Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/AFdCIRCC6Fe_fgtpqFR4P4HZR8g.roa
File: AFdCIRCC6Fe_fgtpqFR4P4HZR8g.roa (raw, json)
Hash identifier: aTk9PN6OpRoD4y5wGt7zXxRh5D6AmgM/qhW2ro2ZIio=
Subject key identifier: 00:57:42:21:10:82:E8:57:BF:7E:0B:69:A8:54:78:3F:81:D9:47:C8
Certificate issuer: /CN=869569a2526687da91a7ecd4f567f5409cdffe79
Certificate serial: 0185701500A1DB0C28B53EF11BFB364E7E91
Authority key identifier: 86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/AFdCIRCC6Fe_fgtpqFR4P4HZR8g.roa
Signing time: Mon 02 Jan 2023 01:25:02 +0000
ROA not before: Mon 02 Jan 2023 01:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198843
IP address blocks: 5.56.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:00:a1:db:0c:28:b5:3e:f1:1b:fb:36:4e:7e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869569a2526687da91a7ecd4f567f5409cdffe79
Validity
Not Before: Jan 2 01:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=005742211082e857bf7e0b69a854783f81d947c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:62:ff:3b:98:06:e5:64:20:55:8e:89:f4:55:
42:ae:a4:3c:b9:30:ed:6a:7e:a8:cc:3f:3d:c3:b9:
e0:a9:32:05:13:df:a0:df:6a:ad:06:0c:af:d5:dd:
1b:01:43:cd:56:20:7b:d6:3a:f4:49:b7:ca:5d:5f:
db:66:47:b1:30:a2:86:1a:ff:b6:36:fe:0a:f1:d5:
21:1f:d8:8e:bf:e3:ae:71:92:02:23:58:60:db:78:
d2:5d:3a:07:b3:a7:12:cf:21:44:70:7e:5a:74:7f:
48:90:b5:59:c8:0a:91:d8:d1:11:3a:4b:56:53:a4:
7a:2c:27:ea:82:b8:10:41:41:41:a3:32:4a:8d:f6:
48:58:4f:0e:93:b6:3f:19:b3:02:51:f2:c0:1b:bb:
6a:96:1e:89:5d:da:f8:bc:aa:7d:f7:a8:64:ae:e7:
d0:c2:77:71:23:84:2b:24:6d:be:26:e0:18:7b:19:
6f:dc:ea:24:26:fa:52:71:be:87:78:dd:7e:37:88:
22:d6:b0:cb:49:79:5d:d7:b4:c7:28:f8:a9:65:45:
32:cb:54:a7:8e:40:a6:dc:f2:d3:a0:66:0c:13:47:
96:b6:cb:74:eb:cd:ca:42:e4:f5:ef:f5:b5:75:2b:
22:c9:86:da:9e:4b:77:01:2c:40:52:21:88:46:65:
ef:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:57:42:21:10:82:E8:57:BF:7E:0B:69:A8:54:78:3F:81:D9:47:C8
X509v3 Authority Key Identifier:
keyid:86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/AFdCIRCC6Fe_fgtpqFR4P4HZR8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/hpVpolJmh9qRp-zU9Wf1QJzf_nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.12.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:04:76:a9:48:d5:10:79:c1:0f:2d:26:56:86:17:a0:9e:f0:
0c:b4:6d:48:de:cc:97:52:67:c8:dc:78:52:27:2b:60:1e:4c:
e0:d9:b8:5d:3f:5c:6a:34:89:0f:2d:c3:52:2d:e5:35:ba:d4:
ca:95:66:12:ed:16:9c:6d:b3:80:0e:80:d7:f1:c5:e4:b1:49:
56:e3:d4:78:06:79:1e:e1:84:a3:4c:1d:18:f5:dd:69:58:3b:
9e:6b:5c:8b:fa:4b:7a:a4:ac:00:34:f7:fd:dc:78:d6:54:c1:
ea:ce:46:b2:49:07:ab:d7:6b:d9:6f:5d:14:5c:a7:0f:f8:13:
6a:2b:44:fe:6f:99:4b:89:95:2d:ed:e7:14:bf:00:0e:40:70:
21:24:b0:24:ed:d7:5d:cf:20:72:cc:b4:e9:ee:8e:a6:7b:be:
c5:12:d8:f2:25:18:a0:f3:51:bb:b9:e1:2d:c7:54:42:c0:f5:
19:6c:b5:59:ba:9e:86:46:ee:82:63:55:84:b1:89:e6:6b:f6:
0f:0c:15:55:ca:9e:1f:48:0a:cf:80:d1:0c:af:4d:ef:bc:c4:
e1:8e:1d:a0:bd:0a:70:69:fb:72:28:b7:c7:bf:9e:5c:38:4d:
e8:60:89:56:c0:2f:0d:eb:e4:aa:f0:b0:ed:20:20:60:d7:eb:
e2:00:56:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:20 2024 by rpki-client on console-fra.rpki-client.org