Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/xwiKyUR68xtD2-vN5SFC-PQjPGQ.roa
File: xwiKyUR68xtD2-vN5SFC-PQjPGQ.roa (raw, json)
Hash identifier: 7/bu0b5dNKF5elcUtWYdj62PqSDxdZb5g/bEpGUlwBI=
Subject key identifier: C7:08:8A:C9:44:7A:F3:1B:43:DB:EB:CD:E5:21:42:F8:F4:23:3C:64
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018AE26C40CE0246CCDE083EB96BC836AB89
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/xwiKyUR68xtD2-vN5SFC-PQjPGQ.roa
Signing time: Fri 29 Sep 2023 19:30:59 +0000
ROA not before: Fri 29 Sep 2023 19:30:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.21.12.0/22 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.58.0/24 maxlen: 24
176.57.59.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
62.72.162.0/24 maxlen: 24
62.72.162.0/23 maxlen: 23
62.72.163.0/24 maxlen: 24
62.72.164.0/23 maxlen: 23
62.72.164.0/24 maxlen: 24
62.72.165.0/24 maxlen: 24
62.72.161.0/24 maxlen: 24
62.72.169.0/24 maxlen: 24
62.72.168.0/22 maxlen: 22
62.72.170.0/24 maxlen: 24
62.72.168.0/24 maxlen: 24
62.72.177.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.173.0/24 maxlen: 24
62.72.174.0/23 maxlen: 23
62.72.174.0/24 maxlen: 24
62.72.175.0/24 maxlen: 24
62.72.184.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.180.0/24 maxlen: 24
62.72.184.0/22 maxlen: 22
62.72.181.0/24 maxlen: 24
62.72.182.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
62.72.188.0/24 maxlen: 24
62.72.189.0/24 maxlen: 24
81.21.2.0/24 maxlen: 24
81.21.2.0/23 maxlen: 23
81.21.3.0/24 maxlen: 24
81.21.4.0/22 maxlen: 24
81.21.1.0/24 maxlen: 24
81.21.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 01 Oct 2023 17:19:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e2:6c:40:ce:02:46:cc:de:08:3e:b9:6b:c8:36:ab:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 29 19:30:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7088ac9447af31b43dbebcde52142f8f4233c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b8:2f:b0:ac:df:54:fb:7d:43:8c:b2:5c:16:
ea:b8:39:f7:a6:08:35:5a:99:4c:69:95:73:a7:7e:
50:b9:ab:68:99:75:03:8e:14:0d:26:a1:38:e8:a9:
77:63:47:af:5d:8a:2a:c6:62:ff:d0:de:af:b7:ea:
8d:8c:75:1e:ec:6b:4f:c0:b4:6c:2f:73:7e:38:52:
9a:40:a4:6b:7d:74:1f:13:33:35:88:b9:8f:98:7c:
44:08:a6:24:87:f0:37:93:53:77:62:c3:ba:bf:52:
ad:6a:ee:95:00:3e:b4:3f:c6:4c:7b:58:1e:a6:1d:
9b:8d:27:ba:30:f8:6b:e5:38:62:ab:66:8f:8e:0a:
66:a3:5a:ea:12:e6:bb:26:31:00:c6:ce:15:7d:dc:
b7:b9:f3:f7:47:f3:50:4f:fd:69:e6:5f:b6:39:2a:
cd:9b:df:69:78:94:c7:4c:ca:a7:dc:1d:b9:ab:9a:
b3:49:86:14:45:fc:0c:03:c8:75:e5:e9:55:1d:39:
83:ce:24:d2:7a:96:63:30:66:77:95:fa:59:86:e3:
d2:4d:51:3a:11:2c:ab:af:bf:8e:b0:38:57:19:06:
b1:83:59:32:ef:aa:fb:8b:f6:77:09:86:2b:a4:06:
6b:47:0d:7f:0d:bf:85:c0:e6:db:cc:e2:df:e1:5e:
c8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:08:8A:C9:44:7A:F3:1B:43:DB:EB:CD:E5:21:42:F8:F4:23:3C:64
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/xwiKyUR68xtD2-vN5SFC-PQjPGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.161.0-62.72.165.255
62.72.168.0/22
62.72.173.0-62.72.175.255
62.72.177.0/24
62.72.179.0-62.72.182.255
62.72.184.0-62.72.189.255
62.72.191.0/24
81.21.1.0-81.21.7.255
81.21.10.0-81.21.15.255
176.57.51.0/24
176.57.53.0/24
176.57.58.0/23
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:b1:80:ea:37:33:54:66:22:6d:0e:54:60:3a:69:48:9e:2a:
83:9e:d1:0d:74:73:5b:b6:7d:71:60:7c:57:64:66:f1:8a:87:
62:24:98:b5:d9:91:5e:5b:bf:d7:02:59:e5:eb:f5:44:2a:21:
de:63:6b:5b:6c:57:d4:d6:f5:e1:67:37:b4:18:61:f4:b8:8d:
0e:b4:c5:cb:99:f5:f5:8a:fd:a3:25:5b:6d:7c:07:2e:c6:79:
84:f8:91:7f:04:7d:ab:b3:89:58:dd:80:0b:31:d7:50:d6:d3:
7c:9e:f5:11:c2:eb:6e:3a:d8:be:a3:2a:19:72:ba:6f:9c:85:
97:f2:d4:ff:67:02:2a:c8:03:ed:d4:8b:b7:73:87:97:fb:94:
0b:1b:70:1a:6c:f8:32:c3:9d:f9:17:89:54:bc:d2:9f:04:6e:
c1:b9:cf:5b:b6:45:c6:ab:5f:13:ee:4d:f6:e5:95:60:9c:7c:
bc:b6:65:77:9f:51:c6:5a:02:43:07:04:5c:bd:02:d8:39:5a:
61:24:62:70:85:38:71:e2:68:a9:2a:78:58:1e:55:37:64:b8:
cb:ce:8c:c2:b3:26:c6:c6:5d:ad:46:ee:57:9a:1e:c5:0d:02:
d9:66:58:1a:71:26:32:73:94:d9:f1:51:44:6e:d5:00:58:d9:
ee:c5:d0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org