Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/Fx3FfP1OA5XmYtpvu62ei0E2zvE.roa
File: Fx3FfP1OA5XmYtpvu62ei0E2zvE.roa (raw, json)
Hash identifier: wgyFG8RyBbAyy200lRvxtQ5st7V41PV2eypxmPZ215g=
Subject key identifier: 17:1D:C5:7C:FD:4E:03:95:E6:62:DA:6F:BB:AD:9E:8B:41:36:CE:F1
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 01856DDD3A07E139D1844864B4502655E65A
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/Fx3FfP1OA5XmYtpvu62ei0E2zvE.roa
Signing time: Sun 01 Jan 2023 15:04:52 +0000
ROA not before: Sun 01 Jan 2023 15:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50012
IP address blocks: 31.129.232.0/24 maxlen: 24
31.129.233.0/24 maxlen: 24
31.129.235.0/24 maxlen: 24
31.129.234.0/24 maxlen: 24
213.5.192.0/24 maxlen: 24
213.5.195.0/24 maxlen: 24
213.5.193.0/24 maxlen: 24
213.5.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 17:45:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:3a:07:e1:39:d1:84:48:64:b4:50:26:55:e6:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Jan 1 15:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=171dc57cfd4e0395e662da6fbbad9e8b4136cef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9a:a6:98:02:b0:7e:a4:aa:a2:ad:89:4e:16:
bf:65:dc:e1:b0:05:7d:25:ee:9f:6e:59:ac:9d:4b:
00:62:ad:96:42:ff:70:5b:7d:0f:54:be:5a:cc:61:
53:0d:76:bb:cd:04:30:75:d7:54:4c:1a:12:3e:ef:
d0:69:2e:b4:d3:c1:9e:c8:c0:fb:08:f5:4e:28:23:
73:49:ae:c9:48:c6:d5:43:43:95:07:91:fc:30:42:
11:e1:c4:a5:40:2e:32:04:3a:d4:2f:05:dd:8b:37:
64:bf:30:f0:91:25:fd:5d:7c:23:19:87:fa:68:f7:
dc:2f:4e:41:d7:3b:e6:a0:47:df:97:b9:1d:1b:b0:
25:ed:3a:68:3a:ef:ad:19:02:64:7d:be:e2:45:0d:
11:74:69:90:b7:05:bb:e5:48:f8:62:23:6e:2f:2e:
85:42:7f:38:ae:18:7c:f0:50:26:02:32:e6:b2:ba:
2a:92:1d:8f:5c:e6:2a:60:8b:aa:8b:da:a7:98:6f:
b5:74:ec:95:18:aa:e3:86:85:73:f5:24:fb:f5:63:
3b:ed:48:64:88:69:4d:de:9c:1d:6c:68:26:cb:bd:
db:33:a6:9d:f4:26:df:1c:98:7e:41:36:be:95:2e:
f3:2b:0d:cf:a5:5a:8f:3d:6e:25:11:4e:0f:03:4b:
a5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:1D:C5:7C:FD:4E:03:95:E6:62:DA:6F:BB:AD:9E:8B:41:36:CE:F1
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/Fx3FfP1OA5XmYtpvu62ei0E2zvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.232.0/22
213.5.192.0/22
Signature Algorithm: sha256WithRSAEncryption
02:43:93:ef:25:65:5d:51:9b:d6:42:01:ba:5a:a9:60:7c:64:
fc:72:1a:45:45:39:8c:df:40:97:53:e3:30:cc:62:a5:98:c8:
f7:98:85:32:bc:6f:f0:87:a4:12:5b:c3:da:08:7f:85:7e:b3:
02:85:5b:d3:ca:b8:ad:e1:c1:61:90:f1:76:75:fd:57:24:2c:
5a:4c:a1:27:1c:16:ad:b1:98:a4:51:e7:91:d8:4e:fb:ad:0b:
1a:bf:d3:29:5d:96:e5:b4:ad:d1:f9:53:10:a9:a8:0f:b5:26:
1e:8b:cc:9a:ad:6a:d3:6a:6e:f2:2c:32:90:13:7a:6f:e3:88:
e0:17:91:a8:bc:36:68:36:df:d8:b1:5b:c5:87:e9:09:0c:33:
43:c3:8f:30:a0:ad:ee:34:fd:f6:6f:49:9a:c2:a0:f4:1d:86:
4e:27:2c:0b:a2:46:7c:f5:da:9f:bf:db:77:d6:ce:f5:1b:01:
11:f2:b4:71:44:a3:86:9b:22:e2:32:fb:eb:b1:7d:5c:cd:6c:
15:a2:e5:27:33:d5:8d:6f:f0:bf:96:94:a8:97:aa:97:3b:d8:
cb:e1:bf:98:3a:f6:c6:73:17:20:06:00:ee:90:64:1f:08:b2:
22:b7:34:9f:6f:5a:9f:a8:1c:e0:32:74:33:81:5c:4a:a4:be:
c2:fd:b3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:57 2024 by rpki-client on console-ams.rpki-client.org