Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/1Rr1T2Tye_Baw3Mp3400vfkIyVk.roa
File: 1Rr1T2Tye_Baw3Mp3400vfkIyVk.roa (raw, json)
Hash identifier: qjHfrlTFvdUh7dcpQZEBy4X7nMdBZaHgNc7D191FXDM=
Subject key identifier: D5:1A:F5:4F:64:F2:7B:F0:5A:C3:73:29:DF:8D:34:BD:F9:08:C9:59
Certificate issuer: /CN=43fad79548afc5c83e59bbfe388c64492cb55013
Certificate serial: 018572B402598B4FF8928103F819132BD038
Authority key identifier: 43:FA:D7:95:48:AF:C5:C8:3E:59:BB:FE:38:8C:64:49:2C:B5:50:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/1Rr1T2Tye_Baw3Mp3400vfkIyVk.roa
Signing time: Mon 02 Jan 2023 13:37:57 +0000
ROA not before: Mon 02 Jan 2023 13:37:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44407
IP address blocks: 188.231.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:02:59:8b:4f:f8:92:81:03:f8:19:13:2b:d0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fad79548afc5c83e59bbfe388c64492cb55013
Validity
Not Before: Jan 2 13:37:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d51af54f64f27bf05ac37329df8d34bdf908c959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3c:46:a9:ac:73:6d:eb:85:d5:1f:d2:41:db:
96:d0:29:28:97:e0:a2:32:c8:dc:7e:d7:b3:fe:9c:
56:95:77:ef:4d:45:f0:76:5d:78:61:eb:10:1d:6f:
21:f0:b7:31:5c:b0:67:57:3b:03:19:a2:72:ef:79:
0f:a1:18:7f:be:df:16:43:eb:e7:03:48:a1:bc:c8:
18:56:ed:dd:d8:94:b5:f1:87:d7:e0:29:55:94:25:
8b:a7:77:61:20:86:ad:f2:c1:32:52:65:04:60:77:
cd:c1:31:d6:97:68:e5:bf:a3:9c:13:63:56:ae:08:
e6:1f:0b:55:fd:46:89:83:4f:02:c9:b5:66:22:66:
38:5f:07:9c:04:16:94:bb:83:17:93:31:a1:9a:5f:
c9:7b:2d:ce:bb:15:60:e9:16:4e:a0:e7:73:cb:58:
63:8e:bc:09:88:d3:7f:2a:7e:b5:31:ce:3a:4f:ec:
25:8f:17:23:e9:02:71:ff:bc:c3:f0:a5:85:47:7f:
77:2e:64:bd:12:99:85:3f:21:59:1e:36:0d:9f:d0:
a3:3d:be:e0:b0:74:27:60:4b:ae:14:00:7a:fe:77:
65:9c:d8:17:ea:1e:0c:26:4d:a8:6b:18:86:61:04:
7e:76:eb:0e:a6:a7:31:a1:fd:b5:92:f8:87:c6:17:
5e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:1A:F5:4F:64:F2:7B:F0:5A:C3:73:29:DF:8D:34:BD:F9:08:C9:59
X509v3 Authority Key Identifier:
keyid:43:FA:D7:95:48:AF:C5:C8:3E:59:BB:FE:38:8C:64:49:2C:B5:50:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/1Rr1T2Tye_Baw3Mp3400vfkIyVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.231.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9f:97:73:e0:46:cf:7d:19:05:e7:f7:78:6f:97:29:69:4b:f7:
0e:cc:fe:ec:19:56:85:a2:4c:28:9c:5c:95:db:d8:10:71:29:
99:4e:d2:44:97:21:ed:fb:ba:8a:25:7c:42:73:89:95:b6:c4:
26:a7:6c:f1:e6:6b:9b:73:3f:14:26:d8:10:70:71:71:fd:33:
a2:91:4b:02:96:bd:2f:82:9b:c3:cd:08:5e:9d:2a:20:5f:6a:
65:5d:4f:07:26:36:ae:f7:41:d2:b5:1a:e8:9c:b5:5f:f6:ff:
0a:ee:58:48:bf:eb:8d:39:d9:81:19:c2:8f:0c:45:bb:04:f8:
fb:c2:20:e1:59:e8:c0:55:98:df:ad:d0:14:97:fd:a9:f4:56:
67:84:1b:bf:b2:4c:7c:ff:09:c3:f3:83:57:da:d5:bb:2d:ca:
3d:4e:a2:a9:0f:11:ae:bf:b5:ed:66:57:0f:67:b7:e6:56:bc:
3e:7a:b5:1b:3b:2c:95:f4:d2:ac:7e:30:1a:5d:9e:ed:c8:46:
c4:92:a6:52:35:1c:cb:b9:fb:06:4f:d2:60:f8:39:e5:3f:8c:
5b:d2:a6:a3:09:53:7e:5a:7a:16:1b:2e:79:d6:73:24:02:fb:
24:46:53:7e:95:1f:96:80:cf:9b:d3:98:5f:43:8a:55:5f:04:
ce:01:f8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:12 2024 by rpki-client on console-fra.rpki-client.org