Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/cGjzTmBaBeOGHlvZy7yfY6M-kDw.roa
File: cGjzTmBaBeOGHlvZy7yfY6M-kDw.roa (raw, json)
Hash identifier: r4attuUSLXNfwlQutG7d9mA8u0q7sdL3dEXHxwKVsmo=
Subject key identifier: 70:68:F3:4E:60:5A:05:E3:86:1E:5B:D9:CB:BC:9F:63:A3:3E:90:3C
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0187C7C04E68AABA4066E3FBC81F0A9B91EE
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/cGjzTmBaBeOGHlvZy7yfY6M-kDw.roa
Signing time: Fri 28 Apr 2023 12:04:41 +0000
ROA not before: Fri 28 Apr 2023 12:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30081
IP address blocks: 81.21.12.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 May 2023 07:52:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:c0:4e:68:aa:ba:40:66:e3:fb:c8:1f:0a:9b:91:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Apr 28 12:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7068f34e605a05e3861e5bd9cbbc9f63a33e903c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f2:e2:17:1e:3a:25:8a:df:ef:ef:e8:17:eb:
73:51:86:75:95:bb:42:71:69:56:de:8b:08:96:04:
a2:82:3e:ab:a9:11:97:c3:b3:3d:23:ae:47:7d:8c:
3c:ee:2b:4e:4b:f5:af:f7:26:d4:33:76:f2:a9:a8:
e2:ec:7c:40:00:58:b3:1d:f8:83:e6:00:21:3d:a6:
05:89:c8:e4:06:71:ef:fd:cb:32:9f:e8:22:6c:22:
b8:b0:9a:e6:36:bf:84:5e:49:21:d0:b7:f3:85:53:
5d:b5:13:2e:c3:23:1f:ec:2f:cf:d5:a2:7a:e4:01:
1a:80:db:33:79:93:fc:87:52:32:68:fe:e1:fa:46:
80:9a:af:f9:94:8f:36:84:f0:40:03:8a:56:47:c1:
03:e8:d7:af:60:b5:b6:2d:ba:49:8f:82:2f:31:36:
46:74:2d:d6:62:35:15:cd:ca:dd:62:b8:91:d7:cf:
4b:5c:f0:cf:55:ec:63:22:04:8a:56:7d:5e:63:85:
b9:bb:dc:8f:83:22:f0:07:f8:6c:f1:f0:1a:77:38:
9e:3c:e8:1b:a3:a1:6b:b5:8d:5d:b2:0e:92:c0:3c:
48:4b:bc:26:51:69:bf:d0:63:7f:d4:c4:b0:7f:d9:
6e:d4:b0:1a:8d:26:b3:48:4c:c1:1d:bd:6f:92:68:
43:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:68:F3:4E:60:5A:05:E3:86:1E:5B:D9:CB:BC:9F:63:A3:3E:90:3C
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/cGjzTmBaBeOGHlvZy7yfY6M-kDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.12.0/22
Signature Algorithm: sha256WithRSAEncryption
30:d1:d9:9c:f2:a3:46:4e:aa:de:80:19:9d:28:de:b4:ba:34:
d6:00:5d:4b:9c:f8:2d:11:44:f4:89:09:30:2d:9b:30:f6:eb:
fd:67:01:d3:e8:74:de:02:89:6c:f8:d6:6b:8b:ee:b0:f4:dc:
f4:76:9d:8c:81:cc:03:6d:98:90:4f:a4:a4:85:14:4e:e9:dd:
2e:a2:d5:65:9c:c0:b6:55:80:6c:37:43:62:d5:d4:dd:f4:06:
2a:0f:d8:5b:69:e0:c3:b7:88:90:ac:17:64:77:17:b6:80:89:
55:bd:ef:83:b1:63:c3:da:2e:ca:2a:a6:0d:b5:49:8c:bf:98:
9a:17:5f:91:df:ec:f6:39:3c:fc:31:bd:92:36:5f:57:d9:0a:
03:a0:58:13:43:72:9c:f6:34:c7:71:44:92:4e:0d:4e:09:eb:
48:dd:75:79:06:c0:a3:de:0d:73:5b:b0:fa:22:4a:56:61:ef:
34:a8:92:d3:de:df:c9:88:05:33:5b:b3:e0:c6:06:24:b5:ab:
42:f0:b6:f0:9b:3b:c9:4d:29:9f:d3:4c:e2:a4:9d:31:d6:54:
65:20:f6:86:42:0d:11:23:e3:dc:33:bd:3c:69:44:e9:e1:1e:
03:f5:8f:0d:f0:66:d5:a3:f8:2a:f4:a5:d7:e7:85:d5:8d:70:
b4:35:8e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org