Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/sfv8p84Tp_qbG5nsBwVjVrIGTTU.roa
File: sfv8p84Tp_qbG5nsBwVjVrIGTTU.roa (raw, json)
Hash identifier: yoA6F+zx13iXhDvXXAgru5fomENJC/xCU1p0kojxg0g=
Subject key identifier: B1:FB:FC:A7:CE:13:A7:FA:9B:1B:99:EC:07:05:63:56:B2:06:4D:35
Certificate issuer: /CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Certificate serial: 0191A9B11E27226420F742966F7CF83C0A6E
Authority key identifier: F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/sfv8p84Tp_qbG5nsBwVjVrIGTTU.roa
Signing time: Sat 31 Aug 2024 18:27:22 +0000
ROA not before: Sat 31 Aug 2024 18:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2001:3500::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Nov 2024 15:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a9:b1:1e:27:22:64:20:f7:42:96:6f:7c:f8:3c:0a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Validity
Not Before: Aug 31 18:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1fbfca7ce13a7fa9b1b99ec07056356b2064d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:eb:43:54:bb:ef:7b:2f:ab:4a:bc:ee:06:2d:
63:f4:4a:49:63:d2:81:65:45:d4:52:0d:a9:70:ad:
b2:4f:38:50:d5:ae:e0:db:4a:a8:2e:b0:81:ed:cd:
50:37:81:57:72:87:2b:b1:91:c2:df:33:ac:86:bb:
a7:09:a6:ee:84:2b:21:7d:ba:46:e9:e2:20:c2:ec:
04:a3:c2:45:93:aa:8a:d1:24:b6:a9:ce:3e:79:40:
0c:df:9d:79:46:8a:7c:83:b9:50:ed:bc:9a:8e:78:
5a:55:cf:04:39:ba:ce:cb:9d:07:f7:6b:66:53:a6:
d5:82:26:35:f8:59:0c:24:21:61:21:60:76:99:f1:
21:1b:e4:c6:66:6b:74:e5:0e:09:bb:8d:8a:3f:74:
5c:e4:f2:4f:66:4c:b5:a0:61:cc:23:63:c4:47:72:
b0:24:58:bd:6a:aa:ed:0a:8c:24:86:f6:6d:7b:6b:
ae:b5:7a:c1:c6:5b:31:f9:c3:32:8d:0b:27:51:85:
5c:34:c5:63:1a:7d:ab:b4:ac:f1:b6:57:b7:f9:d2:
7b:06:b9:91:a0:d0:3b:32:01:3e:d6:f3:a9:62:16:
f4:e6:c9:5b:54:12:aa:96:16:02:51:70:c4:e9:e2:
f2:8b:32:e5:c0:62:fb:01:f7:aa:1e:2a:f9:f5:d4:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FB:FC:A7:CE:13:A7:FA:9B:1B:99:EC:07:05:63:56:B2:06:4D:35
X509v3 Authority Key Identifier:
keyid:F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/sfv8p84Tp_qbG5nsBwVjVrIGTTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3500::/29
Signature Algorithm: sha256WithRSAEncryption
03:7b:03:f2:6a:03:27:cb:64:16:87:74:39:ed:35:50:b9:45:
e7:40:ae:63:bd:8c:cd:03:9a:28:09:19:8d:58:7e:15:d5:ca:
6a:08:17:24:f5:c2:d3:a2:b8:93:7a:4e:e5:34:50:3b:02:41:
1a:a2:05:9c:fd:51:0c:09:c1:79:85:a5:22:25:2e:14:d2:a2:
43:38:8e:bd:d5:bf:e0:32:75:4a:3c:57:ee:bf:f7:d0:7f:49:
0e:a8:66:13:35:2e:7e:b7:ad:54:c6:c5:52:48:da:e2:a3:e4:
b8:e4:71:d5:46:96:d7:a0:64:c7:6a:9a:4f:37:99:2e:93:cb:
09:30:17:c7:3f:10:f1:41:55:c5:51:96:75:fb:f4:bd:3f:c1:
71:d5:8b:fc:71:15:d1:8e:31:ed:c0:1e:38:cc:b6:b2:15:c8:
5c:b6:48:0f:01:fe:97:0b:7c:82:06:6f:48:db:b9:ee:ca:00:
9a:27:ab:ed:46:e5:cb:d4:d2:70:5b:1a:b1:39:41:24:28:cb:
33:1a:db:5d:55:df:bf:e7:8b:76:37:91:28:ff:4e:ed:36:a6:
b9:2e:6e:37:80:da:40:6c:ea:fd:3b:6d:81:e1:43:6e:5e:35:
1d:1b:8b:b1:15:64:ed:81:21:db:e4:35:46:b6:07:d0:84:57:
60:17:8f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 20:24:34 2024 by rpki-client on console-fra.rpki-client.org