Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/FFKYTUQQ9nxmTmuNnQHQ4wqYAVQ.roa
File: FFKYTUQQ9nxmTmuNnQHQ4wqYAVQ.roa (raw, json)
Hash identifier: Lnol3XIB/VMHl5kUt7h+aOeGOj73eXbWWkOXvrqE1Ms=
Subject key identifier: 14:52:98:4D:44:10:F6:7C:66:4E:6B:8D:9D:01:D0:E3:0A:98:01:54
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 018CC801536593E27A6073168EC8CBDBEC3C
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/FFKYTUQQ9nxmTmuNnQHQ4wqYAVQ.roa
Signing time: Tue 02 Jan 2024 02:29:39 +0000
ROA not before: Tue 02 Jan 2024 02:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6505
IP address blocks: 57.74.0.0/16 maxlen: 32
Validation: Failed, certificate revoked on Sun 21 Jan 2024 09:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:53:65:93:e2:7a:60:73:16:8e:c8:cb:db:ec:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 02:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1452984d4410f67c664e6b8d9d01d0e30a980154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:97:49:bb:c5:ab:e4:68:9f:0f:30:03:97:67:
ad:01:8d:9d:7f:24:63:a1:d4:73:a3:80:02:17:f5:
c0:b5:12:98:9c:0f:8f:04:ec:94:f8:42:99:d9:24:
8d:5f:4d:a8:24:3d:aa:41:fb:60:4d:0c:1b:b1:85:
1c:66:7c:5e:c5:2c:81:03:0f:55:f2:b7:26:f7:38:
03:90:9c:08:2c:53:f7:4e:10:cb:2c:4b:28:85:27:
42:16:ad:ce:d0:ff:f8:89:1c:26:e9:e5:fd:08:c4:
f5:37:00:ef:35:42:45:be:91:3f:95:15:18:19:25:
39:2f:ba:00:3d:a7:4d:95:17:21:80:29:f3:25:b1:
d5:9d:53:24:e4:09:3f:76:a6:ab:52:4b:28:ac:41:
2d:90:88:95:fb:c3:0e:a4:d5:24:fe:f2:a8:00:c6:
fa:2c:b4:83:ff:7c:fe:c7:f6:43:c5:c3:05:ef:d6:
7f:99:e2:d7:56:ea:62:f0:5c:2a:b4:e3:77:d1:2c:
8e:6b:f4:b6:0c:04:64:91:2f:f8:fb:1c:63:71:42:
32:92:f0:17:12:5c:5a:74:d3:a4:3b:85:59:63:49:
6f:7e:ad:ca:23:e3:fc:95:0a:35:7b:b8:b9:77:14:
7b:78:90:58:ed:ed:87:45:83:0f:c8:84:d8:7f:c9:
5e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:52:98:4D:44:10:F6:7C:66:4E:6B:8D:9D:01:D0:E3:0A:98:01:54
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/FFKYTUQQ9nxmTmuNnQHQ4wqYAVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b8:80:e7:1c:a5:23:01:05:b6:43:de:8c:fd:9f:d8:e5:05:2a:
81:2c:b7:f0:42:b4:2f:4a:34:07:d0:7b:cd:2c:82:74:aa:7f:
67:ea:48:00:ef:b7:0c:59:e0:d2:42:87:35:a5:29:9a:1c:84:
84:fe:95:1c:15:91:3f:f5:74:ae:d0:02:9c:ce:6a:47:0d:36:
86:a0:84:b6:d8:bd:c8:f9:a2:81:66:14:f7:d4:30:e2:37:77:
a1:55:a5:09:dc:b4:a1:07:d2:98:87:b0:1c:65:21:ab:05:ce:
cb:ac:dc:e1:04:a3:70:63:fe:7a:e7:d0:08:79:88:3a:13:10:
6c:bd:21:7c:21:ad:97:90:e4:1f:9d:7b:34:e8:08:24:54:9d:
a9:2f:bc:4b:45:63:26:de:4d:05:83:ff:28:f4:50:7b:78:5c:
f2:bb:75:fe:f7:7c:35:0e:74:aa:fd:be:ef:d4:11:1b:a6:6b:
7e:46:ab:f6:9e:4c:63:49:74:f6:a1:20:8d:62:fd:1e:77:08:
c4:78:3f:03:67:26:53:12:d1:84:56:ea:d8:15:70:ba:90:78:
bf:69:c7:eb:4a:9b:f1:6c:6f:47:c1:35:c9:52:67:12:05:53:
3d:0e:37:f4:dd:9b:7e:5e:b8:0a:b2:87:13:92:6b:e3:2f:34:
df:68:92:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org