Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ytNeEP03UmzhykYkPWS-cAoTtfk.roa
File: ytNeEP03UmzhykYkPWS-cAoTtfk.roa (raw, json)
Hash identifier: Exv4ieP+dZLI1WeRQyz8j6LTEbFbgmbQIVkMrR0ceyQ=
Subject key identifier: CA:D3:5E:10:FD:37:52:6C:E1:CA:46:24:3D:64:BE:70:0A:13:B5:F9
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0188AB7CA3112D5AD53A61DA36822A80974C
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ytNeEP03UmzhykYkPWS-cAoTtfk.roa
Signing time: Sun 11 Jun 2023 17:24:12 +0000
ROA not before: Sun 11 Jun 2023 17:24:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 62.72.162.0/24 maxlen: 24
62.72.185.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
62.72.190.0/24 maxlen: 24
62.72.191.0/24 maxlen: 24
62.72.187.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
176.57.62.0/24 maxlen: 24
176.57.63.0/24 maxlen: 24
81.21.12.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Jun 2023 21:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ab:7c:a3:11:2d:5a:d5:3a:61:da:36:82:2a:80:97:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jun 11 17:24:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cad35e10fd37526ce1ca46243d64be700a13b5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9b:1b:f7:bd:82:ee:3c:66:e4:be:37:57:93:
81:f2:49:2f:51:fb:1d:ea:ba:f0:2e:15:98:eb:90:
46:f8:bb:af:11:6f:94:f6:6f:e5:ef:82:3b:ee:c7:
f9:cd:11:f9:f2:ae:24:f8:05:31:1e:08:1d:fa:aa:
49:e6:08:b1:6f:a5:0a:8e:22:29:27:66:a0:e6:43:
06:68:9b:4b:52:99:07:c1:a0:f8:ef:66:b7:b1:88:
7f:b6:03:6d:7f:19:4e:ce:4f:6e:98:be:9c:47:cb:
0a:ff:c1:6d:8b:07:fb:75:0c:52:14:89:05:36:f7:
07:41:b5:ed:21:fc:7d:3b:0f:86:06:d4:33:df:4a:
ea:b1:d5:66:83:97:c1:dc:00:cc:39:05:bf:60:80:
92:8c:7e:35:05:18:18:99:10:cf:06:18:11:ce:ec:
37:99:46:c8:46:9c:fd:e7:de:5a:3f:5a:90:b8:bf:
30:cd:23:81:b2:30:e2:4b:80:2c:96:eb:cb:4c:97:
fb:4d:09:4d:72:b4:9a:dd:52:62:2d:84:84:80:db:
c2:0c:9a:48:b6:a6:c1:df:ea:58:b2:f1:1d:9c:ab:
31:7a:0d:51:fc:70:5f:42:89:d6:b2:12:2c:23:56:
23:7e:ec:fc:03:5f:6d:ad:dd:c9:4b:8d:81:ac:c5:
d6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D3:5E:10:FD:37:52:6C:E1:CA:46:24:3D:64:BE:70:0A:13:B5:F9
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ytNeEP03UmzhykYkPWS-cAoTtfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.162.0/24
62.72.185.0-62.72.187.255
62.72.190.0/23
81.21.12.0/22
176.57.53.0/24
176.57.62.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:39:82:5f:af:cf:d3:13:96:e6:cc:6c:e2:06:09:38:58:79:
41:40:c0:79:78:f7:a8:c0:04:c5:be:3a:16:62:7c:4f:d9:3c:
24:4d:c4:db:42:34:56:78:ff:d9:1f:70:19:59:3b:d4:a2:f9:
7e:d4:c0:a4:e8:36:f9:99:a0:a6:b7:db:b8:24:28:05:0b:bd:
97:b8:d6:72:12:43:24:3e:a6:b4:ff:7d:f3:0e:4e:a7:48:94:
ef:33:77:bb:5d:20:41:94:74:be:5e:d9:ef:39:20:5b:6d:91:
72:67:85:91:c4:de:91:b6:58:ae:61:95:8e:6c:bf:4e:61:39:
01:d7:c8:5b:f9:5c:3d:b8:94:e6:fd:06:af:0e:d3:d9:7b:39:
d3:e3:ab:a7:ee:4e:86:34:6d:5d:ac:19:40:7b:d9:49:8c:a9:
ed:a5:96:15:95:b9:08:8c:ca:c9:4c:db:3a:bf:19:15:91:ec:
97:50:4e:b4:12:55:eb:6e:67:d6:9a:5e:f6:0e:af:f5:08:f1:
0e:54:d3:f6:16:b8:80:45:3d:c6:50:a6:2f:e4:9a:7c:12:3b:
28:02:7a:b8:dc:cb:74:80:78:cd:2d:77:ad:8e:2a:f9:73:d2:
c4:a5:3c:ee:b2:45:1f:57:b8:e6:5c:ee:58:d9:7b:a2:22:aa:
12:51:b8:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org