Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9c2508-f69b-444b-b860-dc0e81a9d7b4/1/fcIVqZT5z2UPWd2BvfttleYPC00.roa
File: fcIVqZT5z2UPWd2BvfttleYPC00.roa (raw, json)
Hash identifier: XUvjcDZXIJOnQ35oiWddzbavjpozOy6lLu1DK2kQ4pY=
Subject key identifier: 7D:C2:15:A9:94:F9:CF:65:0F:59:DD:81:BD:FB:6D:95:E6:0F:0B:4D
Certificate issuer: /CN=32ad80d411acb93685f558aa7e12f46bd170a7fb
Certificate serial: 01856DCAE2A0565D20EF728BD37A32707123
Authority key identifier: 32:AD:80:D4:11:AC:B9:36:85:F5:58:AA:7E:12:F4:6B:D1:70:A7:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mq2A1BGsuTaF9ViqfhL0a9Fwp_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/9c2508-f69b-444b-b860-dc0e81a9d7b4/1/fcIVqZT5z2UPWd2BvfttleYPC00.roa
Signing time: Sun 01 Jan 2023 14:44:50 +0000
ROA not before: Sun 01 Jan 2023 14:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 147.189.19.0/24 maxlen: 24
147.189.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:e2:a0:56:5d:20:ef:72:8b:d3:7a:32:70:71:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ad80d411acb93685f558aa7e12f46bd170a7fb
Validity
Not Before: Jan 1 14:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dc215a994f9cf650f59dd81bdfb6d95e60f0b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:75:37:da:cd:46:4a:2c:e3:60:e9:c3:de:72:
a9:aa:8f:0a:a3:8c:95:f0:86:7b:e4:92:b7:63:e7:
fe:82:f6:a9:96:02:b6:7a:cc:78:8b:52:4d:e4:57:
ed:1b:54:8e:e9:90:6a:31:42:13:df:b5:47:f9:d4:
97:9d:58:bc:32:01:de:63:64:a8:68:30:f4:ed:47:
c9:83:5f:36:c1:6c:b3:d9:00:4f:64:2d:bb:c4:d7:
45:9f:5f:ce:f9:ce:cf:71:96:c1:29:8b:d8:47:1c:
b3:f3:40:0f:47:77:3e:3e:f7:e4:1c:d9:0b:65:39:
c5:d5:ed:ad:79:5c:7a:5e:3c:d8:2a:01:6c:81:cf:
f8:be:c5:46:61:06:18:9b:0a:e9:c2:e5:d8:5c:b2:
1a:00:96:23:3b:f5:73:cf:19:c9:59:1f:87:7a:0c:
8d:55:46:08:c9:d7:7c:22:d6:5f:f4:0b:ca:5a:32:
9b:c7:27:34:6f:f7:37:dd:88:19:d2:87:0a:dd:30:
d3:4b:51:55:71:92:31:4e:fb:e8:1a:58:c8:38:8b:
0e:5c:74:c4:dd:a9:8f:74:56:0b:3a:28:18:a8:08:
4f:88:81:79:4c:01:cc:b7:e1:2b:8d:f3:17:fb:8a:
98:6e:a0:62:e8:99:91:e9:95:ac:f3:6b:4b:66:1a:
5f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C2:15:A9:94:F9:CF:65:0F:59:DD:81:BD:FB:6D:95:E6:0F:0B:4D
X509v3 Authority Key Identifier:
keyid:32:AD:80:D4:11:AC:B9:36:85:F5:58:AA:7E:12:F4:6B:D1:70:A7:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mq2A1BGsuTaF9ViqfhL0a9Fwp_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9c2508-f69b-444b-b860-dc0e81a9d7b4/1/fcIVqZT5z2UPWd2BvfttleYPC00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9c2508-f69b-444b-b860-dc0e81a9d7b4/1/Mq2A1BGsuTaF9ViqfhL0a9Fwp_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.18.0/23
Signature Algorithm: sha256WithRSAEncryption
75:95:c6:75:01:03:ed:7d:b4:40:b4:bf:10:fd:2b:47:09:f0:
eb:18:91:44:57:bb:f7:f6:54:67:07:89:6a:48:a9:97:8a:ae:
27:6d:ed:e4:e6:f8:c0:ce:7f:b4:08:85:27:ab:22:2b:36:3e:
c6:c3:24:8a:80:66:bd:07:90:d2:52:43:2e:b6:32:06:10:67:
44:fb:ce:62:34:9c:9b:9e:da:5c:c1:60:ac:e9:18:ef:fa:49:
59:34:fa:af:52:3c:5d:1a:da:47:10:37:5d:10:5d:fc:e6:1d:
88:f9:e7:63:e7:5c:96:4f:63:95:5d:d9:eb:6b:18:81:66:48:
03:3a:50:38:0c:b6:79:ca:ba:6f:6b:29:2b:ff:14:4d:55:de:
af:58:67:cd:94:ed:4c:8f:5a:f4:4c:1d:5b:82:f8:df:41:f6:
ac:bd:3e:ba:1c:f7:1e:14:26:9b:ed:d2:67:55:95:9c:ad:b7:
5b:f8:83:3a:1c:83:80:6a:be:a8:bf:c7:9e:ca:43:ce:f0:5a:
36:bf:60:a0:7b:ba:6e:bb:b3:99:56:29:6b:8d:7a:56:28:35:
b8:cc:c2:bc:b2:f2:64:f8:2c:65:05:c1:8d:80:5a:dc:ef:b4:
e3:bb:5a:ce:ad:67:c5:cd:83:23:51:fe:ac:5a:d4:9e:70:b4:
a3:c5:6c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:19 2023 by rpki-client on console-ams.rpki-client.org