Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/rwnnSeFRgMhqw4FckPoek_keb0Q.roa
File: rwnnSeFRgMhqw4FckPoek_keb0Q.roa (raw, json)
Hash identifier: dOWZFgfJMB1r5cjcWup4gC3RFyIPWn2vrUjIbQSY9Nk=
Subject key identifier: AF:09:E7:49:E1:51:80:C8:6A:C3:81:5C:90:FA:1E:93:F9:1E:6F:44
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018BDED01875D6197FF4C168D62C2FBB09FE
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/rwnnSeFRgMhqw4FckPoek_keb0Q.roa
Signing time: Fri 17 Nov 2023 19:44:21 +0000
ROA not before: Fri 17 Nov 2023 19:44:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31898
IP address blocks: 81.21.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:d0:18:75:d6:19:7f:f4:c1:68:d6:2c:2f:bb:09:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Nov 17 19:44:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af09e749e15180c86ac3815c90fa1e93f91e6f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:48:df:8f:70:c8:75:00:c3:0e:c1:bd:3e:
f7:a0:29:55:60:67:0b:7a:bf:b0:3b:cd:cc:15:a4:
83:64:fa:f1:f2:d8:89:89:1c:4c:4e:66:cf:d5:af:
2a:01:d1:02:88:ab:61:6c:ab:fe:db:9f:c8:24:b0:
1d:80:42:5a:fa:1d:44:b2:b3:d7:e3:b5:e6:3a:33:
8c:04:8f:31:b4:b2:05:8c:05:b0:59:a3:82:b2:b2:
f9:a0:57:a6:ca:2a:75:05:ca:0e:60:57:3a:39:d2:
fd:57:45:cc:43:c1:60:5b:a1:ce:2a:5d:84:b8:bb:
4d:8a:26:c7:f0:58:ad:fe:d6:cf:ae:0f:8d:f9:02:
88:14:9b:ef:c9:4e:8e:9d:c2:a5:7e:5e:61:39:62:
ce:d4:2c:c1:2c:c1:12:b1:a6:45:b1:c3:4e:97:ae:
f5:02:4b:bf:68:d5:53:59:43:e4:b2:f5:be:33:e0:
0d:4f:bb:c4:cf:c0:60:8f:5b:d1:5b:3f:b7:67:3d:
33:6f:ea:0d:d2:05:e9:8e:23:00:31:97:95:56:9c:
78:55:3d:61:9b:62:63:70:2e:5a:97:80:c6:37:44:
78:71:ce:c4:d3:ab:87:ab:be:61:b5:4a:d1:cf:03:
6f:39:eb:6c:c5:7b:95:ce:e7:be:5b:45:1f:b0:69:
7a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:09:E7:49:E1:51:80:C8:6A:C3:81:5C:90:FA:1E:93:F9:1E:6F:44
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/rwnnSeFRgMhqw4FckPoek_keb0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.13.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d2:0e:12:9b:b4:6f:4b:36:49:6b:08:2c:dd:97:ff:5b:83:
7b:fe:c1:84:7a:59:34:9d:e8:6a:47:6b:be:ef:e8:0c:e0:b9:
4d:8a:72:61:09:75:e0:b8:49:d5:03:10:73:48:e6:ad:22:23:
56:bb:3b:bc:fd:2e:d3:43:ec:ba:41:eb:c4:39:b3:ca:dc:1d:
ed:e1:40:f9:c6:58:29:3d:1a:6d:87:bb:61:78:54:54:06:d8:
08:52:41:4d:53:74:58:e4:6c:1f:9a:c3:3b:47:f2:bd:aa:d2:
e6:ae:5b:35:ec:b8:14:09:5b:9f:01:b2:a8:b0:5b:4f:d2:90:
5a:83:9e:3b:3e:c6:15:25:af:50:62:6b:0f:8d:e6:82:16:93:
01:80:d6:d2:df:bf:4e:32:5e:d1:0b:2a:27:7a:e0:ee:35:25:
41:75:e6:5b:e7:b5:e1:f7:a9:cb:d9:44:ab:d2:a1:01:e9:b5:
08:63:c8:10:92:31:1c:e2:c8:ae:24:20:fd:47:c1:de:36:63:
85:34:4b:7a:28:67:99:95:fd:37:f1:06:9c:d9:0d:58:68:eb:
0b:7e:ab:1c:2b:f8:e5:b9:a6:bf:2b:d1:fd:89:28:99:a5:bf:
c8:d8:31:2a:dd:3e:62:40:f5:25:77:e5:f3:1e:85:ba:52:34:
27:ba:5c:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:56 2024 by rpki-client on console-ams.rpki-client.org