Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/fhnvKMMu5Fx0cQckfKDiHg0df6s.roa
File: fhnvKMMu5Fx0cQckfKDiHg0df6s.roa (raw, json)
Hash identifier: 848d8E70xqivrwl0sGonchTUHkEuq4etwawfv7O7GXA=
Subject key identifier: 7E:19:EF:28:C3:2E:E4:5C:74:71:07:24:7C:A0:E2:1E:0D:1D:7F:AB
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01889A07091B049E4815B7D82F2E390989F7
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/fhnvKMMu5Fx0cQckfKDiHg0df6s.roa
Signing time: Thu 08 Jun 2023 08:02:12 +0000
ROA not before: Thu 08 Jun 2023 08:02:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211619
IP address blocks: 194.15.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jul 2023 08:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:07:09:1b:04:9e:48:15:b7:d8:2f:2e:39:09:89:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 8 08:02:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e19ef28c32ee45c747107247ca0e21e0d1d7fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:53:f3:88:68:d3:91:b2:f1:bb:53:4e:f5:d5:
cd:82:59:19:2d:01:e0:40:5b:dc:5f:3d:ea:94:a3:
15:54:c9:8e:31:80:88:2b:49:2d:39:a3:7e:24:21:
aa:69:a9:23:3d:d4:5b:38:9f:ed:cc:25:c3:be:6c:
8d:c5:ec:e6:13:13:b1:06:f1:fe:58:93:a0:37:ce:
94:80:b5:9c:77:0e:98:6a:02:b9:78:c0:cf:fc:49:
26:57:7e:28:ae:fb:f0:68:b1:90:10:fa:21:7c:fa:
0a:03:7b:17:fe:2c:4a:40:e4:55:62:f5:ab:73:fc:
76:e4:fe:4c:22:85:83:07:1c:4c:75:49:57:78:20:
2a:17:07:6f:e6:4c:67:ae:e6:32:2c:d5:ae:97:c5:
46:dd:98:7d:6e:e4:8e:aa:2b:14:70:4d:fc:bb:35:
b5:78:1d:3c:69:67:0d:b3:1b:0a:69:cb:2b:3d:3b:
48:7d:63:91:c4:27:86:36:ee:8b:82:e2:92:cd:61:
7c:36:e0:35:4b:7b:56:f6:dc:6c:e1:67:6b:fa:ee:
f8:f7:6e:db:e5:ef:2a:8c:3c:9f:65:f3:51:46:4c:
8c:ad:99:c5:51:c2:bf:a2:8a:88:47:99:4a:55:16:
fa:e8:20:a9:74:55:9b:24:e6:a7:14:71:c1:9d:54:
ea:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:19:EF:28:C3:2E:E4:5C:74:71:07:24:7C:A0:E2:1E:0D:1D:7F:AB
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/fhnvKMMu5Fx0cQckfKDiHg0df6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.99.0/24
Signature Algorithm: sha256WithRSAEncryption
17:f6:8d:b0:f2:0f:38:e2:b5:7c:a6:51:c8:06:a9:89:af:e5:
dd:47:b8:8a:6b:be:f8:51:ac:01:f5:2d:e0:5d:ae:c9:bc:55:
e5:39:68:c0:5e:a8:cd:db:b4:52:4c:0b:2c:46:ff:24:23:e7:
49:af:2b:30:a6:be:da:3e:5d:2a:ca:7e:33:b9:9f:bb:e9:4f:
76:df:55:1a:69:bc:76:06:7a:49:69:0c:a7:1d:26:7d:2f:2d:
13:7a:28:39:79:37:05:ab:5a:6c:98:2d:98:d0:72:f0:a5:7e:
9b:bd:a0:24:1c:92:a5:78:eb:b3:b9:c0:88:fc:f9:f6:25:12:
f3:d7:89:9a:22:b1:29:98:a3:87:3e:88:a4:3d:8d:97:90:70:
f3:92:05:c0:6f:43:81:a1:dc:62:de:39:67:d1:85:81:9d:49:
68:34:ac:35:84:55:f4:b5:cd:34:ee:91:f1:b8:d5:15:69:13:
15:c6:4c:15:7d:dd:67:c0:14:1a:f4:4d:75:03:a1:cd:d3:11:
31:c1:38:23:02:ee:80:26:f1:47:0e:7b:e6:cc:2e:55:44:f8:
27:29:f0:ec:d0:4a:4f:3d:12:a6:50:d1:b8:44:21:d2:4a:e4:
23:90:9b:d0:ca:b4:92:c7:9d:1c:84:fa:4a:bf:8d:2f:44:45:
bd:95:e7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:54 2024 by rpki-client on console-ams.rpki-client.org