Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/b2KUqLxjCl_irWYK4JD2Ks4s1fk.roa
File: b2KUqLxjCl_irWYK4JD2Ks4s1fk.roa (raw, json)
Hash identifier: tvsNCdEDheCA1o+YXMwgnPdbdTVyBs49gKzm2asppUM=
Subject key identifier: 6F:62:94:A8:BC:63:0A:5F:E2:AD:66:0A:E0:90:F6:2A:CE:2C:D5:F9
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0187C7AFD7E0F7AEF556DCE85E955929C510
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/b2KUqLxjCl_irWYK4JD2Ks4s1fk.roa
Signing time: Fri 28 Apr 2023 11:46:42 +0000
ROA not before: Fri 28 Apr 2023 11:46:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30081
IP address blocks: 81.21.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Apr 2023 12:04:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:af:d7:e0:f7:ae:f5:56:dc:e8:5e:95:59:29:c5:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 28 11:46:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f6294a8bc630a5fe2ad660ae090f62ace2cd5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:97:1e:f4:b0:0b:0e:ef:84:9b:00:a2:fa:bd:
27:4f:5a:48:69:6f:d9:d5:86:2c:70:3f:1c:01:94:
82:49:53:24:72:92:9a:37:3c:ef:7b:b6:f5:c6:de:
98:34:9b:a6:4a:05:16:d2:91:a4:e5:77:aa:b0:3c:
54:11:da:81:37:f1:ab:e2:f6:93:26:46:18:ba:74:
88:c4:aa:ae:a6:a9:9e:96:ea:70:b0:0f:67:d0:bf:
55:c3:20:24:4e:31:4b:15:e7:03:1c:d6:b9:cf:a9:
6b:8a:72:f1:04:85:c5:77:62:c0:48:63:53:26:0a:
26:29:1f:77:b7:70:3e:36:34:9b:ef:b6:89:d8:65:
98:f9:e8:28:56:32:c2:95:54:35:a0:78:4b:ae:32:
e2:ea:29:8e:9d:f2:24:06:10:99:05:ac:55:53:ef:
bc:56:c7:41:10:00:e6:40:4b:a6:7e:9d:12:36:d2:
e5:4a:41:44:34:4f:ff:07:79:ad:9f:df:64:f7:9b:
ce:ab:16:f8:2e:89:f8:6c:bf:5b:87:06:b3:8a:f0:
56:06:fd:01:cd:d3:05:3d:d4:aa:ac:e2:6b:4a:cd:
bc:d2:9b:28:36:f1:6e:8e:b7:8c:3c:0f:56:2b:99:
98:f6:88:4d:ef:5b:49:bb:8a:fa:d5:14:02:96:ee:
9f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:62:94:A8:BC:63:0A:5F:E2:AD:66:0A:E0:90:F6:2A:CE:2C:D5:F9
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/b2KUqLxjCl_irWYK4JD2Ks4s1fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.12.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:1b:20:4d:4a:5c:6b:22:48:96:52:a0:8f:f8:c1:a7:3f:55:
b6:a6:78:ba:ff:47:51:72:1e:fe:46:10:d4:71:33:90:53:a0:
d6:5b:6f:0e:50:34:c8:96:f6:45:13:6d:5f:20:d7:91:84:09:
e5:73:a9:01:49:2a:4c:eb:31:69:c9:5f:e1:9f:bc:71:01:35:
0b:32:f4:c7:7c:f6:bd:5c:c7:90:a5:a9:6e:96:55:bb:f9:0f:
8c:58:d4:03:47:26:7b:6b:cc:78:fb:2f:d7:49:be:1c:ae:2b:
f6:f3:d9:ee:4f:5d:08:94:1d:13:71:b5:f5:5c:be:66:d2:bd:
23:dc:ca:cb:77:d5:9e:ac:26:68:b3:ed:0c:0b:15:5c:0c:4c:
31:aa:f0:6d:c7:20:7d:05:a6:e0:b5:48:37:9f:4f:91:fa:95:
0a:86:34:1b:2c:f0:dc:a0:9c:b5:c0:df:ac:c9:f5:77:b5:72:
74:ce:18:59:a0:b7:7f:28:a4:8a:d7:99:bb:d3:0a:f6:5c:23:
f1:1e:f3:f9:63:6d:40:25:b8:5b:9c:23:49:fe:c5:41:c2:a1:
08:9b:82:6b:e8:c2:8e:0b:75:ff:ab:59:a6:5c:48:c2:b8:b9:
48:be:66:6a:b6:2a:22:ae:cb:42:d6:9c:58:a7:b4:92:9a:54:
fb:b7:09:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfHr9fg9671VtzoXpVZKcUQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl
ZTQ2ZDcwHhcNMjMwNDI4MTE0NjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjYyOTRhOGJjNjMwYTVmZTJhZDY2MGFlMDkwZjYyYWNlMmNkNWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopce9LALDu+EmwCi+r0nT1pIaW/Z
1YYscD8cAZSCSVMkcpKaNzzve7b1xt6YNJumSgUW0pGk5XeqsDxUEdqBN/Gr4vaT
JkYYunSIxKqupqmelupwsA9n0L9VwyAkTjFLFecDHNa5z6lrinLxBIXFd2LASGNT
JgomKR93t3A+NjSb77aJ2GWY+egoVjLClVQ1oHhLrjLi6imOnfIkBhCZBaxVU++8
VsdBEADmQEumfp0SNtLlSkFENE//B3mtn99k95vOqxb4Lon4bL9bhwazivBWBv0B
zdMFPdSqrOJrSs280psoNvFujreMPA9WK5mY9ohN71tJu4r61RQClu6fHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG9ilKi8Ywpf4q1mCuCQ9irOLNX5MB8GA1UdIwQY
MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt
NTYyNDRmNDMwZGNjLzEvYjJLVXFMeGpDbF9pcldZSzRKRDJLczRzMWZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj
LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCURUMMA0G
CSqGSIb3DQEBCwUAA4IBAQA9GyBNSlxrIkiWUqCP+MGnP1W2pni6/0dRch7+RhDU
cTOQU6DWW28OUDTIlvZFE21fINeRhAnlc6kBSSpM6zFpyV/hn7xxATULMvTHfPa9
XMeQpalullW7+Q+MWNQDRyZ7a8x4+y/XSb4criv289nuT10IlB0TcbX1XL5m0r0j
3MrLd9WerCZos+0MCxVcDEwxqvBtxyB9BabgtUg3n0+R+pUKhjQbLPDcoJy1wN+s
yfV3tXJ0zhhZoLd/KKSK15m70wr2XCPxHvP5Y21AJbhbnCNJ/sVBwqEIm4Jr6MKO
C3X/q1mmXEjCuLlIvmZqtioirstC1pxYp7SSmlT7twky
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org