Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/FPRlfS42MJlple4hDGr2DoCV5Sk.roa
File: FPRlfS42MJlple4hDGr2DoCV5Sk.roa (raw, json)
Hash identifier: +YSIKdYwY2pg5sL5Dw7khF64J7s1rkrzm1QlVUCgWPk=
Subject key identifier: 14:F4:65:7D:2E:36:30:99:69:95:EE:21:0C:6A:F6:0E:80:95:E5:29
Certificate issuer: /CN=b7b67ba579f48a4207ac409abf4f01194046ea3a
Certificate serial: 01857082C53706AE7A9A3AB40EE17F155632
Authority key identifier: B7:B6:7B:A5:79:F4:8A:42:07:AC:40:9A:BF:4F:01:19:40:46:EA:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/FPRlfS42MJlple4hDGr2DoCV5Sk.roa
Signing time: Mon 02 Jan 2023 03:24:56 +0000
ROA not before: Mon 02 Jan 2023 03:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43437
IP address blocks: 79.171.192.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 19:20:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c5:37:06:ae:7a:9a:3a:b4:0e:e1:7f:15:56:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7b67ba579f48a4207ac409abf4f01194046ea3a
Validity
Not Before: Jan 2 03:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14f4657d2e3630996995ee210c6af60e8095e529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1f:d8:c7:26:d2:ea:fc:d0:32:0b:46:f9:4e:
6b:c2:ea:53:12:ac:33:c8:63:84:a9:70:fd:9a:87:
fb:7a:b0:94:57:40:98:f6:7b:c3:30:56:8a:94:9a:
0b:d3:95:cc:54:c1:eb:77:c6:fa:fb:06:e9:e4:90:
65:ed:95:48:23:64:15:77:81:fd:06:f1:64:fd:05:
e8:51:73:62:43:a5:4a:3d:cc:60:79:a6:d2:8d:04:
66:e1:ce:9d:02:2a:21:da:a0:ef:32:a1:5c:99:c8:
33:37:9d:3d:ac:e1:27:26:bb:aa:75:db:ef:e6:f3:
0e:73:80:77:a1:8b:ce:57:3c:1f:73:59:fb:4a:c5:
44:78:fc:f4:c4:42:ae:01:45:41:4c:2a:46:56:4e:
1c:4c:10:56:f8:7e:a6:91:3d:1c:10:20:ee:ab:93:
62:c4:cb:48:cc:96:bf:ee:ec:b5:3a:a7:34:e5:3f:
87:bf:2f:38:f2:f8:75:d3:a1:50:5d:d4:39:7f:10:
53:6d:2b:31:9e:fe:6d:a7:63:29:16:5f:60:d3:05:
76:c3:f6:1c:2a:5c:6c:40:67:09:a5:83:8a:58:0d:
6e:bd:96:71:af:b9:70:15:64:b3:42:eb:02:26:b2:
a1:c3:61:1a:a6:b3:a6:b6:02:14:18:ee:dc:98:e9:
80:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F4:65:7D:2E:36:30:99:69:95:EE:21:0C:6A:F6:0E:80:95:E5:29
X509v3 Authority Key Identifier:
keyid:B7:B6:7B:A5:79:F4:8A:42:07:AC:40:9A:BF:4F:01:19:40:46:EA:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t7Z7pXn0ikIHrECav08BGUBG6jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/FPRlfS42MJlple4hDGr2DoCV5Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/963d75-4cff-4b14-83df-b774320d997f/1/t7Z7pXn0ikIHrECav08BGUBG6jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.192.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:09:2b:aa:bb:6d:3f:7d:0c:5a:ce:5a:e3:6c:51:79:a0:e9:
