Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/FSPJcAvo39X80mz6qnVU28PkuMM.roa
File: FSPJcAvo39X80mz6qnVU28PkuMM.roa (raw, json)
Hash identifier: cVuY+H6fYSkgCbpx6C23r0oYX7UEIBe/nYcN/fg+4Ts=
Subject key identifier: 15:23:C9:70:0B:E8:DF:D5:FC:D2:6C:FA:AA:75:54:DB:C3:E4:B8:C3
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 0192B651F43C9FADE6A6707C0230A7520F9B
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/FSPJcAvo39X80mz6qnVU28PkuMM.roa
Signing time: Tue 22 Oct 2024 22:21:17 +0000
ROA not before: Tue 22 Oct 2024 22:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62044
IP address blocks: 87.58.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 22:37:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b6:51:f4:3c:9f:ad:e6:a6:70:7c:02:30:a7:52:0f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Oct 22 22:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1523c9700be8dfd5fcd26cfaaa7554dbc3e4b8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b1:7f:2c:37:78:9b:62:25:cb:9c:ba:f9:7f:
ec:04:84:51:4e:00:cd:9d:f0:e8:bd:be:3e:cf:07:
05:a5:5a:4b:2d:87:07:d6:83:99:5a:30:e3:0e:69:
e0:80:32:60:7a:25:39:02:70:2d:d1:a2:e1:e7:f0:
2f:3f:62:40:4b:17:68:57:1d:8d:84:6d:13:8f:95:
06:43:c5:e1:a1:8f:03:67:05:54:65:20:26:14:4b:
a5:55:e2:c2:6a:ab:d9:72:f4:c2:ee:18:50:77:48:
bf:62:bc:32:a6:91:83:bd:ac:a1:a5:c0:58:31:3b:
b9:5b:41:c5:98:83:b3:58:43:be:e6:1b:6e:23:69:
0e:65:d5:ba:79:f3:2a:ac:c7:6e:c2:60:09:2e:d9:
3b:fe:25:10:a6:20:14:54:31:bf:ef:7a:66:0d:c9:
2a:90:ca:83:d4:3b:cf:74:57:ae:94:73:cc:16:96:
fe:cc:a2:31:ef:ea:a2:1e:ea:69:0f:52:a5:d4:f5:
09:0f:43:f3:55:86:0b:e3:fd:a2:09:11:df:4e:e5:
5c:fb:6e:87:cf:6a:34:a6:71:32:1b:da:62:26:48:
1b:63:f6:54:b3:b1:5e:36:cd:c4:bb:f1:e3:e6:b2:
56:eb:34:55:30:0a:f6:fc:ae:a8:4c:c4:8f:19:ed:
01:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:23:C9:70:0B:E8:DF:D5:FC:D2:6C:FA:AA:75:54:DB:C3:E4:B8:C3
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/FSPJcAvo39X80mz6qnVU28PkuMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.58.127.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e2:4f:cc:ba:b1:37:cc:9c:96:30:3b:e8:39:18:b4:71:4a:
fe:ae:05:97:e1:6d:68:17:9f:0b:a6:2b:c6:2e:a0:bf:62:c8:
b6:0a:f8:f0:6a:0e:0c:0a:46:26:97:ae:80:ae:e0:ff:24:ff:
e6:d6:d0:1d:e6:84:8c:94:e7:f5:1f:2e:4a:24:24:4a:47:10:
24:00:78:f6:4b:ca:e6:ab:55:eb:85:5c:7a:84:e9:cd:e2:8f:
b1:04:2c:0a:98:dd:66:d0:3b:8b:0d:17:ef:45:b7:97:7c:90:
34:05:b5:1e:76:70:77:2e:0e:bc:fd:15:90:ff:3a:a9:2b:aa:
fb:5b:eb:b5:d5:c9:9b:0d:46:cb:25:4e:8b:9e:24:ca:fc:12:
64:d5:a9:f7:56:6c:a7:4d:22:83:8b:ad:3f:3a:b2:9a:cc:b6:
0e:35:ef:57:5d:ff:52:b6:e6:5a:10:dd:63:64:25:86:d2:85:
35:c9:74:5e:cd:93:10:a5:fe:70:22:dc:03:c1:f0:ab:eb:bb:
fd:1b:73:2c:69:a0:bf:f7:28:3f:62:30:0e:ae:84:8e:c7:87:
9a:83:84:de:18:55:5e:61:60:fc:ea:2d:9f:5a:9b:d3:5b:f5:
d8:92:bc:85:22:70:fb:d2:5a:e5:50:58:b5:4c:ff:79:ae:ab:
aa:f2:87:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:23 2025 by rpki-client