Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Pw5xMT7dShiCTrhcICZlRagNOfs.roa
File: Pw5xMT7dShiCTrhcICZlRagNOfs.roa (raw, json)
Hash identifier: kGwc4BRnRdZKECxRHepzmW/CTuMnHz1IDN+9H42MqCY=
Subject key identifier: 3F:0E:71:31:3E:DD:4A:18:82:4E:B8:5C:20:26:65:45:A8:0D:39:FB
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BDD2DB32E79D99B3A1A74C89724A56E52
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Pw5xMT7dShiCTrhcICZlRagNOfs.roa
Signing time: Fri 17 Nov 2023 12:07:21 +0000
ROA not before: Fri 17 Nov 2023 12:07:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 81.21.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Dec 2023 06:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dd:2d:b3:2e:79:d9:9b:3a:1a:74:c8:97:24:a5:6e:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 17 12:07:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f0e71313edd4a18824eb85c20266545a80d39fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:25:b9:d1:70:ea:a9:7e:65:d5:bb:9f:51:ac:
d5:48:c8:67:5f:3b:67:0c:b8:56:48:99:b2:3f:4e:
3c:d3:b5:59:cd:1b:bd:dc:ca:fc:62:6f:bd:86:19:
bf:99:e2:40:9b:97:d6:06:c1:c6:23:b1:b9:01:9c:
7a:d3:ac:ca:e2:f0:f2:66:04:a2:0f:78:90:29:7e:
a6:50:de:66:cd:8e:68:53:b2:d8:45:e5:fd:f7:c2:
be:a2:f6:f5:96:b1:ff:83:a3:5d:a2:e2:cd:33:01:
f1:e9:8d:a7:44:4e:ea:86:6d:fb:ee:63:33:7f:8e:
1c:4d:87:94:31:51:90:ba:75:b9:e5:f7:f3:01:c0:
f3:73:ed:e3:00:2f:e8:1f:c4:90:e4:c8:0e:28:66:
ee:3d:f6:aa:29:d3:86:47:34:4d:f3:28:c2:9c:e2:
19:9c:dc:09:52:b0:75:e0:4b:f7:f0:d2:0c:10:da:
75:59:6b:c4:b5:20:76:8c:f3:97:0e:a2:d5:dd:b1:
fe:f9:f9:41:e4:59:d6:86:33:42:34:d2:fc:ff:83:
63:90:5e:8c:41:07:5d:9f:7b:3c:5c:4b:e5:56:43:
c8:8e:c8:70:9f:30:a9:6d:57:02:61:21:f8:56:d4:
2a:da:ab:9f:e7:f1:05:52:97:31:b3:60:b6:71:0d:
17:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0E:71:31:3E:DD:4A:18:82:4E:B8:5C:20:26:65:45:A8:0D:39:FB
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Pw5xMT7dShiCTrhcICZlRagNOfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.12.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:76:4c:9b:49:2b:40:9c:55:37:6c:0f:83:43:14:ee:0b:da:
ee:22:f8:99:56:d5:e3:a0:83:55:e2:70:bf:fa:14:4f:01:c4:
96:ca:1a:bd:b2:b9:29:90:03:fd:c2:f7:6d:85:68:2f:03:a0:
2b:13:16:07:2c:7d:40:cf:b8:1f:c9:79:ae:54:eb:87:42:c2:
fb:6e:fb:f7:d9:f1:21:0c:cb:a2:c2:4a:ca:14:26:2a:4e:cd:
36:8a:65:a3:ec:9b:12:c7:46:20:58:69:d1:8f:bc:8c:38:7c:
85:39:33:45:18:5a:7d:d8:32:eb:05:e7:24:75:a6:f4:b4:1c:
90:4e:10:8e:83:23:fe:39:7e:20:19:5c:76:b9:af:7d:29:6a:
fe:4c:c5:17:1e:a6:d2:f0:7a:30:d9:b1:f0:7e:08:c3:29:04:
db:f1:88:dd:26:f5:d8:5f:ee:28:eb:7e:d2:28:ec:f4:e8:ee:
8b:a6:a4:d4:5c:f4:98:9e:d4:9d:12:75:a2:28:4b:3d:1a:03:
84:49:78:6e:4b:ca:df:6f:c4:22:ac:6a:69:9f:c6:57:bb:ff:
31:88:43:10:e5:fa:20:90:cb:21:86:a4:8e:f1:6f:e2:e4:14:
78:19:42:1a:45:32:00:79:e3:0e:fa:0a:67:52:2e:25:54:d5:
9d:3c:cc:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org