Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/F7gNpKatmHqsXCaswji2USz_RFU.roa
File: F7gNpKatmHqsXCaswji2USz_RFU.roa (raw, json)
Hash identifier: 1YgRH9T5UlEptlSE+Q2TcvErt96zEl0EAEdvC3TcYEk=
Subject key identifier: 17:B8:0D:A4:A6:AD:98:7A:AC:5C:26:AC:C2:38:B6:51:2C:FF:44:55
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0188C044A3AF3220D3DFA8AA668A5B9C2242
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/F7gNpKatmHqsXCaswji2USz_RFU.roa
Signing time: Thu 15 Jun 2023 18:15:03 +0000
ROA not before: Thu 15 Jun 2023 18:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 64.137.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c0:44:a3:af:32:20:d3:df:a8:aa:66:8a:5b:9c:22:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jun 15 18:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17b80da4a6ad987aac5c26acc238b6512cff4455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:91:c0:49:ea:11:45:fc:23:b2:b4:4f:e2:61:
4d:4c:61:15:68:8b:04:e6:4f:c1:92:c2:df:00:b8:
b5:d7:01:34:1b:94:64:f2:c4:66:62:16:75:a9:34:
5a:b6:bf:4f:ca:ea:b6:cc:ee:00:f8:c3:f2:01:47:
ee:31:5d:d7:1e:ce:1d:2a:4b:ac:89:7e:b4:a9:35:
1a:b0:db:c0:33:61:ca:38:4b:6c:fa:90:3c:94:36:
70:6c:52:1d:b6:65:05:9f:bc:00:b5:74:49:4e:f4:
dc:f9:d0:58:2e:43:a6:a1:56:19:05:76:24:94:92:
90:9c:4a:f0:bf:bb:7b:53:a7:24:e4:97:08:c2:ca:
30:95:4e:09:68:1a:f8:e2:97:34:89:2e:58:87:dc:
ef:8a:58:ed:21:72:96:61:74:e6:64:79:50:00:c4:
7f:23:7a:84:b1:9e:f8:c2:76:96:ce:14:a6:b9:fd:
16:ae:a8:3c:10:aa:54:be:99:25:ac:f3:f1:f7:eb:
b2:12:64:4e:06:6c:8c:66:9c:bd:6e:cf:ea:97:c5:
e8:2b:e1:e6:60:73:62:08:dd:18:59:e5:0a:5e:42:
b2:aa:ce:c1:44:4a:6b:99:74:c3:f4:5b:72:c0:76:
3c:3d:9d:e5:56:e3:77:55:15:47:3a:13:d5:7f:63:
a9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B8:0D:A4:A6:AD:98:7A:AC:5C:26:AC:C2:38:B6:51:2C:FF:44:55
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/F7gNpKatmHqsXCaswji2USz_RFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.29.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:2b:44:b1:cc:84:18:80:95:4b:e4:ba:19:eb:de:9e:b3:4a:
8e:06:c9:92:6c:36:09:97:5f:6b:2a:bf:71:a2:e0:08:6f:24:
9c:05:ee:75:75:94:1f:5c:9b:63:57:da:7d:fa:4b:e8:8c:5a:
b0:a3:fc:93:91:ed:56:c9:f1:e6:b5:85:7e:73:bb:af:0a:c1:
c9:c9:33:de:b0:11:36:4a:f0:72:b1:2f:c8:8d:be:04:f0:78:
c0:bf:4d:b3:87:0c:91:44:5c:d4:8c:65:1b:2e:16:e1:c4:17:
fc:a2:12:9c:e9:6d:e6:bf:cc:1d:ba:38:54:22:f7:8e:d1:7e:
11:44:90:00:5c:9d:d1:06:4e:f7:79:05:97:f9:12:a8:48:85:
c9:68:c5:8d:19:80:3c:58:e3:6a:4e:b8:9d:a0:17:75:6b:2c:
88:f1:85:6a:b2:8f:09:b6:5b:38:90:8e:d4:55:89:f6:aa:66:
1d:c9:b4:c5:10:3c:fa:c9:8a:d6:cc:de:0f:af:6b:1b:ec:c1:
cc:7d:73:00:61:51:ab:0d:1a:f0:4d:6d:dc:65:59:36:0e:a0:
68:7f:36:60:10:98:1d:97:9d:8f:34:ef:13:70:3d:c2:ea:32:
b8:b8:8f:9f:64:d0:51:41:5d:64:db:3b:25:63:2a:73:fc:0b:
04:19:21:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org