Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/fhdV1PrBwcQe2mYrymchkP6dI74.roa
File: fhdV1PrBwcQe2mYrymchkP6dI74.roa (raw, json)
Hash identifier: 0Sog77BsbbDOusJXGEJgz4/yd1I9obnW4hAZviT+VkY=
Subject key identifier: 7E:17:55:D4:FA:C1:C1:C4:1E:DA:66:2B:CA:67:21:90:FE:9D:23:BE
Certificate issuer: /CN=db3f546b24b7dbb0984a09c62660a52bad287757
Certificate serial: 01867FAD1E8F526FF21A095E9122910A867F
Authority key identifier: DB:3F:54:6B:24:B7:DB:B0:98:4A:09:C6:26:60:A5:2B:AD:28:77:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2z9UayS327CYSgnGJmClK60od1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/fhdV1PrBwcQe2mYrymchkP6dI74.roa
Signing time: Thu 23 Feb 2023 19:08:17 +0000
ROA not before: Thu 23 Feb 2023 19:08:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 5.172.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:ad:1e:8f:52:6f:f2:1a:09:5e:91:22:91:0a:86:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db3f546b24b7dbb0984a09c62660a52bad287757
Validity
Not Before: Feb 23 19:08:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e1755d4fac1c1c41eda662bca672190fe9d23be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4f:0f:59:01:fc:0a:70:74:09:36:d5:fa:e2:
18:02:8d:ae:5f:41:32:59:37:40:72:04:1f:82:43:
d4:78:f8:60:9a:e0:5b:6d:81:e3:b2:d4:fd:35:1d:
f1:fd:98:45:63:d9:61:56:15:85:f8:6a:78:4e:90:
2d:d6:12:0a:5a:1e:a4:15:99:c1:c9:90:e7:0a:3a:
83:f6:19:5b:70:0c:5f:41:49:cd:90:f9:74:8e:ec:
1d:57:66:8e:9c:d3:1f:8f:d0:e5:ab:7f:0a:8a:7c:
73:64:79:a5:60:a7:98:53:9e:8e:5b:11:0d:43:6c:
44:e3:8e:d1:d3:db:9d:48:90:14:0f:9e:32:fd:ed:
e1:05:76:98:4b:a3:d8:41:01:d4:94:20:db:4e:e3:
f0:24:b9:b5:a2:93:bc:f4:8e:2d:05:93:65:32:a3:
15:63:27:8a:53:e0:c2:f0:38:3f:8a:1c:0e:87:fc:
cc:da:d7:92:68:d5:27:94:c0:8e:a6:3a:70:53:1a:
eb:35:3c:d5:ca:8e:8e:25:f7:0e:34:f6:5f:d1:27:
8c:90:18:05:4a:3f:b7:35:b6:ba:92:10:58:97:36:
c4:80:1a:db:09:1e:90:ba:6a:00:c3:3a:86:47:32:
7c:9a:6c:53:99:f6:bd:da:f9:c3:b7:5b:c9:5f:51:
55:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:17:55:D4:FA:C1:C1:C4:1E:DA:66:2B:CA:67:21:90:FE:9D:23:BE
X509v3 Authority Key Identifier:
keyid:DB:3F:54:6B:24:B7:DB:B0:98:4A:09:C6:26:60:A5:2B:AD:28:77:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2z9UayS327CYSgnGJmClK60od1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/fhdV1PrBwcQe2mYrymchkP6dI74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/91282f-f42c-442d-84bb-22f37a39b210/1/2z9UayS327CYSgnGJmClK60od1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.180.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:9b:a8:67:ba:8c:70:60:47:68:e0:4c:48:2b:63:6a:9e:09:
ea:57:59:9c:fb:e7:db:3c:ba:5b:cf:2b:b2:d4:a4:36:01:65:
12:ec:ee:0c:7f:b1:5a:8b:b5:64:15:4a:f5:b7:3f:77:f5:b6:
db:02:cc:7c:db:5d:c7:49:89:ec:5b:7e:01:f3:ce:bd:26:d9:
4c:e1:82:05:b5:6e:fd:12:de:de:c8:8f:f1:26:16:39:71:e2:
1a:ea:53:11:68:de:17:fd:17:ad:1f:ea:6b:03:65:56:99:1d:
6a:2a:30:0a:88:f6:a2:a1:ba:ae:ee:92:aa:b8:db:ca:cb:0b:
aa:95:7b:5d:d3:92:2b:04:21:4a:da:ad:d3:4c:5b:0b:5b:dc:
c3:12:6d:e9:de:47:73:fe:3e:e5:da:b5:df:57:d3:be:0c:a7:
2c:4b:d9:88:8b:dd:15:6b:f6:4c:cc:6d:6a:81:66:93:e0:98:
a2:1b:d0:f1:f6:46:5d:10:0f:d7:5d:fb:d3:cc:b2:4c:ba:a7:
27:5f:9f:10:1a:ad:fd:9b:4c:29:68:01:b4:e2:c4:1f:0e:37:
40:c7:75:a7:f3:84:4c:f9:eb:2b:b1:c5:ba:b0:f4:d4:f4:5e:
28:73:14:e3:4b:d5:52:21:f9:c3:8f:73:d9:a1:44:78:24:81:
a5:4b:7d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:14 2023 by rpki-client on console-fra.rpki-client.org