Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2b9jUBaiHzZG_R4ldKWx3C4h_Kk.roa
File: 2b9jUBaiHzZG_R4ldKWx3C4h_Kk.roa (raw, json)
Hash identifier: 1Y8h+vHyRHyU8cD53k8Uj3vMM9AsNMDV2jMpvaVFsFo=
Subject key identifier: D9:BF:63:50:16:A2:1F:36:46:FD:1E:25:74:A5:B1:DC:2E:21:FC:A9
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018B466C5540A09F8B9210F2C384C595A48A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2b9jUBaiHzZG_R4ldKWx3C4h_Kk.roa
Signing time: Thu 19 Oct 2023 05:33:06 +0000
ROA not before: Thu 19 Oct 2023 05:33:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 81.21.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 11:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:46:6c:55:40:a0:9f:8b:92:10:f2:c3:84:c5:95:a4:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Oct 19 05:33:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9bf635016a21f3646fd1e2574a5b1dc2e21fca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fb:fb:3e:43:91:9f:b1:e4:a8:85:1c:ed:99:
1c:e2:b4:ca:a9:cd:d3:5c:7b:28:80:37:a8:54:ab:
35:9f:1e:39:2c:65:65:0d:c5:09:2f:73:2c:6e:2e:
b5:38:f9:d9:c7:66:dc:8e:f7:42:00:28:af:c5:11:
57:6f:8d:01:9c:93:a2:62:41:51:10:fc:fb:20:99:
de:9e:18:9e:9c:4b:38:3c:a7:24:cf:53:c7:8c:3a:
1c:db:66:ca:86:59:82:4d:25:e2:1a:0d:74:37:7c:
d1:7a:48:4d:27:e5:66:2c:97:ad:a3:f8:a8:4c:51:
7e:02:49:51:38:cd:02:9f:86:a9:c5:db:07:6c:2e:
61:d7:17:f1:6e:89:17:7f:84:12:0b:8f:4a:15:82:
a4:a3:04:37:fd:82:e1:53:f8:47:6b:3b:8c:b4:26:
03:d7:39:75:d0:a1:c1:1f:82:5d:5f:4b:2c:45:e4:
c9:f1:6f:95:94:b5:f3:8a:8a:4a:1c:8d:78:b8:91:
1b:e8:08:ed:ca:f7:9d:07:84:4e:de:71:d9:01:81:
b5:6b:ec:e1:53:1a:e3:57:e8:58:40:44:e4:47:24:
d5:14:a2:07:cc:dd:df:8b:79:ea:49:2a:9c:a6:bb:
48:dd:2b:57:fa:a4:22:06:d7:f4:86:9c:b6:1b:61:
9a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:BF:63:50:16:A2:1F:36:46:FD:1E:25:74:A5:B1:DC:2E:21:FC:A9
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/2b9jUBaiHzZG_R4ldKWx3C4h_Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.8.0/24
Signature Algorithm: sha256WithRSAEncryption
50:1e:ab:e0:c6:1b:45:d8:a8:77:08:d3:0f:21:c5:be:cc:83:
4a:55:da:9f:42:aa:67:4d:57:6f:32:54:0e:78:2f:df:1a:75:
29:b3:1e:f5:4e:3f:77:1b:ec:d3:60:a5:3c:10:02:4d:40:93:
c3:c0:77:a3:b7:26:fa:78:af:e7:dc:61:b6:44:3c:f2:d3:37:
e8:2d:b2:c8:e2:7f:f3:05:52:06:c1:ae:5f:f4:0f:84:4d:93:
10:bc:02:70:70:fa:2e:af:9d:af:08:fc:42:c1:45:33:48:06:
41:69:d4:86:b6:7c:e2:6d:18:9e:78:55:3a:f7:8e:3e:58:f2:
be:35:b3:9c:fb:ac:8e:f0:ad:22:73:f6:6b:1c:88:7b:cb:82:
8e:81:68:fa:d8:ea:fb:3f:28:bc:73:1b:d7:20:6b:8f:8d:40:
c8:4c:1e:1a:77:4f:ff:13:b7:e2:c3:6a:ec:6b:87:33:57:bf:
3e:72:04:2a:ac:55:14:e7:b7:12:c9:41:8e:86:fe:7b:19:a1:
65:37:28:42:20:3d:64:1e:73:f5:b4:8d:a3:7b:b7:9e:16:57:
64:ce:d6:4b:0b:b4:ff:0e:9b:87:1e:ad:d8:fd:22:63:64:bf:
4b:0c:78:81:ca:47:65:af:34:14:bd:23:70:bd:9e:9a:0d:c9:
00:a2:70:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:53 2024 by rpki-client on console-fra.rpki-client.org