8:8c:c6:05:f4:aa:f0:5b:42:ec:68:ec:48:aa:59:
1f:c9:62:e6:4d:4c:50:e1:23:9d:c7:22:b9:68:e4:
d1:6c:58:7f:a7:29:31:05:f6:37:64:45:5d:af:e3:
60:28:b2:a1:23:3e:f1:79:a8:57:8d:0c:a2:ac:40:
e9:3c:3d:11:bc:24:28:2d:5d:7d:b2:b3:75:2d:75:
75:ed:67:32:3b:c4:fd:77:21:6d:2e:f3:c5:5b:01:
2a:cd:17:40:08:c6:22:35:52:d3:1d:16:34:7d:e2:
a7:a3:bf:d0:be:91:4d:e3:29:2c:c0:18:0c:d6:1b:
3e:32:a8:75:f0:46:a6:1d:6e:7c:39:a4:88:e7:7f:
76:d1:f6:a0:0a:ff:a2:e4:a9:68:28:54:43:c5:d5:
e8:cd:c9:b9:dc:88:7c:d0:8f:56:f9:74:20:ce:ff:
7f:68:1d:52:92:4b:2d:f0:32:43:b1:aa:a2:0f:43:
16:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:97:F2:7F:2C:04:C6:5D:A7:AD:F3:E3:0D:C3:1F:80:46:22:A4:00
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/vpfyfywExl2nrfPjDcMfgEYipAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0-62.72.171.255
62.72.174.0/23
62.72.181.0/24
62.72.184.0/22
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a6:46:b1:0e:63:13:02:a8:66:1d:18:7f:4a:8d:7e:25:c2:
a6:d5:f3:ff:e9:81:a2:56:8d:6f:58:86:a4:f8:bc:25:47:a3:
8a:ee:40:f0:95:78:3f:cf:d0:e9:1a:90:81:24:ce:89:fe:ee:
e8:10:d5:98:4a:cb:01:b7:e8:d3:66:18:62:44:30:67:28:03:
9c:e1:c6:b0:33:40:19:66:41:70:4d:1e:ba:77:74:dd:14:01:
d1:08:cd:3b:c2:d5:43:a7:3a:0e:af:5a:00:a6:cd:8b:0d:e3:
14:4f:75:b2:11:d2:59:47:63:9d:61:71:fc:7a:46:81:91:02:
91:2c:1d:1b:bb:f7:77:4c:85:54:69:e1:7c:b7:ba:06:35:31:
9b:f4:2d:8b:16:bf:b1:40:87:11:2e:09:d7:fe:d1:10:ae:b1:
bc:c2:51:8d:ab:1a:08:4a:1d:e2:52:ae:86:71:d9:06:e0:46:
1c:fd:aa:89:bd:06:64:32:4e:78:6f:27:84:0e:de:39:b5:43:
4d:2a:c5:d0:00:1f:fb:d0:a0:85:c2:c6:17:c5:e9:47:c8:ac:
4c:fd:49:c3:1b:45:85:d5:fb:24:a9:62:6f:56:ad:c4:af:6f:
46:57:ed:31:50:be:81:18:e3:89:6e:df:e7:d6:67:3d:67:06:
6d:b5:49:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org