Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fubN2Yk2rcKVlLcvtVnUBuFlyeo.roa
File: fubN2Yk2rcKVlLcvtVnUBuFlyeo.roa (raw, json)
Hash identifier: zZC/s1gAplJbcj794MSty/IwW1Z/LzAFyZ8Bpih5/uE=
Subject key identifier: 7E:E6:CD:D9:89:36:AD:C2:95:94:B7:2F:B5:59:D4:06:E1:65:C9:EA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01878EBC0EE3BF4C0073445E6A6CD7E6F3D6
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fubN2Yk2rcKVlLcvtVnUBuFlyeo.roa
Signing time: Mon 17 Apr 2023 10:21:41 +0000
ROA not before: Mon 17 Apr 2023 10:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 194.87.116.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:bc:0e:e3:bf:4c:00:73:44:5e:6a:6c:d7:e6:f3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 17 10:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ee6cdd98936adc29594b72fb559d406e165c9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e5:5b:d6:66:80:b5:d0:39:46:0e:5a:59:15:
25:00:2d:c3:46:ea:9a:b8:75:6d:9e:99:94:8c:9b:
99:44:21:d7:c6:02:fb:25:2b:ac:72:56:b3:07:0c:
7d:78:25:8d:a0:25:23:60:f3:9b:2e:34:69:86:34:
0a:f8:dc:48:27:64:fc:17:9f:1c:f1:b2:ea:5b:51:
60:0d:94:87:02:37:df:86:e7:d9:e2:18:f2:02:95:
d3:96:23:36:5a:91:fe:74:56:84:bf:a0:3d:7e:31:
b1:e1:61:5f:3a:49:e0:2f:03:64:e8:69:7f:91:8e:
d5:3e:f1:00:c2:21:f8:3e:cd:46:17:ce:f6:f0:4f:
eb:99:43:32:ab:c8:ef:9d:30:2a:e9:63:1b:e4:e1:
59:d9:8c:fe:30:b5:49:11:25:13:99:de:48:6e:01:
2b:26:53:c5:b0:45:da:ad:4c:cb:f8:e3:b7:9d:1f:
74:8e:cd:a1:2c:5b:70:99:44:d4:ec:8f:cc:a7:44:
c5:c2:ed:4c:2f:db:96:55:26:db:70:86:f4:bc:03:
c1:81:58:11:82:ba:a2:73:21:dc:7e:1c:83:49:8e:
77:e1:71:90:a2:5e:68:e4:80:ee:25:19:76:81:c8:
b1:7b:67:9d:46:cd:36:4c:b2:74:b6:29:75:ae:61:
46:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E6:CD:D9:89:36:AD:C2:95:94:B7:2F:B5:59:D4:06:E1:65:C9:EA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fubN2Yk2rcKVlLcvtVnUBuFlyeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.116.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:9f:07:6e:b7:86:e1:29:2f:65:a0:29:7a:1a:a3:55:fc:fb:
cd:d3:7e:bd:6a:b7:53:1f:1a:c6:b7:95:37:ef:70:e9:a0:59:
29:19:68:a7:ad:a7:e5:10:d7:40:a9:58:22:13:38:b9:a0:5e:
cf:f0:1c:a0:e9:28:57:36:83:32:3e:7c:24:8f:1a:d6:f6:17:
1a:31:44:72:f8:e4:8c:57:35:23:c1:5c:86:67:94:e4:d2:2d:
41:de:3e:dd:1d:9f:59:c8:96:66:6d:44:b8:b8:36:a5:07:71:
b8:71:92:e1:bb:08:99:ee:9a:cb:a5:28:0e:02:03:72:96:0d:
20:d6:be:7f:51:4c:69:f0:44:58:b9:a1:db:0f:9b:46:27:6f:
9a:28:1d:96:43:93:58:a7:d0:23:15:0a:90:41:fe:08:c5:63:
85:aa:85:cd:d2:8b:d0:c4:4c:3f:4f:8d:a8:12:c8:6a:69:86:
08:d4:01:0e:5e:fd:fc:8b:31:aa:e6:b7:59:c5:ce:66:c9:c4:
cb:09:e6:33:52:2d:ee:bd:37:a4:e0:14:21:b1:f1:84:6b:37:
ab:24:18:7c:3c:b4:c5:e0:40:e6:3b:96:23:4c:23:8b:9e:8e:
ff:9d:87:b7:01:3b:f1:2c:df:f3:d4:53:be:37:2f:f4:1d:53:
06:74:5a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:08 2023 by rpki-client on console-fra.rpki-client.org