Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/Fkoxuo5Q6TI0Skix0sC0wB6DpLA.roa
File: Fkoxuo5Q6TI0Skix0sC0wB6DpLA.roa (raw, json)
Hash identifier: GbjJ4kpGHpNKAk7cH/4gty38CIMTztVxg/w3scd6YU8=
Subject key identifier: 16:4A:31:BA:8E:50:E9:32:34:4A:48:B1:D2:C0:B4:C0:1E:83:A4:B0
Certificate issuer: /CN=d8173d42a8788c05de36fdfcd329c35b43eece3e
Certificate serial: 01856C25BBEEFAA829624B075F29B095DD4E
Authority key identifier: D8:17:3D:42:A8:78:8C:05:DE:36:FD:FC:D3:29:C3:5B:43:EE:CE:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Bc9Qqh4jAXeNv380ynDW0Puzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/Fkoxuo5Q6TI0Skix0sC0wB6DpLA.roa
Signing time: Sun 01 Jan 2023 07:04:50 +0000
ROA not before: Sun 01 Jan 2023 07:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57327
IP address blocks: 192.211.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:bb:ee:fa:a8:29:62:4b:07:5f:29:b0:95:dd:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8173d42a8788c05de36fdfcd329c35b43eece3e
Validity
Not Before: Jan 1 07:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=164a31ba8e50e932344a48b1d2c0b4c01e83a4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:52:87:35:39:ce:39:e9:1a:d6:c9:0c:02:0e:
f1:0b:d7:26:3a:08:73:6c:ea:6c:d4:90:4d:1c:11:
5b:d5:69:92:01:3c:be:2a:f7:03:da:ab:fe:50:46:
5a:89:18:cd:51:f0:64:54:e6:0d:f1:5e:42:33:42:
5a:4d:6c:36:ac:8e:cf:94:39:67:dc:58:99:f1:e0:
1a:29:d8:08:93:b2:c3:33:3d:ae:e3:a2:04:e8:85:
9f:42:48:b5:bf:0c:43:01:76:23:92:7a:2c:a6:9f:
18:7d:76:ab:59:39:15:c9:ab:84:22:39:e4:08:f3:
cd:c8:94:6f:8a:fe:b6:cb:43:60:1f:92:16:4b:b9:
37:4e:a9:3c:0b:2f:35:db:30:98:23:b7:7a:e3:0e:
07:f8:23:dd:8b:48:3e:6b:0c:12:1f:5d:91:7b:48:
cb:78:3b:e7:16:c2:6e:d5:af:7b:e9:a1:84:f3:9d:
42:78:db:90:40:8c:e5:9b:4c:94:c1:cc:26:ab:2b:
2e:4b:d2:fa:0f:dc:fa:da:8f:2d:3f:66:7e:23:fa:
fc:99:66:68:ed:9c:0a:2e:0d:74:7c:af:ed:a4:fe:
d0:a5:83:16:2c:38:5d:6a:79:ba:b0:48:cf:5e:af:
88:d9:4f:e2:f0:3a:44:c0:f0:77:ce:e4:ba:c2:80:
8b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4A:31:BA:8E:50:E9:32:34:4A:48:B1:D2:C0:B4:C0:1E:83:A4:B0
X509v3 Authority Key Identifier:
keyid:D8:17:3D:42:A8:78:8C:05:DE:36:FD:FC:D3:29:C3:5B:43:EE:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Bc9Qqh4jAXeNv380ynDW0Puzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/Fkoxuo5Q6TI0Skix0sC0wB6DpLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f50839-b5fb-48d8-ad7c-72545c9b4a9e/1/2Bc9Qqh4jAXeNv380ynDW0Puzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.211.0.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:c8:38:2c:cd:87:69:35:a0:21:5a:d9:51:5b:aa:50:cd:51:
32:b8:30:24:8e:53:97:de:2c:8b:74:a1:ec:70:ac:8b:5a:3c:
7a:dd:a3:59:73:56:92:0a:a7:de:cf:e1:4e:b1:60:2b:33:ac:
20:7d:9f:bd:a8:a3:4c:aa:a9:19:13:95:9a:9f:12:35:06:0d:
2d:f8:c0:13:b4:0d:a3:8a:61:f1:a0:49:4c:cc:93:38:69:89:
f1:1a:3e:ec:47:48:bb:c9:cd:8f:80:c6:2e:f2:97:84:36:4a:
61:1e:2c:cd:34:41:7f:4a:7e:0d:00:54:f8:c6:60:65:4e:ed:
76:6f:dd:b3:9b:11:68:92:6f:f5:b2:91:4c:f5:8b:4e:cd:b2:
53:81:c1:b5:1f:4a:5a:0a:cb:8f:88:ec:29:82:0d:3a:84:cf:
bd:0c:b3:f0:b8:10:d0:e8:3a:e7:40:9a:24:35:42:f8:c0:76:
f1:92:59:4d:24:4a:de:13:5b:a7:31:8f:85:81:ba:dd:01:0b:
7d:0b:00:79:12:54:d0:f1:63:89:67:66:3f:23:62:af:4e:42:
05:2d:ce:88:54:e5:d9:29:bb:ff:5d:54:02:a5:e5:d4:97:bf:
c2:5d:e7:b5:a2:a3:b2:9e:b7:1d:70:91:f5:b4:f3:0e:a0:e5:
e7:73:0e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:09 2024 by rpki-client on console-ams.rpki-client.org