Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/fYCKq-bc0bmELMMnWSaF6_42U7c.roa
File: fYCKq-bc0bmELMMnWSaF6_42U7c.roa (raw, json)
Hash identifier: YMnH8rOcDdIQcld/NUtFMEP+I6bHwz8isOZdsfv0nWc=
Subject key identifier: 7D:80:8A:AB:E6:DC:D1:B9:84:2C:C3:27:59:26:85:EB:FE:36:53:B7
Certificate issuer: /CN=430a5648e1d46b662f4d1dcc066d39427c65f0d1
Certificate serial: 01856CEF3C9D902198A5C0BE324744970C50
Authority key identifier: 43:0A:56:48:E1:D4:6B:66:2F:4D:1D:CC:06:6D:39:42:7C:65:F0:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwpWSOHUa2YvTR3MBm05Qnxl8NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/fYCKq-bc0bmELMMnWSaF6_42U7c.roa
Signing time: Sun 01 Jan 2023 10:44:55 +0000
ROA not before: Sun 01 Jan 2023 10:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2439
IP address blocks: 147.215.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:3c:9d:90:21:98:a5:c0:be:32:47:44:97:0c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430a5648e1d46b662f4d1dcc066d39427c65f0d1
Validity
Not Before: Jan 1 10:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d808aabe6dcd1b9842cc327592685ebfe3653b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:45:83:48:b8:25:4e:0f:b2:f3:c9:7d:ef:fc:
26:89:44:26:6c:38:4c:fc:1f:ab:50:7d:f9:25:18:
51:f5:90:dc:d4:f8:fd:c2:e1:79:dd:05:7f:70:37:
e5:b7:3f:4d:9f:db:6f:79:eb:b3:2e:56:5a:12:84:
85:5d:7d:23:ec:bd:b3:fc:b6:73:76:f1:7f:13:ed:
a9:b3:3a:32:b9:a4:23:b2:cd:11:1e:09:1c:29:5f:
d8:a6:d0:cf:34:66:16:63:03:0e:06:1a:1f:e9:2e:
e8:db:cf:88:ac:5b:0a:4e:f7:30:61:f6:25:e2:89:
25:9d:32:50:67:7e:ff:f6:39:d5:fb:2b:6a:0b:ae:
d7:2e:5e:89:86:95:82:53:7a:2f:92:1e:29:b7:3e:
68:7f:ac:51:6e:a0:4a:40:03:1c:af:11:99:12:9d:
d2:6a:d9:cd:d3:e4:12:48:a1:ca:87:5a:b4:0a:d4:
66:e5:da:d8:24:e8:2e:ec:01:f2:f3:55:0d:d5:ad:
2d:e4:74:0b:ff:26:e5:84:6f:e9:13:76:65:7e:5d:
d9:ad:73:3a:fb:1d:fd:ca:81:b6:15:d1:1c:98:4c:
78:c7:d3:89:93:d7:ae:27:63:25:d1:ab:2d:a3:41:
5e:5e:7f:62:be:8b:66:fb:24:17:79:90:46:6a:da:
e9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:80:8A:AB:E6:DC:D1:B9:84:2C:C3:27:59:26:85:EB:FE:36:53:B7
X509v3 Authority Key Identifier:
keyid:43:0A:56:48:E1:D4:6B:66:2F:4D:1D:CC:06:6D:39:42:7C:65:F0:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwpWSOHUa2YvTR3MBm05Qnxl8NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/fYCKq-bc0bmELMMnWSaF6_42U7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/QwpWSOHUa2YvTR3MBm05Qnxl8NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.215.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:e9:c4:4a:56:e4:9c:01:cd:52:3e:97:4d:c9:e8:20:3f:26:
1c:46:ca:00:57:f8:b4:a4:cf:1d:da:a7:0a:02:4f:e1:25:2a:
34:93:f0:68:bc:02:54:3a:c5:83:bb:03:92:dd:6c:46:5a:1d:
b0:a6:7f:da:9a:8a:27:ca:d6:48:99:de:99:21:d8:00:2d:f2:
52:c6:da:fe:d0:5d:c6:3c:60:6b:55:52:58:17:4f:95:08:56:
fd:c2:f4:a5:f8:70:4a:7d:d5:ff:83:19:0f:5c:ea:ec:60:c1:
e5:a0:31:a1:74:53:31:07:79:a4:08:0c:25:c1:cb:f5:55:6f:
5f:1d:ad:d4:33:a3:a2:4e:72:45:ae:70:62:1e:d3:f8:d2:24:
f9:de:27:02:c3:f2:fb:46:6c:6d:a4:4b:0d:02:07:a0:4b:ce:
bf:aa:16:49:da:fb:04:be:1a:df:0d:43:c8:27:6b:ee:84:13:
66:6a:e0:b0:6a:45:95:3b:53:99:0a:53:1a:c5:c9:8a:51:b9:
b1:69:67:d4:82:26:0c:42:44:5d:5c:f8:b9:24:c8:6b:21:f3:
c7:fd:f9:4c:7f:57:64:6c:dd:15:1a:25:06:90:ae:28:07:2c:
81:1a:6e:da:45:5a:72:85:33:71:86:fc:88:d6:e0:58:c8:28:
72:95:a2:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:22 2024 by rpki-client on console-fra.rpki-client.org