Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/oG-oEMumAlaFHJhrCOzgLx3SiP0.roa
File: oG-oEMumAlaFHJhrCOzgLx3SiP0.roa (raw, json)
Hash identifier: t9vaQAefmH5HV/8fi1nSg829hNR3Wfla2hADeO5C06k=
Subject key identifier: A0:6F:A8:10:CB:A6:02:56:85:1C:98:6B:08:EC:E0:2F:1D:D2:88:FD
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018F772CF4E0EDC031B0533CB710AB7FC524
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/oG-oEMumAlaFHJhrCOzgLx3SiP0.roa
Signing time: Tue 14 May 2024 12:56:25 +0000
ROA not before: Tue 14 May 2024 12:56:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 81.21.0.0/24 maxlen: 24
176.57.48.0/24 maxlen: 24
176.57.54.0/24 maxlen: 24
176.57.56.0/24 maxlen: 24
176.57.57.0/24 maxlen: 24
176.57.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 08:38:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:2c:f4:e0:ed:c0:31:b0:53:3c:b7:10:ab:7f:c5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: May 14 12:56:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a06fa810cba60256851c986b08ece02f1dd288fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1b:e6:ed:6f:06:1d:58:a0:04:70:09:8e:34:
7d:2b:9e:11:9e:84:d0:e9:a4:3a:24:09:52:d4:da:
0a:d1:5e:95:67:80:34:8b:8a:7a:c7:2e:e0:ef:04:
63:4c:4c:cf:ac:71:37:4f:de:30:3c:7d:ac:45:aa:
86:27:c1:b2:9f:76:22:9b:78:e6:48:b0:09:3b:41:
fa:d7:93:77:41:99:97:e7:9c:41:32:f8:81:20:4d:
37:94:b2:02:0c:d6:6b:bf:d0:2a:cc:20:2a:29:1b:
50:f8:9b:03:57:aa:67:e9:bd:8d:91:25:3c:ac:15:
e9:dd:67:d0:03:99:f6:34:bd:1e:a2:48:74:ab:3c:
a2:8e:bb:21:7b:00:e8:7c:71:38:cd:2c:db:7f:c7:
10:e2:bd:73:e9:01:2e:53:7f:05:2f:e6:e3:db:29:
d8:c2:ab:4d:c0:cf:b5:17:69:56:1f:02:1a:72:58:
13:47:c5:d4:7f:aa:1a:98:e2:b7:4c:84:52:96:33:
42:9b:ab:29:06:81:d0:58:c5:64:19:0a:1c:2e:11:
4d:5f:70:8f:ae:90:f5:5a:81:66:a9:a2:49:34:9b:
08:ae:5a:10:96:65:e8:e2:b4:59:33:95:24:33:59:
9b:dc:00:77:63:51:d7:e4:57:a5:e2:e4:a1:02:cc:
ca:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6F:A8:10:CB:A6:02:56:85:1C:98:6B:08:EC:E0:2F:1D:D2:88:FD
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/oG-oEMumAlaFHJhrCOzgLx3SiP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.0.0/24
176.57.48.0/24
176.57.54.0/24
176.57.56.0/23
176.57.60.0/24
Signature Algorithm: sha256WithRSAEncryption
25:81:a0:b8:c0:ff:e4:e1:0e:b7:c0:24:cf:69:3a:0a:44:14:
49:24:69:7f:63:48:61:96:8b:0d:84:fc:ee:a2:cc:a8:88:e8:
a2:50:4a:e4:00:7b:66:64:8f:c0:5e:dd:bf:54:73:3e:76:c2:
ea:04:13:e7:59:c2:40:f0:bd:a5:43:83:f7:47:e2:61:7f:6e:
f5:e2:ca:07:01:b7:63:e4:fb:80:91:66:a8:97:31:dc:80:43:
0f:1a:00:a7:a0:fe:d1:b4:46:ae:07:3a:a7:18:60:ef:00:e9:
50:c9:f9:19:9c:5d:dc:00:a5:65:07:85:29:e8:fe:c9:30:28:
68:65:ad:d5:4f:25:81:ea:b4:df:7b:b0:a0:34:64:04:18:3a:
b9:47:f8:59:4d:e8:07:39:21:64:d0:7a:86:1c:43:39:07:b2:
ea:45:13:62:b0:e6:49:4e:30:40:0d:28:5a:4d:9a:12:d8:65:
bf:1e:d8:6e:dd:27:4b:e0:cc:0d:de:2e:55:51:f0:58:77:2b:
30:54:e7:1f:59:c8:76:3a:06:0d:7a:0d:27:df:49:60:41:6e:
a4:e3:5f:bb:49:b6:db:95:a0:12:77:89:b4:a1:81:69:47:62:
1b:3b:27:75:cd:2b:9d:09:58:f6:26:89:0b:22:e7:72:1e:c3:
ce:77:f5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 10:29:13 2024 by rpki-client on console-fra.rpki-client.org