Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/0WepNuVJ6GiEcfnEdOPeA9dXwdw.roa
File: 0WepNuVJ6GiEcfnEdOPeA9dXwdw.roa (raw, json)
Hash identifier: /2JIB0XY0rr8ZHnrRg07+55zpP+UygkiBSjpOOWwwBI=
Subject key identifier: D1:67:A9:36:E5:49:E8:68:84:71:F9:C4:74:E3:DE:03:D7:57:C1:DC
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B3DC0BCC1BF2C9130CDFEE274F2C8E139
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/0WepNuVJ6GiEcfnEdOPeA9dXwdw.roa
Signing time: Tue 17 Oct 2023 13:08:43 +0000
ROA not before: Tue 17 Oct 2023 13:08:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 176.57.55.0/24 maxlen: 24
81.21.10.0/24 maxlen: 24
81.21.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 07:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:c0:bc:c1:bf:2c:91:30:cd:fe:e2:74:f2:c8:e1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 17 13:08:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d167a936e549e8688471f9c474e3de03d757c1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d4:b0:6e:82:3b:4e:39:71:e3:ca:38:a0:2f:
7a:49:8b:79:11:78:d1:3b:58:b3:34:8e:2f:6f:81:
b3:81:da:d1:2b:77:1c:fc:29:60:75:1b:46:21:01:
79:a4:fc:07:1f:e2:ff:67:7f:3c:d3:48:ad:71:b6:
8a:28:ee:df:eb:38:08:20:51:55:4d:23:38:32:5d:
51:6d:6c:b8:93:ec:c3:8a:20:94:a3:c2:2e:15:d6:
eb:70:70:d9:6e:87:34:11:cf:2a:9a:20:9d:04:c4:
32:35:5d:1e:da:6d:0b:a7:c1:f0:cf:5d:e3:4b:87:
ca:32:ae:6c:f1:1d:c2:2f:c5:fe:d7:c7:e4:46:ec:
2a:d4:47:51:55:06:57:52:86:16:35:cf:08:19:a1:
12:fa:38:47:4d:9c:9d:9e:4e:a1:81:2e:af:ba:68:
18:a0:30:95:16:f8:4d:55:51:2f:64:db:1c:a4:d0:
8f:5f:42:d2:93:58:71:c2:57:e9:2a:1a:65:a8:73:
0e:e8:df:cd:c0:0f:55:8a:7d:ca:4f:b4:c8:62:30:
a1:96:a9:9d:8e:0b:a2:55:b4:f6:11:a9:78:3b:0a:
b2:19:ff:8e:b9:40:97:02:09:03:99:c7:c8:27:68:
00:58:0d:88:84:1e:35:72:e1:32:9d:54:fa:39:07:
9a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:67:A9:36:E5:49:E8:68:84:71:F9:C4:74:E3:DE:03:D7:57:C1:DC
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/0WepNuVJ6GiEcfnEdOPeA9dXwdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.10.0/24
81.21.14.0/24
176.57.55.0/24
Signature Algorithm: sha256WithRSAEncryption
40:34:40:78:c4:29:09:00:06:18:4e:1d:ab:25:6f:bf:af:05:
ca:5a:f6:9f:09:92:30:b3:83:7d:5b:fc:20:e4:a6:99:63:00:
3c:53:c3:7c:b5:1a:c1:6d:38:8a:ef:9d:96:ec:9b:9e:c5:f7:
aa:90:b0:0d:b8:90:2c:0a:13:22:f8:5a:a1:b9:dc:4d:f0:51:
a7:a3:6f:a7:85:53:38:ef:ab:b7:f0:08:ea:8c:3e:32:3a:6d:
63:a6:ef:69:ca:2f:09:d6:38:58:fd:dc:9b:9d:01:2f:1e:49:
b0:4d:ce:3d:50:12:9f:5a:77:f7:59:65:b9:8f:bf:81:1f:51:
6d:e3:27:8d:50:fd:4c:83:2d:71:19:b9:73:1d:65:2a:68:e0:
af:56:80:2f:15:09:5e:5f:ed:49:ab:ea:ee:ce:8c:12:05:4f:
3c:6e:3a:6f:b5:57:cd:ee:db:8e:67:90:fd:ab:cb:70:46:9e:
9a:95:53:8b:16:85:19:e1:d2:21:57:8a:08:40:fd:31:2b:89:
37:93:0a:5f:9a:ff:70:26:46:62:82:1b:47:b2:c3:03:df:31:
07:f2:39:a7:b9:36:51:17:fa:3f:09:b6:69:24:8d:a5:f1:d2:
ae:ac:af:ce:6d:e4:aa:c6:20:75:96:15:94:df:69:bf:3f:19:
b1:b9:6f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org