Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ZqDkDDuxaCze4cZDn0c5eBRq2O0.roa
File: ZqDkDDuxaCze4cZDn0c5eBRq2O0.roa (raw, json)
Hash identifier: NDWOd0qqUMeXTjdjlCoBP9VPdzfplN6SQqB4c6/JeBg=
Subject key identifier: 66:A0:E4:0C:3B:B1:68:2C:DE:E1:C6:43:9F:47:39:78:14:6A:D8:ED
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018A8A8F6E4994E76F3AD50C1161CBCD03E6
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ZqDkDDuxaCze4cZDn0c5eBRq2O0.roa
Signing time: Tue 12 Sep 2023 18:02:50 +0000
ROA not before: Tue 12 Sep 2023 18:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 81.21.14.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Oct 2023 06:52:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:8f:6e:49:94:e7:6f:3a:d5:0c:11:61:cb:cd:03:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 12 18:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66a0e40c3bb1682cdee1c6439f473978146ad8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:72:37:06:8b:01:f2:0f:f4:c8:8c:b6:5d:74:
14:db:34:be:79:04:e0:94:cd:ae:02:64:47:c1:60:
00:8b:ca:39:ca:06:18:55:8d:a0:d8:b6:4e:39:57:
11:44:e9:99:42:12:58:a7:cc:a6:c4:e1:fc:12:c0:
ae:7e:87:ed:2d:02:ea:b8:92:df:b7:39:97:da:03:
9a:b2:5c:18:b4:1f:07:f0:b0:e0:ad:02:0d:fa:01:
5c:98:28:ef:d8:f7:9b:82:7b:f9:a9:5e:a0:d8:eb:
35:19:93:38:86:c6:1a:91:06:0f:57:dd:5a:f6:ca:
77:f7:e5:d8:82:e2:a6:8c:65:f1:aa:18:12:71:74:
aa:3c:8b:a7:5b:6e:b9:b1:e6:4b:8a:20:b6:9e:1e:
7f:20:54:e7:b3:da:22:b6:9f:d0:be:87:91:24:d7:
ee:a1:7c:12:d9:c5:34:4c:a5:a8:41:91:98:07:db:
f5:4c:09:ce:5c:89:e3:07:40:57:f5:61:a4:ca:44:
e5:14:9a:ba:0a:87:bf:84:28:45:5e:df:03:bd:c2:
c1:a5:7b:9d:bd:a7:77:bc:13:5d:ea:60:e7:04:34:
03:a7:77:29:a8:91:f6:9e:ac:4c:38:72:73:ab:bf:
e7:ec:29:83:a3:f7:99:9a:05:e4:1d:5d:8b:b1:a8:
c1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A0:E4:0C:3B:B1:68:2C:DE:E1:C6:43:9F:47:39:78:14:6A:D8:ED
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/ZqDkDDuxaCze4cZDn0c5eBRq2O0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.14.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:4b:6e:70:71:51:7d:2e:b1:97:92:fe:e4:ee:d1:df:00:1d:
b0:f5:2b:15:4e:13:b9:39:68:ea:28:9e:45:33:45:82:95:53:
24:74:d2:80:e9:5c:41:d8:9c:b3:22:d6:e9:2a:be:4f:c3:a9:
37:43:27:a1:1f:64:8f:93:25:bb:a3:91:99:30:ac:d8:88:7a:
60:74:4b:76:86:41:a6:92:76:ce:5e:26:55:e2:34:c9:47:fb:
3a:b8:d0:a4:a9:e8:2b:01:2d:a7:b6:5d:09:83:7d:d7:dc:92:
83:13:1f:05:22:67:c3:c9:de:7d:eb:72:1e:d1:19:34:fd:46:
b3:41:f2:8b:18:9a:87:28:7d:32:78:9e:78:53:f6:5e:32:9f:
16:59:63:e0:a3:3e:d3:8d:3d:ff:44:3e:c4:0c:a2:f8:30:b3:
2e:03:33:55:a6:be:43:4d:11:8e:7e:3e:d6:81:db:a2:3d:21:
63:b1:c3:da:9e:49:d7:7a:52:c4:59:48:ba:a4:29:44:7e:90:
96:19:bb:de:46:4b:b1:a7:e1:7e:ed:6b:08:c5:ec:7b:cf:d1:
3e:a9:d5:17:27:9f:4c:32:02:42:73:90:1c:d1:7a:ea:cb:fa:
ff:e8:7f:21:f6:8d:d6:47:d6:16:3c:00:55:d0:35:42:0e:2c:
e8:33:a0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org