Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/f8edWHN6WLuOpFQTl49nwOCOl0U.roa
File: f8edWHN6WLuOpFQTl49nwOCOl0U.roa (raw, json)
Hash identifier: nGt0pufRpBLDBGYpfPH8wEgpRy9AWz6e6RXad5hdxik=
Subject key identifier: 7F:C7:9D:58:73:7A:58:BB:8E:A4:54:13:97:8F:67:C0:E0:8E:97:45
Certificate issuer: /CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Certificate serial: 018570E765E9A502D2CEF09238806339854E
Authority key identifier: A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/f8edWHN6WLuOpFQTl49nwOCOl0U.roa
Signing time: Mon 02 Jan 2023 05:14:51 +0000
ROA not before: Mon 02 Jan 2023 05:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211597
IP address blocks: 188.74.96.0/19 maxlen: 22
2a10:bcc0::/29 maxlen: 32
Validation: Failed, certificate revoked on Fri 17 Feb 2023 10:23:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:65:e9:a5:02:d2:ce:f0:92:38:80:63:39:85:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a19521c7352d1cac3f98c756fc7a6b4b3ae9753d
Validity
Not Before: Jan 2 05:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fc79d58737a58bb8ea45413978f67c0e08e9745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0a:9d:5e:33:f6:10:1e:73:ba:f2:8a:68:54:
dc:4e:03:76:01:a1:9e:13:d0:20:18:35:5a:a1:90:
3c:7c:2f:b6:07:ee:c7:27:73:e0:53:04:89:83:c0:
8e:35:82:13:f3:51:3b:ef:83:2c:24:50:27:d9:40:
9e:87:62:45:9d:a1:18:46:48:09:92:0a:d7:9f:88:
e3:fe:2c:4d:9b:71:4d:5a:79:94:e7:f4:2d:fd:f2:
a1:75:7e:41:60:27:ef:9d:2e:0c:a0:02:33:df:55:
d4:eb:79:4d:49:b0:88:0e:92:e5:f5:93:6a:63:80:
fc:cc:00:32:24:84:ae:22:fb:80:55:bd:ff:fa:bd:
c9:11:40:cd:7c:ac:ff:5e:bf:ff:06:3f:1b:5b:dc:
e4:66:3f:e4:69:d4:3e:6f:67:9c:7d:2a:33:3b:62:
e6:62:fb:bd:d5:4a:62:c2:92:32:f7:1b:47:a1:57:
d6:a7:13:10:ad:46:9f:02:b3:a0:8c:f3:99:f0:d8:
e1:50:1a:0f:78:4f:92:fd:e2:85:66:5a:9f:35:c3:
dd:c1:29:9a:75:a5:74:bd:56:6c:72:20:57:a1:5f:
6e:54:39:1e:c5:79:cd:c6:b0:c3:9b:15:1f:8b:de:
ac:5c:87:1c:56:ec:27:82:2e:55:7b:16:bf:f6:03:
21:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C7:9D:58:73:7A:58:BB:8E:A4:54:13:97:8F:67:C0:E0:8E:97:45
X509v3 Authority Key Identifier:
keyid:A1:95:21:C7:35:2D:1C:AC:3F:98:C7:56:FC:7A:6B:4B:3A:E9:75:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oZUhxzUtHKw_mMdW_HprSzrpdT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/f8edWHN6WLuOpFQTl49nwOCOl0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/2b7dc2-c1de-4970-ab53-e5ada36fa1f3/1/oZUhxzUtHKw_mMdW_HprSzrpdT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.74.96.0/19
IPv6:
2a10:bcc0::/29
Signature Algorithm: sha256WithRSAEncryption
6c:e2:3d:49:82:be:e1:2f:a2:50:72:be:0e:1e:cc:a7:3e:f9:
82:43:5d:4b:1e:3b:ac:b8:21:6a:2c:e1:70:84:4a:d4:b1:78:
2b:98:3a:dc:11:c4:8d:61:ec:d2:7b:8c:5b:0f:2e:af:8a:be:
32:f4:3d:98:3a:b8:3b:90:62:cf:ad:de:45:0b:85:e6:80:ee:
68:5f:a7:19:62:4c:2f:3c:92:21:4a:d5:b9:55:4b:9a:a6:9f:
ec:35:b3:5d:fb:d4:6f:09:ea:31:cc:8d:d0:b5:28:2b:85:0f:
22:6a:20:13:43:b5:f2:9e:f4:64:9f:e0:1b:8a:71:23:d6:3b:
35:3f:8b:2a:9a:ca:43:a2:e1:3d:bd:df:1b:93:e3:e4:a2:8c:
f6:9a:f7:4f:58:80:6f:d7:37:5d:ca:a9:a7:f4:cb:3a:d8:35:
f5:32:68:c8:9a:a7:1d:42:6a:3a:7f:a5:4f:1b:ae:6e:d4:98:
f1:67:6c:b5:45:c6:a0:1e:f2:93:2c:6e:18:2b:2d:7a:3b:73:
6a:9c:80:ae:66:6b:fe:4a:0d:94:cf:27:50:4d:40:91:4a:8f:
27:02:77:38:33:b2:7c:37:50:1f:31:c2:2a:3b:57:69:1c:ec:
b5:60:27:b2:b5:54:25:68:55:99:e1:b6:3c:b2:05:77:12:a5:
da:3f:d1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:52 2024 by rpki-client on console-fra.rpki-client.org