Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/fdkQzpDnflNE4enFDI_TSk4YzDg.roa
File: fdkQzpDnflNE4enFDI_TSk4YzDg.roa (raw, json)
Hash identifier: eGZtcGMVkNSPkkzPiAUF8LkFKwfvyeU/iCETEL9cMkc=
Subject key identifier: 7D:D9:10:CE:90:E7:7E:53:44:E1:E9:C5:0C:8F:D3:4A:4E:18:CC:38
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018C5D346EC7956E99E4FE205CC4EDF86BFD
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/fdkQzpDnflNE4enFDI_TSk4YzDg.roa
Signing time: Tue 12 Dec 2023 08:46:06 +0000
ROA not before: Tue 12 Dec 2023 08:46:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22781
IP address blocks: 5.102.112.0/22 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5d:34:6e:c7:95:6e:99:e4:fe:20:5c:c4:ed:f8:6b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 12 08:46:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dd910ce90e77e5344e1e9c50c8fd34a4e18cc38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9d:81:f3:f5:6d:22:64:3a:d4:34:74:09:ff:
39:6c:20:42:d7:34:72:7c:c3:85:5d:5c:fb:91:e7:
56:01:37:6e:44:2a:70:16:1d:df:4f:dc:4c:44:7f:
b9:10:47:49:1c:8a:59:11:1a:b2:16:68:51:81:70:
28:59:35:b7:0c:7f:9d:8a:ee:75:6d:18:0f:04:b3:
e1:44:06:c3:77:94:1a:ef:36:bd:f3:e5:17:ab:94:
0e:04:81:9a:67:b1:c6:70:96:80:ab:06:de:73:20:
6b:99:77:18:9e:90:16:8b:a9:4c:f9:41:3a:03:2c:
9e:a7:a6:d3:d5:96:04:3a:99:8a:6a:c5:a0:8d:f1:
4d:aa:a0:32:15:dc:05:6c:3d:06:a6:2d:6c:92:76:
38:9a:e9:82:62:1c:d9:53:b1:3a:45:6a:b3:81:d9:
76:40:81:3c:b9:4c:35:40:6b:5a:a5:20:62:14:08:
07:a8:c8:13:8e:9c:62:73:36:2a:a0:5a:6c:90:20:
ca:34:ec:be:bc:8e:3c:5f:1b:50:d2:97:0d:3d:54:
52:2a:59:67:2f:37:8c:fe:14:b6:e3:87:93:43:92:
f7:86:c3:01:b7:7d:f6:bb:c5:84:91:9b:a1:f7:10:
f4:57:4e:97:d0:2d:b6:ea:8b:4c:d1:b7:7e:10:82:
bf:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D9:10:CE:90:E7:7E:53:44:E1:E9:C5:0C:8F:D3:4A:4E:18:CC:38
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/fdkQzpDnflNE4enFDI_TSk4YzDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.112.0/22
Signature Algorithm: sha256WithRSAEncryption
94:71:23:8e:1a:93:4b:69:3a:20:9d:f6:3c:42:92:79:d9:11:
39:e4:dc:15:08:77:3c:88:12:0d:3a:1b:ef:1c:ec:05:c0:cd:
ac:9c:9b:b6:94:a2:a6:ae:49:03:ae:b1:c2:04:2c:16:32:e7:
49:82:01:ad:cc:c1:4a:6d:8f:3c:85:1b:b5:05:b3:f6:ec:f8:
93:d5:0a:05:28:cd:e7:22:94:55:cc:cf:dc:3b:a8:39:3b:09:
1f:5d:82:7f:a4:49:3d:4e:01:0c:c8:67:1f:1c:57:cd:42:c0:
e0:07:21:fb:fe:45:74:62:65:e0:9f:31:cd:52:0a:f6:e5:32:
01:6f:9f:2f:09:a4:64:1c:7a:db:88:63:ac:ea:13:ca:29:bd:
d6:d4:a7:1c:89:e2:b8:d1:0b:b0:b6:d9:b2:8e:ad:a4:2b:ba:
b3:67:42:7c:3b:e6:0d:27:0b:e3:9a:6e:c1:0d:15:81:f3:18:
b2:69:68:2f:20:98:16:5c:2d:e9:df:33:dc:29:84:e4:db:95:
cd:dc:c4:21:3d:7a:c9:19:06:2e:22:83:5c:3d:af:2c:4f:7f:
94:41:fc:1e:9a:36:07:f1:df:26:42:f0:9b:e9:70:24:c7:c7:
30:bb:8d:b5:6f:88:12:77:71:a4:87:9d:21:28:7a:54:87:05:
e0:c1:c0:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:36 2024 by rpki-client on console-fra.rpki-client.org