Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Grnp-zI5bFdCO0Lz24uh16-Dyu4.roa
File: Grnp-zI5bFdCO0Lz24uh16-Dyu4.roa (raw, json)
Hash identifier: YdT+WyO7PLlIngmYl9mHNSPBUzlyOPg1LRLFGKeNoEw=
Subject key identifier: 1A:B9:E9:FB:32:39:6C:57:42:3B:42:F3:DB:8B:A1:D7:AF:83:CA:EE
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018EEFCAD43EA4DADE92D6B0D22AF383A91A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Grnp-zI5bFdCO0Lz24uh16-Dyu4.roa
Signing time: Thu 18 Apr 2024 06:00:30 +0000
ROA not before: Thu 18 Apr 2024 06:00:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 81.21.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 10:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ef:ca:d4:3e:a4:da:de:92:d6:b0:d2:2a:f3:83:a9:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 18 06:00:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ab9e9fb32396c57423b42f3db8ba1d7af83caee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:56:3f:2f:51:03:e5:a1:9f:57:99:d5:39:a3:
9c:8f:81:70:c0:d8:20:a1:e0:32:bf:9a:cd:c4:5d:
79:fd:5e:ab:ff:e4:45:5b:e6:a3:e0:80:50:34:f3:
03:b7:e7:34:7f:98:f6:90:6c:47:57:1d:4d:c4:4d:
19:59:ff:bd:f1:9a:5a:45:0b:42:68:3d:ce:3c:63:
35:38:d8:9b:e4:96:8c:47:7f:44:c3:ff:e3:13:fd:
5e:0b:23:e9:87:7d:e4:68:6a:3a:08:c2:62:92:6d:
2a:9a:ac:84:59:93:51:ad:dd:4b:6d:24:96:c5:fc:
71:7b:42:bf:81:29:d1:bd:7f:f1:a6:4c:91:10:bf:
32:76:84:7d:30:80:fb:b0:35:a4:1f:af:c1:ca:51:
96:ed:91:c5:ea:5f:43:a1:f9:13:f7:36:e9:6c:51:
6f:a0:67:a7:df:ea:c0:cc:90:36:c1:a0:60:e6:33:
1d:2e:d4:b1:db:00:73:9d:62:f4:e0:2c:37:85:ef:
e4:77:86:d7:8e:05:c9:65:ba:ba:8c:c1:c9:0d:89:
3b:49:a9:32:ad:02:a0:15:50:d0:20:c5:31:42:51:
9c:31:a4:c1:ae:da:aa:fc:90:08:e8:2c:e6:37:cc:
4a:0b:78:3a:b2:b0:ce:42:6a:ca:f2:11:2a:42:11:
9b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B9:E9:FB:32:39:6C:57:42:3B:42:F3:DB:8B:A1:D7:AF:83:CA:EE
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Grnp-zI5bFdCO0Lz24uh16-Dyu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.2.0/24
Signature Algorithm: sha256WithRSAEncryption
25:6b:ba:73:86:a2:f7:00:e7:fe:00:35:c1:01:8c:03:24:4c:
4b:de:6b:14:51:d4:15:70:b5:79:fd:b6:f3:52:d3:93:be:aa:
50:52:ef:25:5a:13:01:b9:a3:9a:d0:94:b3:48:c3:1e:bf:23:
64:86:85:6c:fa:67:91:32:43:0b:6b:2e:51:7a:ef:cb:fc:90:
2d:6e:18:11:aa:49:4b:af:3b:58:44:cb:9d:3c:b5:d7:da:11:
7f:79:95:fb:83:8d:58:ed:60:fb:08:78:9e:fa:87:c2:03:8e:
81:bc:7e:96:2b:4b:98:8c:fa:a5:29:8e:39:a6:dc:b4:5a:a4:
c1:95:4e:d3:ed:11:78:cf:1a:77:6e:54:86:c7:7e:f7:ba:ec:
e5:27:fe:b0:ff:d1:1a:60:44:42:6f:54:20:25:0d:20:47:6f:
b1:ba:b5:b0:4e:a2:9d:5b:4f:4e:83:2d:67:d7:3d:c6:ff:b5:
02:65:36:5f:3f:9e:f4:08:06:81:04:22:3e:1b:45:88:74:37:
82:a6:a9:77:51:97:a4:40:b8:1d:77:84:f6:df:12:c6:db:4e:
e1:7c:82:a9:e4:b0:45:82:fb:3f:55:a6:8f:71:ab:80:39:e8:
f0:98:a9:75:54:e5:bb:16:ca:74:6c:92:95:32:85:df:7d:32:
fb:59:9b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org