Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/m7CNznSmqusulNMDv9apCt0NnIw.roa
File: m7CNznSmqusulNMDv9apCt0NnIw.roa (raw, json)
Hash identifier: AT5w/V5ofpmal9cCa1+PZ1RVwT5HezanqUkzqKRDH8w=
Subject key identifier: 9B:B0:8D:CE:74:A6:AA:EB:2E:94:D3:03:BF:D6:A9:0A:DD:0D:9C:8C
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0189EE70368086B8F2294360225D3D28C958
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/m7CNznSmqusulNMDv9apCt0NnIw.roa
Signing time: Sun 13 Aug 2023 10:27:58 +0000
ROA not before: Sun 13 Aug 2023 10:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 81.21.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 14:10:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ee:70:36:80:86:b8:f2:29:43:60:22:5d:3d:28:c9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 13 10:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bb08dce74a6aaeb2e94d303bfd6a90add0d9c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3b:81:8e:eb:c2:49:55:6d:9a:fa:ae:f9:01:
7f:20:38:a2:73:2d:61:e1:ab:93:a0:99:2c:93:cc:
16:22:6e:0e:db:7f:c0:90:0c:59:7d:1e:20:0c:bc:
fe:8a:75:8c:16:cb:fc:3f:36:f5:02:9e:ce:ae:da:
1b:54:9b:ca:d4:52:92:31:5b:75:83:7c:70:69:25:
77:96:8f:03:1c:7f:0e:51:dd:84:bb:19:03:d5:4d:
0e:ad:8e:5d:24:ef:65:9c:a2:b2:f4:64:45:f6:c7:
39:44:03:9b:42:e9:ff:a6:24:d1:32:bd:84:d3:03:
72:22:0b:f9:66:ba:38:59:1f:eb:9f:48:48:6f:9e:
d0:f3:fd:22:88:07:3c:e9:72:1b:0e:fa:44:20:b0:
48:d2:5c:97:c4:46:d6:63:e4:01:72:b1:22:cd:4d:
b7:26:e7:56:d4:a0:3e:31:20:64:08:62:fd:be:e8:
b9:e6:9c:6e:48:da:0c:bb:e3:43:cf:02:c4:95:46:
a9:d1:a5:b8:16:49:25:e0:d9:73:a1:4c:cc:6e:54:
a5:45:a8:fe:07:ef:31:59:f5:73:27:1e:f0:8f:81:
d5:5b:17:30:dc:f7:28:90:e9:2b:02:f9:72:17:cf:
7c:3b:c0:6b:7d:ea:ad:db:28:97:3e:06:7b:4e:14:
77:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B0:8D:CE:74:A6:AA:EB:2E:94:D3:03:BF:D6:A9:0A:DD:0D:9C:8C
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/m7CNznSmqusulNMDv9apCt0NnIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.4.0/22
Signature Algorithm: sha256WithRSAEncryption
27:bd:d4:7f:fc:d2:5a:6e:b9:e6:12:ef:73:b0:64:a2:f9:7e:
e8:ad:d3:81:88:c3:81:d3:7e:58:5c:71:d4:82:71:e6:e8:56:
cd:03:12:8c:53:89:23:33:86:29:aa:8b:14:dd:41:27:03:60:
f4:74:e4:48:33:01:fb:f0:b4:44:8c:28:2e:7e:4f:51:a9:6b:
1e:af:8e:81:c2:bf:b7:81:e2:22:65:49:41:fa:63:5e:e2:c6:
0e:c1:2a:ec:df:c3:a9:ff:fd:43:83:35:f2:9d:4f:1b:7e:24:
5f:57:a4:0b:67:3b:1f:95:fa:7e:79:a2:50:0f:37:76:29:6a:
34:77:88:4e:d3:1b:8f:8c:2f:3d:30:c3:c7:57:d1:77:79:fc:
90:f7:53:44:66:9c:e7:17:c3:ae:b3:85:c3:f3:d5:bd:bc:1f:
42:12:ef:54:50:13:f7:d3:8a:fb:12:dc:75:0a:05:0f:0a:c1:
87:d6:22:5d:4e:2b:de:a2:39:fc:8b:a2:5f:3a:37:79:23:d7:
19:dd:07:3a:af:d8:ae:67:fe:73:a2:9f:ff:57:5b:70:ab:fc:
d0:02:6e:4d:76:34:8c:a8:c4:ed:f5:03:a7:c7:70:8b:5b:2f:
43:01:c4:b2:17:fd:35:d0:cf:5f:d0:f0:33:62:89:36:6e:0c:
07:c7:5f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org