Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/XLfT5uu9WzFyQqSYt1PtRjFORRs.roa
File: XLfT5uu9WzFyQqSYt1PtRjFORRs.roa (raw, json)
Hash identifier: M7I5b+rsKWctLq8akiWPSGYtNWFXDS+/PmAOSVV8ZrI=
Subject key identifier: 5C:B7:D3:E6:EB:BD:5B:31:72:42:A4:98:B7:53:ED:46:31:4E:45:1B
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BA95453C9A87B18ADC3AC8E244A428971
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/XLfT5uu9WzFyQqSYt1PtRjFORRs.roa
Signing time: Tue 07 Nov 2023 10:29:17 +0000
ROA not before: Tue 07 Nov 2023 10:29:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151954
IP address blocks: 81.21.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:54:53:c9:a8:7b:18:ad:c3:ac:8e:24:4a:42:89:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 7 10:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cb7d3e6ebbd5b317242a498b753ed46314e451b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dd:09:f2:b3:c7:b7:7f:45:61:cc:53:2f:c9:
d4:e1:55:1b:47:39:5b:f6:31:3a:34:af:93:43:bc:
dd:ff:24:5b:c4:a3:c8:8a:16:d4:fc:9b:0c:b9:5b:
e2:a5:48:82:c8:0b:e7:e6:22:fe:50:1f:41:b4:51:
5a:81:d6:6c:f6:34:0a:cd:0f:39:c4:af:f3:29:5f:
8e:47:dd:70:db:6a:13:16:cc:66:1e:2f:f2:35:a2:
48:a8:32:ab:b0:e8:86:90:d7:71:89:c0:40:46:49:
24:36:b9:9d:ae:33:a5:78:b2:4d:68:06:1f:fe:3a:
3e:96:05:70:2f:4a:b3:19:13:0b:a9:24:ea:24:f2:
6e:5a:4c:17:a7:8c:9d:71:1b:ff:3a:39:df:9c:e9:
fe:6c:65:60:e2:c5:8c:6a:b6:30:c9:c5:12:9b:6d:
d2:8e:8a:12:0e:18:3d:21:f4:c5:bf:4c:47:25:5d:
bf:d4:06:4b:94:8d:28:5c:cd:4d:26:06:7b:aa:29:
2d:d2:24:a7:4e:34:b2:80:12:9e:c6:2d:07:0e:32:
2d:98:70:9a:89:67:89:66:59:fa:cf:a6:f4:f6:0c:
40:5b:89:3d:14:48:74:8d:8b:01:4f:59:a5:88:6b:
1d:c5:3d:36:40:cb:12:6b:a9:23:6f:0c:0e:fa:36:
a0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B7:D3:E6:EB:BD:5B:31:72:42:A4:98:B7:53:ED:46:31:4E:45:1B
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/XLfT5uu9WzFyQqSYt1PtRjFORRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.9.0/24
Signature Algorithm: sha256WithRSAEncryption
36:03:f5:ad:9d:30:00:ef:16:55:97:60:60:4b:d1:e1:ef:64:
ec:74:59:d8:f9:e3:21:d1:3d:00:8d:21:15:34:02:9e:a5:60:
e1:33:eb:7c:67:0b:30:c4:c2:b6:4e:95:f2:df:5a:75:64:e4:
12:c6:48:59:bb:c1:50:71:ee:df:e8:2f:a9:16:eb:80:c1:93:
f0:f7:3d:31:7b:f6:1a:16:db:6e:2e:79:35:ed:d2:e7:d3:42:
22:47:ff:9d:ee:cc:d4:ad:08:46:7f:5b:f7:7d:4d:96:5a:ab:
75:e6:2b:7d:d4:0b:ed:66:f4:8a:0e:43:bf:d3:d6:73:30:1e:
43:be:24:1a:53:78:85:53:dc:5c:c0:56:eb:f8:9f:24:05:8b:
11:45:9e:6e:b1:32:9a:96:81:51:f7:86:67:7f:f3:e6:e6:c8:
63:3f:12:98:0c:fd:e9:d6:1f:ea:28:1b:17:14:2a:7b:b6:21:
46:5c:da:7f:cd:fd:50:09:8f:07:89:de:c6:b7:1b:42:9f:e2:
cd:31:04:0b:6e:86:f9:4a:bc:89:f0:73:f1:b1:45:58:50:5b:
e3:32:b6:53:1c:79:82:1e:01:72:11:a9:fa:fc:cf:8e:d3:aa:
61:bc:40:83:84:c0:8c:fa:8e:7d:b9:12:48:a3:3b:53:da:66:
d6:cb:f6:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYupVFPJqHsYrcOsjiRKQolxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMxMTA3MTAyOTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Y2I3ZDNlNmViYmQ1YjMxNzI0MmE0OThiNzUzZWQ0NjMxNGU0NTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqN0J8rPHt39FYcxTL8nU4VUbRzlb
9jE6NK+TQ7zd/yRbxKPIihbU/JsMuVvipUiCyAvn5iL+UB9BtFFagdZs9jQKzQ85
xK/zKV+OR91w22oTFsxmHi/yNaJIqDKrsOiGkNdxicBARkkkNrmdrjOleLJNaAYf
/jo+lgVwL0qzGRMLqSTqJPJuWkwXp4ydcRv/OjnfnOn+bGVg4sWMarYwycUSm23S
jooSDhg9IfTFv0xHJV2/1AZLlI0oXM1NJgZ7qikt0iSnTjSygBKexi0HDjItmHCa
iWeJZln6z6b09gxAW4k9FEh0jYsBT1mliGsdxT02QMsSa6kjbwwO+jaguwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFy30+brvVsxckKkmLdT7UYxTkUbMB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvWExmVDV1dTlXekZ5UXFTWXQxUHRSakZPUlJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURUJMA0G
CSqGSIb3DQEBCwUAA4IBAQA2A/WtnTAA7xZVl2BgS9Hh72TsdFnY+eMh0T0AjSEV
NAKepWDhM+t8ZwswxMK2TpXy31p1ZOQSxkhZu8FQce7f6C+pFuuAwZPw9z0xe/Ya
FttuLnk17dLn00IiR/+d7szUrQhGf1v3fU2WWqt15it91AvtZvSKDkO/09ZzMB5D
viQaU3iFU9xcwFbr+J8kBYsRRZ5usTKaloFR94Znf/Pm5shjPxKYDP3p1h/qKBsX
FCp7tiFGXNp/zf1QCY8Hid7GtxtCn+LNMQQLbob5SryJ8HPxsUVYUFvjMrZTHHmC
HgFyEan6/M+O06phvECDhMCM+o59uRJIoztT2mbWy/b7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org