Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/fzLW9OdEvnYEniP8THbC_IWYq-M.roa
File: fzLW9OdEvnYEniP8THbC_IWYq-M.roa (raw, json)
Hash identifier: kKn7gaR3I8sYIekvM3zZCR5FrD+8jHecDca7nij0ghI=
Subject key identifier: 7F:32:D6:F4:E7:44:BE:76:04:9E:23:FC:4C:76:C2:FC:85:98:AB:E3
Certificate issuer: /CN=4ce74cf63723c0269d5283b1065821af384a9a26
Certificate serial: 018BD2DDDF16F8AE0BA3920656EABAF4F2FB
Authority key identifier: 4C:E7:4C:F6:37:23:C0:26:9D:52:83:B1:06:58:21:AF:38:4A:9A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOdM9jcjwCadUoOxBlghrzhKmiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/fzLW9OdEvnYEniP8THbC_IWYq-M.roa
Signing time: Wed 15 Nov 2023 12:03:57 +0000
ROA not before: Wed 15 Nov 2023 12:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 188.227.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:dd:df:16:f8:ae:0b:a3:92:06:56:ea:ba:f4:f2:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce74cf63723c0269d5283b1065821af384a9a26
Validity
Not Before: Nov 15 12:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f32d6f4e744be76049e23fc4c76c2fc8598abe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d5:c8:c9:f3:2f:f9:49:d8:e3:8c:97:16:24:
fc:c1:d7:05:0a:52:94:7e:57:c6:1b:30:b6:da:cc:
22:e5:a5:2e:53:6e:fa:54:e8:34:32:5b:b5:6c:df:
2b:8d:75:27:c6:fc:a0:6c:f6:ad:2d:79:a2:8f:e5:
c4:2e:9a:a5:74:25:76:3c:5e:8f:04:f6:94:c0:0f:
74:d1:d6:44:fe:58:60:0b:d0:cd:a6:a8:af:28:8e:
c1:e6:f0:8f:e8:fd:a9:32:89:ab:14:7f:85:be:d4:
24:57:b8:d3:12:14:97:fd:ec:37:1a:ff:e1:42:29:
fb:51:74:ea:c6:5f:ba:9d:17:8c:92:58:de:07:d9:
67:b7:9a:3f:b0:ec:06:17:98:46:d8:74:9a:c7:81:
1d:5d:f5:52:2e:c2:a2:6f:d3:06:27:41:64:82:b2:
16:b5:e7:e3:03:eb:dd:fd:fb:58:33:36:99:b4:d9:
89:d0:85:46:60:fa:c4:ba:3e:54:52:49:cd:fe:98:
25:60:41:f9:f8:7c:25:5e:62:67:49:8e:b0:37:c0:
6f:55:aa:c3:0f:20:94:ac:bc:bf:03:d5:f1:05:95:
3c:f4:f0:3c:d8:78:4f:9b:33:6c:66:17:25:d4:dd:
0e:06:c9:f3:58:b3:c8:a6:88:7e:5e:b2:ad:90:ea:
93:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:32:D6:F4:E7:44:BE:76:04:9E:23:FC:4C:76:C2:FC:85:98:AB:E3
X509v3 Authority Key Identifier:
keyid:4C:E7:4C:F6:37:23:C0:26:9D:52:83:B1:06:58:21:AF:38:4A:9A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOdM9jcjwCadUoOxBlghrzhKmiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/fzLW9OdEvnYEniP8THbC_IWYq-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/TOdM9jcjwCadUoOxBlghrzhKmiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.227.198.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:1f:b5:f7:cf:2a:e3:39:38:27:71:5b:46:f8:68:ee:6e:9d:
5d:0b:14:c9:9b:3f:69:07:91:b7:1a:eb:81:cc:1d:5d:75:b9:
bb:73:e2:9f:94:e8:5b:ce:c9:d4:22:d4:04:20:05:27:09:3b:
6e:b9:50:52:03:1e:43:19:5a:65:c8:9e:e2:e1:44:06:fb:7f:
4a:fd:39:47:6d:1e:bd:ce:d4:84:2a:a7:6f:0e:46:f0:14:c1:
0d:c2:7e:2c:80:f3:fc:80:1e:9e:8d:84:5a:22:a4:be:8c:b5:
49:69:ff:a2:ab:c6:a6:37:59:29:1f:a2:29:9a:b1:9c:21:17:
3c:4f:84:79:15:38:c8:de:31:14:7c:45:64:0a:46:a2:5f:9b:
51:c1:5d:26:46:48:bb:6e:1a:ae:51:ef:cb:81:e7:ab:98:9a:
b9:e3:20:95:cd:b9:3a:5a:a9:ef:4e:f5:31:89:a5:3f:c6:23:
fe:ee:7b:d2:87:b5:8b:ba:c9:98:12:17:23:29:e7:ab:7e:53:
c3:6c:70:20:6e:9d:64:02:97:e2:73:33:28:00:9d:9f:e2:a3:
68:3c:69:58:cc:45:da:2f:2a:c3:8f:b4:67:65:db:ea:9f:f4:
60:48:67:0d:ba:15:27:ca:15:94:6f:56:b8:dd:01:25:72:c2:
11:c7:69:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:05 2024 by rpki-client on console-ams.rpki-client.org