Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CB4ucg9RklkFWcJhwezaW6XawQw.roa
File: CB4ucg9RklkFWcJhwezaW6XawQw.roa (raw, json)
Hash identifier: Se3AuageY5xxxqyvSAzW5rN6t3KAmlLOrsApe0xs1KA=
Subject key identifier: 08:1E:2E:72:0F:51:92:59:05:59:C2:61:C1:EC:DA:5B:A5:DA:C1:0C
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018D3F9564781792775A1D1ABF57E147C784
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CB4ucg9RklkFWcJhwezaW6XawQw.roa
Signing time: Thu 25 Jan 2024 07:46:11 +0000
ROA not before: Thu 25 Jan 2024 07:46:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212384
IP address blocks: 81.21.3.0/24 maxlen: 24
176.57.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Mar 2024 08:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3f:95:64:78:17:92:77:5a:1d:1a:bf:57:e1:47:c7:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Jan 25 07:46:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=081e2e720f5192590559c261c1ecda5ba5dac10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5d:e4:8d:39:fb:e6:ac:21:b4:5f:4e:2b:0e:
3c:2b:0b:8f:9d:56:c5:25:97:9f:7e:c9:df:b5:0d:
43:ef:e4:0d:46:4a:7a:a5:e4:9e:f3:4f:63:d2:6c:
48:82:6e:37:d2:67:f4:28:82:b2:7e:f6:95:33:0e:
a3:fd:e6:c2:10:0d:24:17:93:71:94:1d:1d:9c:b7:
61:2c:7e:fb:16:39:46:94:a9:cf:ef:13:6d:0c:90:
2e:16:4d:a0:48:4a:77:6c:06:d3:cd:12:36:b4:76:
ef:c7:f2:d0:7a:f6:5c:9c:33:4f:1c:c6:5f:72:52:
99:7c:d2:99:49:27:1d:4f:d1:34:b0:9f:a2:a6:96:
cf:6f:42:67:59:eb:df:02:b1:e1:ab:32:72:9c:20:
24:0e:74:2d:47:2e:a4:0a:3f:63:9f:25:c6:b9:0f:
0b:e0:b8:96:1e:f8:64:b4:2c:5b:76:c7:16:e4:a5:
f8:0e:ea:f9:d9:2c:c5:a7:45:bb:4a:e1:74:b0:e9:
0a:a2:4e:37:d3:b1:e9:e0:1a:a4:a1:eb:dc:7d:0b:
25:4d:52:77:65:6f:c3:26:d4:e0:60:28:ca:a6:a8:
7e:18:88:9f:47:40:bf:3a:fe:66:cb:5b:b9:d8:68:
b4:ba:cf:a0:3a:66:7a:27:81:69:91:b9:fb:c7:a4:
34:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1E:2E:72:0F:51:92:59:05:59:C2:61:C1:EC:DA:5B:A5:DA:C1:0C
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/CB4ucg9RklkFWcJhwezaW6XawQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.3.0/24
176.57.49.0/24
Signature Algorithm: sha256WithRSAEncryption
96:e8:ce:69:7b:38:97:26:d3:d5:2c:da:93:9a:88:aa:44:a2:
ed:13:ea:67:40:22:40:36:fa:e9:99:79:ee:22:02:8f:b7:a2:
57:05:88:f8:7f:93:8a:77:6c:6e:ef:fb:d1:ff:6e:9f:d3:a9:
87:4d:1b:5e:64:1b:45:47:6c:88:f4:e2:06:bf:29:e6:de:bf:
ce:7c:f9:11:f3:60:e0:87:73:dd:29:d0:e2:54:b3:70:13:ea:
c6:b7:c5:3b:46:14:10:0c:69:80:c6:27:04:8e:a3:85:ea:9b:
d1:f8:65:7e:5e:78:4e:9a:97:ba:06:92:e7:43:3f:04:a6:bb:
fa:a1:09:bb:dd:7c:0e:ef:69:0e:38:0f:8c:92:9b:b5:24:c2:
af:79:04:65:19:ff:57:93:6a:2d:1f:7e:ba:ca:e0:db:b5:44:
1d:f5:a9:2f:83:30:3a:7a:61:4f:c0:39:d2:59:8a:ca:94:62:
39:9f:5a:d7:6c:48:dc:34:b2:55:83:1e:55:a5:b2:ce:2c:99:
5f:c4:93:de:36:3a:cd:91:40:9d:77:84:a0:66:17:6c:2e:d5:
5d:50:cf:76:9d:34:a7:95:d4:4f:cb:d3:09:9b:71:83:de:a1:
d9:90:d1:a0:7a:b7:cd:04:ae:12:b4:4c:05:b6:7f:2a:b7:cc:
ed:e1:ba:1a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY0/lWR4F5J3Wh0av1fhR8eEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjQwMTI1MDc0NjExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODFlMmU3MjBmNTE5MjU5MDU1OWMyNjFjMWVjZGE1YmE1ZGFjMTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF3kjTn75qwhtF9OKw48KwuPnVbF
JZeffsnftQ1D7+QNRkp6peSe809j0mxIgm430mf0KIKyfvaVMw6j/ebCEA0kF5Nx
lB0dnLdhLH77FjlGlKnP7xNtDJAuFk2gSEp3bAbTzRI2tHbvx/LQevZcnDNPHMZf
clKZfNKZSScdT9E0sJ+ippbPb0JnWevfArHhqzJynCAkDnQtRy6kCj9jnyXGuQ8L
4LiWHvhktCxbdscW5KX4Dur52SzFp0W7SuF0sOkKok4307Hp4BqkoevcfQslTVJ3
ZW/DJtTgYCjKpqh+GIifR0C/Ov5my1u52Gi0us+gOmZ6J4Fpkbn7x6Q0iwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAgeLnIPUZJZBVnCYcHs2lul2sEMMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvQ0I0dWNnOVJrbGtGV2NKaHdlemFXNlhhd1F3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAURUDAwQA
sDkxMA0GCSqGSIb3DQEBCwUAA4IBAQCW6M5peziXJtPVLNqTmoiqRKLtE+pnQCJA
NvrpmXnuIgKPt6JXBYj4f5OKd2xu7/vR/26f06mHTRteZBtFR2yI9OIGvynm3r/O
fPkR82Dgh3PdKdDiVLNwE+rGt8U7RhQQDGmAxicEjqOF6pvR+GV+XnhOmpe6BpLn
Qz8Eprv6oQm73XwO72kOOA+Mkpu1JMKveQRlGf9Xk2otH366yuDbtUQd9akvgzA6
emFPwDnSWYrKlGI5n1rXbEjcNLJVgx5VpbLOLJlfxJPeNjrNkUCdd4SgZhdsLtVd
UM92nTSnldRPy9MJm3GD3qHZkNGgerfNBK4StEwFtn8qt8zt4boa
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org