e5:b8:d7:f2:c9:b3:d3:08:85:d2:74:bd:96:de:a6:55:83:98:
d8:91:11:ce:88:74:29:59:cb:f9:16:8f:ca:64:03:e0:ca:c8:
c8:1b:7f:3e:06:a5:46:5b:f9:d0:e7:1e:ee:1d:73:0b:92:02:
82:fa:e5:a7:e3:d5:02:69:01:2d:b1:8c:a2:7e:30:7f:02:02:
ee:5f:d9:08:57:a5:e4:09:ab:3b:4e:89:a7:81:ec:07:77:6a:
5b:72:28:4a:ba:1d:e0:70:cd:9e:91:15:e6:03:a9:a5:c5:d6:
f2:2d:76:f9:c7:00:ed:a9:92:22:bc:b5:ee:f1:a4:4c:11:fd:
92:43:20:26:de:45:de:ab:e9:9f:39:a9:12:d7:e4:23:b2:6b:
bc:43:a0:c4:77:1f:26:90:a7:15:cc:fd:0e:92:d2:da:14:b1:
dc:48:12:d5:e6:a7:ae:0b:79:e0:25:9f:6e:67:dc:36:6b:19:
c7:65:ce:76:4e:86:d4:f1:6e:48:18:87:d4:dc:f6:ae:89:73:
0e:65:9d:1f:74:3c:62:04:66:43:d2:9b:15:25:6c:ea:31:af:
3a:16:9e:53:2c:35:49:60:7d:e5:f2:12:51:c8:ed:f6:12:97:
c8:ff:9a:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgsU3Bq56mjq0DuF/FVYyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3YjY3YmE1NzlmNDhhNDIwN2FjNDA5YWJmNGYwMTE5NDA0
NmVhM2EwHhcNMjMwMTAyMDMyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNGY0NjU3ZDJlMzYzMDk5Njk5NWVlMjEwYzZhZjYwZTgwOTVlNTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0x/YxybS6vzQMgtG+U5rwupTEqwz
yGOEqXD9mof7erCUV0CY9nvDMFaKlJoL05XMVMHrd8b6+wbp5JBl7ZVII2QVd4H9
BvFk/QXoUXNiQ6VKPcxgeabSjQRm4c6dAioh2qDvMqFcmcgzN509rOEnJruqddvv
5vMOc4B3oYvOVzwfc1n7SsVEePz0xEKuAUVBTCpGVk4cTBBW+H6mkT0cECDuq5Ni
xMtIzJa/7uy1Oqc05T+Hvy848vh106FQXdQ5fxBTbSsxnv5tp2MpFl9g0wV2w/Yc
KlxsQGcJpYOKWA1uvZZxr7lwFWSzQusCJrKhw2EaprOmtgIUGO7cmOmAJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBT0ZX0uNjCZaZXuIQxq9g6AleUpMB8GA1UdIwQY
MBaAFLe2e6V59IpCB6xAmr9PARlARuo6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDdaN3BYbjBpa0lIckVDYXYwOEJHVUJHNmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni85NjNkNzUtNGNmZi00YjE0LTgzZGYt
Yjc3NDMyMGQ5OTdmLzEvRlBSbGZTNDJNSmxwbGU0aERHcjJEb0NWNVNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni85NjNkNzUtNGNmZi00YjE0LTgzZGYtYjc3NDMyMGQ5OTdm
LzEvdDdaN3BYbjBpa0lIckVDYXYwOEJHVUJHNmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDT6vAMA0G
CSqGSIb3DQEBCwUAA4IBAQBvCSuqu20/fQxazlrjbFF5oOnluNfyybPTCIXSdL2W
3qZVg5jYkRHOiHQpWcv5Fo/KZAPgysjIG38+BqVGW/nQ5x7uHXMLkgKC+uWn49UC
aQEtsYyifjB/AgLuX9kIV6XkCas7TomngewHd2pbcihKuh3gcM2ekRXmA6mlxdby
LXb5xwDtqZIivLXu8aRMEf2SQyAm3kXeq+mfOakS1+Qjsmu8Q6DEdx8mkKcVzP0O
ktLaFLHcSBLV5qeuC3ngJZ9uZ9w2axnHZc52TobU8W5IGIfU3PauiXMOZZ0fdDxi
BGZD0psVJWzqMa86Fp5TLDVJYH3l8hJRyO32EpfI/5p3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:31 2024 by rpki-client on console-ams.rpki-client.org