Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7e7fce-4841-476b-84c0-a54eb8566bef/1/FxaYnTplEEd_TrcM7MvFSgAH0lQ.roa
File: FxaYnTplEEd_TrcM7MvFSgAH0lQ.roa (raw, json)
Hash identifier: qv93TKIVSVYdxZ/a2/ZrHw8Ll1cWtiueI4bEF9Le7kA=
Subject key identifier: 17:16:98:9D:3A:65:10:47:7F:4E:B7:0C:EC:CB:C5:4A:00:07:D2:54
Certificate issuer: /CN=f9e20f7d3a2cc95d9de6f4e334cb4b67922e70f5
Certificate serial: 0188D7D0B2A84845671D9F6C7168414DF36F
Authority key identifier: F9:E2:0F:7D:3A:2C:C9:5D:9D:E6:F4:E3:34:CB:4B:67:92:2E:70:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-eIPfTosyV2d5vTjNMtLZ5IucPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7e7fce-4841-476b-84c0-a54eb8566bef/1/FxaYnTplEEd_TrcM7MvFSgAH0lQ.roa
Signing time: Tue 20 Jun 2023 07:59:18 +0000
ROA not before: Tue 20 Jun 2023 07:59:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35775
IP address blocks: 194.88.148.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d7:d0:b2:a8:48:45:67:1d:9f:6c:71:68:41:4d:f3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9e20f7d3a2cc95d9de6f4e334cb4b67922e70f5
Validity
Not Before: Jun 20 07:59:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1716989d3a6510477f4eb70ceccbc54a0007d254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d2:cb:ce:9a:af:6c:87:6b:4a:9b:8e:a1:2d:
bb:03:f4:7e:61:4f:c0:7c:86:a3:e6:b5:cb:1f:71:
a8:29:f0:66:64:97:10:9c:0c:66:a0:78:0e:e0:11:
73:3b:17:25:ee:10:7d:11:9b:d5:67:19:b3:d2:d7:
45:ec:76:37:2a:9a:24:7a:03:9d:e8:bc:f3:9c:92:
34:53:47:5a:61:aa:03:cd:8b:aa:01:62:83:b8:27:
b1:f4:40:32:d7:b7:2e:96:9a:23:e1:f5:0a:13:c6:
61:1b:98:a0:ec:65:b9:b2:ab:95:db:28:24:a8:20:
46:52:b7:67:cf:d3:14:f1:5b:4b:42:fd:04:b2:ed:
f9:3f:2d:4f:14:c3:e3:5e:bd:43:97:7f:41:8a:6f:
68:de:3c:ed:51:d8:5d:59:d0:6c:15:96:86:ee:81:
78:f0:4f:da:99:d1:a5:14:01:11:ca:34:69:a9:7c:
ba:d0:bb:ac:c1:6a:35:ab:b6:a6:f9:31:29:70:99:
b2:6b:a5:2c:dc:e5:0e:38:ab:2a:ca:99:ee:0f:bf:
93:25:b1:b8:ef:bd:16:b2:5f:50:b0:15:d0:fd:1a:
05:9c:45:56:75:47:10:11:cf:23:07:72:5c:40:bd:
12:2a:f9:58:10:3e:da:53:c7:a9:b1:27:81:ed:07:
df:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:16:98:9D:3A:65:10:47:7F:4E:B7:0C:EC:CB:C5:4A:00:07:D2:54
X509v3 Authority Key Identifier:
keyid:F9:E2:0F:7D:3A:2C:C9:5D:9D:E6:F4:E3:34:CB:4B:67:92:2E:70:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-eIPfTosyV2d5vTjNMtLZ5IucPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7e7fce-4841-476b-84c0-a54eb8566bef/1/FxaYnTplEEd_TrcM7MvFSgAH0lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7e7fce-4841-476b-84c0-a54eb8566bef/1/1-eIPfTosyV2d5vTjNMtLZ5IucPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.148.0/23
