Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sDD2QQSI8csQCgGHPaFOZtiJECA.roa
File: sDD2QQSI8csQCgGHPaFOZtiJECA.roa (raw, json)
Hash identifier: fMlUarHzALOkWEFyXhqdjnV355kAywJJu+5DeKv61JE=
Subject key identifier: B0:30:F6:41:04:88:F1:CB:10:0A:01:87:3D:A1:4E:66:D8:89:10:20
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 018A924F61A4B342243D44D4C413587BE189
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sDD2QQSI8csQCgGHPaFOZtiJECA.roa
Signing time: Thu 14 Sep 2023 06:09:50 +0000
ROA not before: Thu 14 Sep 2023 06:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210912
IP address blocks: 81.21.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 13:08:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:92:4f:61:a4:b3:42:24:3d:44:d4:c4:13:58:7b:e1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Sep 14 06:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b030f6410488f1cb100a01873da14e66d8891020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:1d:5c:33:8c:34:c4:8c:b4:89:12:f2:d1:
94:8b:1f:5c:64:85:64:5e:8e:5a:37:67:1b:76:fa:
85:81:ad:ba:d8:b7:06:7f:15:85:3c:3d:0d:5f:bf:
1f:c5:89:76:6c:cf:73:5c:14:6b:67:d0:c4:39:d0:
24:36:77:25:70:5b:71:85:8d:0d:d7:c8:19:50:a6:
63:79:6a:56:be:7b:7e:12:5c:ea:b4:99:99:72:47:
3c:42:4c:4f:93:90:0e:0e:30:89:12:67:05:95:c8:
dc:1a:1d:19:eb:d0:1b:2c:07:33:ad:32:29:08:1a:
08:e1:53:48:8b:dc:33:ab:e5:8c:bb:5d:67:ef:7f:
ee:7d:9f:ca:21:5f:04:e1:49:b9:cc:81:7c:c8:6a:
3e:5c:63:96:97:ac:8b:76:23:db:11:50:ff:fd:fa:
77:a1:6d:37:28:34:ff:92:8a:f1:fe:0b:1d:97:c6:
d1:e8:04:4c:3f:d7:16:b9:56:92:0b:0a:24:a7:7d:
a0:c6:e7:e5:64:6a:6e:75:41:07:f3:fc:15:0f:c9:
65:09:e2:28:4f:ff:30:2a:18:c5:0c:5d:b1:98:4a:
a6:85:b7:e3:44:ce:b2:00:d9:7e:1c:a4:47:d4:ab:
36:0f:0f:d4:8a:df:d0:67:04:1f:14:c3:3f:3e:92:
59:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:30:F6:41:04:88:F1:CB:10:0A:01:87:3D:A1:4E:66:D8:89:10:20
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/sDD2QQSI8csQCgGHPaFOZtiJECA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.8.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:67:5f:fa:6d:e9:e0:d4:cc:f7:f5:40:4d:d7:f5:7c:b6:72:
ca:43:4f:4e:65:7d:a6:c3:8b:42:4a:68:ba:9a:5d:bf:81:24:
75:98:ab:2a:29:ba:37:f5:90:4d:4d:7d:c4:35:bb:b5:07:6a:
b6:7a:b6:15:f2:b5:bd:5e:be:62:b6:3f:15:bf:c2:ce:6d:ab:
3d:d4:89:c6:73:66:4d:74:93:b0:8c:5a:9d:93:47:08:e6:23:
35:ab:6e:50:09:22:9d:b2:f5:00:6b:95:08:be:cc:56:c3:74:
0c:19:5e:64:b4:a0:cc:71:54:70:bc:6b:05:55:d4:71:77:1d:
3e:ce:11:a7:1b:bc:e7:4a:b0:8c:fd:fd:be:68:88:be:70:04:
74:46:fe:50:a8:bf:cc:f4:ea:f9:66:0d:71:61:c8:a9:66:d7:
75:61:d5:00:33:fd:ef:0b:e5:64:ef:e8:b5:2a:a2:44:bd:9e:
90:af:f7:3f:19:3e:75:29:74:8f:73:1c:b1:ad:d1:6c:41:2d:
5d:db:a9:34:96:9c:d4:29:ad:86:7e:5a:ef:56:dc:79:34:04:
0f:8d:49:a7:06:35:e1:24:59:ee:c1:20:e9:10:68:47:15:a3:
ec:6b:75:67:e9:5a:85:27:84:40:01:2c:08:25:36:13:8b:ba:
63:3b:f2:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org