Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/x5_CWtDmkZypLBhJ0xTpCSMVa1U.roa
File: x5_CWtDmkZypLBhJ0xTpCSMVa1U.roa (raw, json)
Hash identifier: JEI7cU9Twla5duMKfon/UKy5m9vXOpXx70f74X6oDvg=
Subject key identifier: C7:9F:C2:5A:D0:E6:91:9C:A9:2C:18:49:D3:14:E9:09:23:15:6B:55
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B05F2DB55EAD1FCDA2C87EF1F5DA5E968
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/x5_CWtDmkZypLBhJ0xTpCSMVa1U.roa
Signing time: Fri 06 Oct 2023 17:04:43 +0000
ROA not before: Fri 06 Oct 2023 17:04:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.166.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/23 maxlen: 23
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.4.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 10 Oct 2023 13:07:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:05:f2:db:55:ea:d1:fc:da:2c:87:ef:1f:5d:a5:e9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 6 17:04:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c79fc25ad0e6919ca92c1849d314e90923156b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d4:b4:32:b8:28:ee:81:98:8a:ac:4b:2c:33:
ef:cf:71:ee:b5:98:b9:c9:a3:f7:f1:af:10:cb:ad:
49:79:fc:d6:a4:9f:6c:61:d9:c7:a5:70:e9:bd:bd:
90:64:c2:c6:2a:df:84:a5:c6:c1:3c:22:1d:eb:41:
f1:d7:34:35:dc:f9:c7:d0:8f:fd:41:64:5a:a5:80:
11:88:d4:34:8b:83:93:45:82:be:7d:10:d1:42:c6:
12:05:f2:3a:f5:61:64:5c:ea:43:25:43:c2:ef:5d:
84:46:4b:3a:df:de:ad:64:63:e5:3e:fb:40:1d:67:
98:c6:5c:1f:ad:a1:eb:38:be:77:74:ca:9b:39:92:
5e:14:ad:62:9a:56:72:09:66:5a:8b:0c:a2:a6:46:
a5:b0:a8:bb:af:37:8e:f1:48:b6:d5:72:56:e4:0a:
ab:6e:c8:25:22:8a:c4:91:47:84:9c:01:60:07:dd:
4a:f8:7e:ce:d8:24:b2:93:16:e1:53:fa:45:0e:ab:
40:36:4d:53:7b:1f:a2:44:3a:c3:34:fd:dd:18:d9:
a1:69:55:fe:7b:f1:fd:91:3a:64:3a:d2:d2:c0:5f:
b0:90:a6:a2:ff:d9:ec:70:e6:50:b9:c1:2f:1e:9b:
f5:f4:bf:42:bd:8f:db:02:fa:cf:d2:1a:3b:47:3f:
16:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9F:C2:5A:D0:E6:91:9C:A9:2C:18:49:D3:14:E9:09:23:15:6B:55
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/x5_CWtDmkZypLBhJ0xTpCSMVa1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.171.255
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.2.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.63.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:eb:52:41:a3:96:f2:ac:5f:e6:56:fb:27:56:e5:cd:cf:3e:
28:20:59:00:0e:16:c8:f7:15:36:c2:9a:66:9d:27:db:d9:4e:
75:66:3d:f3:2a:fd:a7:69:18:13:27:87:6b:ee:7a:e3:ad:a1:
b4:82:83:b5:0e:d1:10:0f:6f:65:74:f7:9f:f0:94:9d:ee:f7:
a0:a3:4c:40:bc:00:16:c6:99:c3:37:3c:af:fd:37:12:5b:5b:
00:61:65:37:fc:d7:a3:26:e0:a9:99:49:c3:91:d6:64:db:54:
ab:44:18:2f:5b:0a:33:9b:a6:a6:fb:00:f1:0d:02:45:cc:7f:
97:7e:9a:f7:db:96:86:7a:1a:ad:a8:77:da:50:65:49:c9:bf:
9a:66:64:25:48:af:bf:93:36:0e:e6:38:5e:b5:65:c1:10:87:
ed:c4:16:9a:6e:f4:56:f9:e8:2d:50:0d:54:4d:e2:78:96:15:
e7:00:13:d7:f6:5b:34:5b:2c:17:35:8f:bd:98:4e:fa:ab:1a:
a8:f2:78:65:a9:4f:59:61:29:0d:64:15:e8:8e:d0:d9:cb:3a:
e5:9b:0d:d6:dd:26:1d:d4:89:83:cc:8d:65:3e:c0:d0:2f:d8:
b5:5d:f3:e4:84:d7:97:8e:dd:89:a0:aa:52:c2:22:fd:c9:16:
04:a8:01:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org