Signature Algorithm: sha256WithRSAEncryption
60:c3:66:22:2d:33:4c:7a:64:5d:f9:0d:e2:12:32:7b:f5:16:
a3:68:ee:6a:f1:53:72:08:ba:80:0e:f2:1e:37:fe:fa:b0:c0:
cd:84:2a:b6:7d:f0:3d:75:fd:93:b8:f0:c1:84:c3:0f:24:80:
d2:48:d9:88:a0:a4:74:ef:a4:85:1f:43:a5:86:4b:a7:1c:85:
35:90:34:c1:12:4c:00:9a:1a:5b:be:4f:4d:43:3b:3a:ad:55:
c1:e8:48:9c:68:92:d6:fe:bf:6f:87:bd:7b:1f:26:cc:42:b0:
2e:77:05:99:8f:4a:1f:90:60:b5:f7:5e:b9:09:0c:45:a3:44:
f4:2f:b3:80:c3:ac:7a:d2:d0:43:8f:bc:3d:27:69:5c:cd:8d:
09:07:f6:90:38:01:c8:d5:23:cf:86:94:c2:29:58:46:c3:6c:
b6:2d:46:99:c8:9a:9f:2c:ee:f3:58:09:5e:3a:e9:c6:b1:18:
85:d7:20:78:e5:c2:03:18:04:15:33:fa:4c:e1:25:c8:c5:2b:
35:ed:73:af:1f:92:81:06:49:20:fb:37:69:f9:a1:1f:8d:9e:
1b:2e:e3:d4:68:cc:14:fb:9f:30:c1:e3:88:1e:91:61:85:32:
12:c0:c5:f2:a2:13:83:1f:ab:50:7a:38:d6:f4:eb:2c:6c:33:
73:47:fa:b1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYjX0LKoSEVnHZ9scWhBTfNvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5ZTIwZjdkM2EyY2M5NWQ5ZGU2ZjRlMzM0Y2I0YjY3OTIy
ZTcwZjUwHhcNMjMwNjIwMDc1OTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzE2OTg5ZDNhNjUxMDQ3N2Y0ZWI3MGNlY2NiYzU0YTAwMDdkMjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9LLzpqvbIdrSpuOoS27A/R+YU/A
fIaj5rXLH3GoKfBmZJcQnAxmoHgO4BFzOxcl7hB9EZvVZxmz0tdF7HY3KpokegOd
6LzznJI0U0daYaoDzYuqAWKDuCex9EAy17culpoj4fUKE8ZhG5ig7GW5squV2ygk
qCBGUrdnz9MU8VtLQv0Esu35Py1PFMPjXr1Dl39Bim9o3jztUdhdWdBsFZaG7oF4
8E/amdGlFAERyjRpqXy60LuswWo1q7am+TEpcJmya6Us3OUOOKsqypnuD7+TJbG4
770Wsl9QsBXQ/RoFnEVWdUcQEc8jB3JcQL0SKvlYED7aU8epsSeB7Qff7wIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFBcWmJ06ZRBHf063DOzLxUoAB9JUMB8GA1UdIwQY
MBaAFPniD306LMldneb04zTLS2eSLnD1MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1lSVBmVG9zeVYyZDV2VGpOTXRMWjVJdWNQVS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEvN2U3ZmNlLTQ4NDEtNDc2Yi04NGMw
LWE1NGViODU2NmJlZi8xL0Z4YVluVHBsRUVkX1RyY003TXZGU2dBSDBsUS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNmEvN2U3ZmNlLTQ4NDEtNDc2Yi04NGMwLWE1NGViODU2NmJl
Zi8xLzEtZUlQZlRvc3lWMmQ1dlRqTk10TFo1SXVjUFUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHCWJQw
DQYJKoZIhvcNAQELBQADggEBAGDDZiItM0x6ZF35DeISMnv1FqNo7mrxU3IIuoAO
8h43/vqwwM2EKrZ98D11/ZO48MGEww8kgNJI2YigpHTvpIUfQ6WGS6cchTWQNMES
TACaGlu+T01DOzqtVcHoSJxoktb+v2+HvXsfJsxCsC53BZmPSh+QYLX3XrkJDEWj
RPQvs4DDrHrS0EOPvD0naVzNjQkH9pA4AcjVI8+GlMIpWEbDbLYtRpnImp8s7vNY
CV466caxGIXXIHjlwgMYBBUz+kzhJcjFKzXtc68fkoEGSSD7N2n5oR+Nnhsu49Ro
zBT7nzDB44gekWGFMhLAxfKiE4Mfq1B6ONb06yxsM3NH+rE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:45 2024 by rpki-client on console-fra.rpki-client.org