Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/FqDjTTLCPgGAR-725o7SGq1dAQI.roa
File: FqDjTTLCPgGAR-725o7SGq1dAQI.roa (raw, json)
Hash identifier: oDvCdPREITdwXXjpw8naha/SuYZZ9C714TpCYXmz7Qk=
Subject key identifier: 16:A0:E3:4D:32:C2:3E:01:80:47:EE:F6:E6:8E:D2:1A:AD:5D:01:02
Certificate issuer: /CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Certificate serial: 01879F2301F35F331AA33316B3CC9DA35CEF
Authority key identifier: D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/FqDjTTLCPgGAR-725o7SGq1dAQI.roa
Signing time: Thu 20 Apr 2023 14:48:04 +0000
ROA not before: Thu 20 Apr 2023 14:48:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 81.31.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 10:45:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:23:01:f3:5f:33:1a:a3:33:16:b3:cc:9d:a3:5c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Validity
Not Before: Apr 20 14:48:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16a0e34d32c23e018047eef6e68ed21aad5d0102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:80:d8:75:74:96:b2:cb:60:30:bc:10:8f:24:
18:81:2e:55:95:37:d9:d9:39:30:0d:aa:3d:e5:a6:
f8:d6:fe:e2:60:20:bb:cb:66:40:45:1f:96:a7:03:
b7:6d:e5:06:4d:4b:de:ca:2b:cb:d7:88:55:39:e6:
9a:57:84:66:ef:ad:43:c2:58:7e:d6:c3:c1:4a:e9:
f5:a4:1a:6a:ae:72:36:9a:bd:96:0a:d1:fe:6a:0c:
6d:82:60:71:cb:02:71:de:0c:49:85:cb:3a:21:5b:
de:96:7c:81:3a:f5:04:01:ca:4d:a5:41:5e:71:88:
26:5e:6e:e9:7a:57:64:73:23:1b:63:72:a4:3a:fe:
ba:0b:f9:2b:2c:fe:71:23:e8:36:e7:cf:1a:31:c7:
70:d3:33:c2:09:da:b9:fe:5c:54:ff:ac:80:00:d8:
5b:b6:b8:aa:0e:24:cb:65:27:87:a4:fc:cf:2a:ae:
0f:c3:19:f7:eb:07:3e:05:37:41:7e:bb:f8:28:c6:
11:af:10:32:b9:40:96:d9:1a:ec:61:a1:55:5c:ef:
76:4f:81:33:22:2c:e1:b5:f2:ae:39:bb:74:2a:3f:
01:fb:96:f1:7f:c2:b3:a7:99:c9:d3:73:74:83:9e:
95:a7:97:cd:c7:7d:5e:0c:42:81:2b:55:7e:4f:de:
c6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A0:E3:4D:32:C2:3E:01:80:47:EE:F6:E6:8E:D2:1A:AD:5D:01:02
X509v3 Authority Key Identifier:
keyid:D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/FqDjTTLCPgGAR-725o7SGq1dAQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:ad:f2:5c:29:99:04:aa:bd:e4:9a:2e:c9:11:fa:24:ca:ea:
9f:18:08:1a:cc:2c:bb:50:92:60:25:47:59:0f:7b:7a:8a:5b:
0f:2d:9a:4b:81:ab:0c:3e:5b:e7:5f:8a:26:c7:e9:4c:39:47:
56:3c:ba:f4:78:9d:04:c9:7f:c9:c4:ce:fa:a8:1b:a0:1b:e1:
01:47:47:7f:39:e3:e0:1c:ae:dc:43:ff:fd:fc:6e:29:4a:a3:
8c:30:0e:61:6a:c3:22:d2:af:a7:6b:aa:95:75:5f:85:d1:93:
05:b2:33:12:6e:6a:f9:f3:ad:35:2f:24:50:bd:a6:fa:cc:c2:
63:9c:3a:4e:53:0a:36:7a:30:0d:64:cb:2f:cd:85:28:46:3d:
56:08:6b:67:4b:12:30:54:92:31:68:6a:1f:27:45:a8:45:b8:
0a:21:eb:86:06:14:42:3a:2f:c8:77:bf:e4:9e:b9:6f:11:bb:
88:b7:6a:bb:6c:aa:8b:2c:f4:59:c1:32:95:de:20:b6:d9:66:
2e:4c:5b:97:d0:32:16:f1:c7:3d:d0:5d:2e:c7:84:77:e4:c7:
76:d9:9a:80:46:e4:99:4b:e4:82:eb:bc:b3:4f:f3:17:6d:ba:
23:2f:80:17:f9:3b:4c:7a:27:bc:02:49:ce:72:6c:2f:a9:4b:
d7:73:e7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:04 2024 by rpki-client on console-ams.rpki-client.org