Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2d5337-da24-4ce8-a3b7-c302c10ec5c0/1/fPc7xFF2KuNrt6haIzVyp0B37sQ.roa
File: fPc7xFF2KuNrt6haIzVyp0B37sQ.roa (raw, json)
Hash identifier: FwPzu6adxyiejeWO7RBIM2zgtIEiniUVPNts49zJnO0=
Subject key identifier: 7C:F7:3B:C4:51:76:2A:E3:6B:B7:A8:5A:23:35:72:A7:40:77:EE:C4
Certificate issuer: /CN=e363a9d7023b3cb0032912dcaac9c563c90a9772
Certificate serial: 0188763400022F0909E0D925D095BA619096
Authority key identifier: E3:63:A9:D7:02:3B:3C:B0:03:29:12:DC:AA:C9:C5:63:C9:0A:97:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/42Op1wI7PLADKRLcqsnFY8kKl3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2d5337-da24-4ce8-a3b7-c302c10ec5c0/1/fPc7xFF2KuNrt6haIzVyp0B37sQ.roa
Signing time: Thu 01 Jun 2023 09:04:59 +0000
ROA not before: Thu 01 Jun 2023 09:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198024
IP address blocks: 2a00:89e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:76:34:00:02:2f:09:09:e0:d9:25:d0:95:ba:61:90:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e363a9d7023b3cb0032912dcaac9c563c90a9772
Validity
Not Before: Jun 1 09:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cf73bc451762ae36bb7a85a233572a74077eec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f6:bb:b2:b1:e7:a4:0a:aa:ec:b9:2b:95:65:
b2:09:73:5f:fa:1b:a6:55:c0:8a:4b:e0:69:5f:63:
a6:34:04:d7:ae:55:17:98:7f:75:22:34:af:c7:64:
f7:74:b1:a9:0e:a9:2d:1c:63:a3:e5:d8:3a:f9:88:
49:13:71:13:5e:01:ee:48:e8:d2:3a:b8:23:17:01:
fa:a4:33:eb:5f:ee:f8:24:0c:eb:69:1b:4f:0c:ad:
dc:9e:8e:5d:24:3e:3e:b7:f5:45:3c:ff:e7:9c:03:
5b:ea:e8:37:98:a8:6c:3c:82:fb:cb:0d:ac:7b:9b:
94:53:5e:14:80:6b:41:96:0c:fb:73:11:64:d6:a7:
2b:f0:fb:68:cd:c1:d4:64:cf:44:02:fb:7e:d9:71:
b3:63:a0:9b:d3:71:b3:99:07:e7:b5:23:db:65:4b:
39:84:f4:f1:b8:ed:03:09:b6:12:39:ad:7f:f7:8d:
3f:9a:f9:4f:b5:0c:bc:fa:2c:5e:81:19:70:64:78:
0f:28:68:7d:e8:4d:4b:16:9a:02:5d:c5:0a:97:2f:
ce:b9:ac:36:b5:3b:76:4f:c4:19:34:d3:df:55:0f:
55:7a:96:ab:58:ec:60:17:7f:77:06:35:09:94:95:
6b:46:75:bd:b3:22:39:0b:75:7f:cc:87:42:96:15:
27:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F7:3B:C4:51:76:2A:E3:6B:B7:A8:5A:23:35:72:A7:40:77:EE:C4
X509v3 Authority Key Identifier:
keyid:E3:63:A9:D7:02:3B:3C:B0:03:29:12:DC:AA:C9:C5:63:C9:0A:97:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/42Op1wI7PLADKRLcqsnFY8kKl3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2d5337-da24-4ce8-a3b7-c302c10ec5c0/1/fPc7xFF2KuNrt6haIzVyp0B37sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2d5337-da24-4ce8-a3b7-c302c10ec5c0/1/42Op1wI7PLADKRLcqsnFY8kKl3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:89e0::/32
Signature Algorithm: sha256WithRSAEncryption
8d:c8:8b:52:46:12:c3:60:b7:23:c8:c9:c7:38:0c:c5:7d:07:
ce:46:39:6c:1d:78:d4:81:ac:f0:59:58:5f:e9:6a:14:4c:71:
71:90:c0:e4:ef:cf:24:e7:33:32:b5:6c:a9:4e:c8:5d:c7:3f:
32:13:ff:db:2f:5b:79:31:0a:0a:cd:81:1e:89:56:4b:7f:85:
c3:d2:62:0d:bb:da:b8:9a:2c:b4:e6:7a:3d:28:cf:b3:dd:30:
44:71:95:25:92:95:63:e9:15:7b:26:a0:da:97:ff:73:10:62:
29:10:d1:bb:cf:14:53:16:23:20:24:85:6b:9d:ad:03:ea:13:
67:66:65:83:af:dc:74:cc:a9:6b:95:31:5b:d6:7c:97:cc:9b:
35:e8:49:d2:d0:ed:04:a7:c0:54:5f:8d:85:c6:9d:bf:ad:9c:
cf:8f:b3:79:c4:e1:ae:be:f6:1c:31:8e:bd:64:1e:8e:b0:42:
0f:3c:05:d0:9a:48:b8:8a:61:b3:d5:3b:b5:0f:9b:fc:a3:f5:
47:59:58:93:52:0b:fe:42:ad:d7:fb:28:54:58:a3:49:60:11:
5a:28:a4:62:c0:0d:0d:4a:3e:e5:04:0c:2d:f7:06:6f:32:5f:
15:72:bf:00:ec:10:c2:1e:96:4b:7a:f6:4c:cc:4c:8f:0f:1c:
ed:96:65:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:50 2024 by rpki-client on console-ams.rpki-client.org