Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/fz2MTk6_pgPAfDDJxsZAIHS2m-0.roa
File: fz2MTk6_pgPAfDDJxsZAIHS2m-0.roa (raw, json)
Hash identifier: rdWGDaJZ+DDhALzqKGr/xnph75PHajuw0peMxeqQEwc=
Subject key identifier: 7F:3D:8C:4E:4E:BF:A6:03:C0:7C:30:C9:C6:C6:40:20:74:B6:9B:ED
Certificate issuer: /CN=107807c2518915138f555123605c0133dfdbb4fa
Certificate serial: 01875193D35E5BFD6EC1759F4A7B77548530
Authority key identifier: 10:78:07:C2:51:89:15:13:8F:55:51:23:60:5C:01:33:DF:DB:B4:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/fz2MTk6_pgPAfDDJxsZAIHS2m-0.roa
Signing time: Wed 05 Apr 2023 13:20:55 +0000
ROA not before: Wed 05 Apr 2023 13:20:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 132.71.0.0/16 maxlen: 16
132.70.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:93:d3:5e:5b:fd:6e:c1:75:9f:4a:7b:77:54:85:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107807c2518915138f555123605c0133dfdbb4fa
Validity
Not Before: Apr 5 13:20:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f3d8c4e4ebfa603c07c30c9c6c6402074b69bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:86:c0:6d:8e:63:37:90:99:59:e3:f5:fc:75:
28:06:4b:75:9f:85:34:f1:ba:a7:2f:0e:2c:45:fe:
2e:be:31:94:3a:4b:71:74:58:0f:22:f6:8c:2b:b2:
da:f9:e1:bf:6c:9f:dd:af:5d:8e:40:38:f6:90:04:
d6:06:e7:c2:64:0a:9c:1a:79:d5:69:51:00:ea:cf:
9e:9e:c1:f4:f3:79:8b:ed:b2:16:ec:55:d2:84:e7:
2a:de:03:08:74:53:73:73:f6:a6:79:03:5d:00:19:
9a:89:92:2b:01:9e:27:b1:93:9e:4c:30:92:4a:5e:
4c:21:7f:a1:98:fa:a7:b3:2a:5e:2d:58:b2:ed:24:
31:59:99:dc:3c:13:05:a4:37:c6:90:15:8b:33:64:
78:2a:3f:5a:6e:b1:7d:a0:ca:3d:97:68:e4:99:e0:
ed:90:d8:07:a1:2b:57:aa:21:4f:49:b0:84:8b:02:
f5:67:37:95:c2:b4:4c:e4:69:53:f4:0b:71:9a:fa:
54:6a:bc:31:52:02:6c:43:18:92:26:c0:57:b5:aa:
7c:88:6b:77:59:7a:92:ce:76:5c:9b:fb:4b:ee:df:
aa:96:ac:f0:db:a4:00:bd:fb:21:09:25:b7:fd:d7:
f5:60:84:92:34:58:9f:e6:ef:9b:15:84:12:37:3a:
d6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3D:8C:4E:4E:BF:A6:03:C0:7C:30:C9:C6:C6:40:20:74:B6:9B:ED
X509v3 Authority Key Identifier:
keyid:10:78:07:C2:51:89:15:13:8F:55:51:23:60:5C:01:33:DF:DB:B4:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHgHwlGJFROPVVEjYFwBM9_btPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/fz2MTk6_pgPAfDDJxsZAIHS2m-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/2860a4-3b94-4274-a3a2-f9ac15e66386/1/EHgHwlGJFROPVVEjYFwBM9_btPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.70.0.0/15
Signature Algorithm: sha256WithRSAEncryption
63:35:fe:8c:05:7b:bc:88:98:01:34:e8:3d:8d:22:9c:81:77:
b0:a0:1d:5f:ca:31:6d:f4:f1:5f:15:06:82:29:57:0f:73:92:
b1:e6:0c:18:4e:40:6d:f7:20:99:9c:b3:4a:f9:63:4f:4d:b0:
d1:61:17:82:66:cd:8c:9b:db:da:2e:7d:ee:3a:54:ca:b7:ec:
f5:b0:b9:9c:0f:62:fb:12:89:42:ee:af:79:53:29:f2:54:fd:
31:00:49:9a:09:fd:7e:ca:4e:6e:2d:98:1c:02:f4:d1:e9:19:
1b:19:9d:71:cb:a4:75:f6:fb:87:ea:89:ae:f8:82:ea:aa:34:
7c:96:fb:2f:78:3e:5f:a6:b9:9a:cb:ff:0f:ae:e0:f1:de:21:
10:30:73:c4:6e:2f:a5:28:cb:69:8b:83:f9:21:9e:90:99:0f:
73:9f:75:6f:8e:66:63:ea:05:e3:39:5b:e7:98:f4:95:4b:f0:
4a:0b:ec:fe:bf:70:c8:3f:86:0c:65:cd:4b:c4:66:04:ca:91:
e4:6f:9a:ab:2d:bc:a0:36:0c:f4:ce:ab:e7:99:f7:39:01:48:
83:a3:d8:2d:9b:46:2a:9e:69:50:56:53:ec:c1:08:df:ce:33:
0b:b8:7c:52:2a:91:96:e2:9a:7b:be:7e:aa:b2:e2:e7:4a:20:
8e:12:70:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:07 2024 by rpki-client on console-ams.rpki-client.org