Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/F7t_113vcu4ZZO-tdV8rv3PKXMA.roa
File: F7t_113vcu4ZZO-tdV8rv3PKXMA.roa (raw, json)
Hash identifier: AcZhCBQkoduZLPu7BFtMVkFd8o88x+881DTm/M0pHUs=
Subject key identifier: 17:BB:7F:D7:5D:EF:72:EE:19:64:EF:AD:75:5F:2B:BF:73:CA:5C:C0
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018EBC720B9412784EA4801B23A4E0CEEE83
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/F7t_113vcu4ZZO-tdV8rv3PKXMA.roa
Signing time: Mon 08 Apr 2024 06:42:54 +0000
ROA not before: Mon 08 Apr 2024 06:42:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57604
IP address blocks: 139.28.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 18:27:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:72:0b:94:12:78:4e:a4:80:1b:23:a4:e0:ce:ee:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Apr 8 06:42:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17bb7fd75def72ee1964efad755f2bbf73ca5cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e2:51:79:ab:c8:50:47:4c:f6:04:4f:14:9f:
cd:3e:90:8e:4f:81:05:a2:98:19:29:fe:fd:21:76:
08:f3:c2:ea:35:f2:c3:0a:77:68:c3:ab:d1:4c:9a:
0a:c5:e7:ea:6a:4a:0f:f1:1a:74:c1:3c:37:3e:c6:
bd:fb:a5:d3:e2:a8:97:0d:6a:66:af:9f:53:54:da:
82:c2:3c:4e:c9:ee:1a:cf:64:c7:7e:1c:5b:90:85:
a6:06:58:3b:14:32:66:0f:95:7f:03:0c:6d:93:6c:
82:61:f2:7b:e2:ed:c3:71:99:81:46:ea:ee:65:77:
ea:38:a1:52:ce:a3:f3:fa:af:c7:b9:1a:c2:b8:21:
78:87:20:19:9b:07:f3:25:b5:5c:19:e8:6f:da:1c:
fa:77:14:f3:83:12:6b:ee:4a:2b:22:71:de:d2:8f:
45:a0:75:4a:a8:04:af:e8:44:1e:45:0a:33:7d:88:
ea:f6:11:79:62:6b:cc:1f:3f:5b:76:3a:8e:76:9d:
2b:99:30:fe:f6:27:fa:8b:6a:b8:a0:62:32:e3:d8:
45:f6:3e:fd:1a:c9:18:34:7b:8e:22:3d:5c:da:31:
ec:26:1c:aa:6a:c5:c3:ec:3d:22:43:f8:5f:61:50:
c1:40:96:27:46:59:50:8d:c8:9c:fe:b0:2a:b0:7e:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BB:7F:D7:5D:EF:72:EE:19:64:EF:AD:75:5F:2B:BF:73:CA:5C:C0
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/F7t_113vcu4ZZO-tdV8rv3PKXMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
70:3d:e4:56:6e:d8:40:0d:a7:7c:99:98:80:c8:35:40:21:83:
19:d5:f7:f4:b0:d1:11:f0:af:10:c6:a5:6e:a2:b4:4b:f0:67:
df:4f:6b:77:bb:79:e9:df:1d:c9:82:9a:7c:05:28:05:89:88:
03:32:0f:6e:bb:86:6c:5b:42:53:40:52:82:50:85:13:bf:39:
19:26:a3:da:a8:38:04:46:92:3f:33:4a:46:01:5d:85:f6:62:
92:a4:00:8a:c7:3c:d6:78:30:94:da:5f:9e:10:9b:bb:4f:38:
ac:d8:9a:f8:2b:51:a6:e4:c8:c3:c4:3e:b2:33:4b:8e:7e:7a:
07:c3:91:d7:fa:eb:87:6c:9c:2b:d2:1a:7b:44:d5:c7:a3:fb:
d5:47:07:1b:ea:48:d1:fb:36:9a:5d:d2:cc:e4:f3:a9:2d:1f:
dc:e8:7e:1d:b0:a8:c2:a8:32:61:c6:88:6e:e9:f8:19:b8:46:
e9:d7:ee:1f:1a:3b:7a:f3:7f:6a:70:ef:19:32:29:58:51:56:
86:8f:30:fa:0f:fa:5b:64:9e:b2:83:af:56:a5:15:92:40:1c:
2e:1f:bb:c7:64:16:f6:70:63:b2:33:2c:74:6d:65:d2:c0:21:
ff:2b:53:96:40:d5:a5:f3:d3:a2:ee:67:45:2f:d6:aa:fb:7e:
e7:07:a4:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org