Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/faPeywcKW5GLJPYYH6qtpngfQ_4.roa
File: faPeywcKW5GLJPYYH6qtpngfQ_4.roa (raw, json)
Hash identifier: 8AZUR9pIuCFfXKMwsIicTuP+ZeDPR/hMeLtpe1R/YzY=
Subject key identifier: 7D:A3:DE:CB:07:0A:5B:91:8B:24:F6:18:1F:AA:AD:A6:78:1F:43:FE
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC7955C683B86FD62897379285ED4CA53
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/faPeywcKW5GLJPYYH6qtpngfQ_4.roa
Signing time: Tue 02 Jan 2024 00:31:43 +0000
ROA not before: Tue 02 Jan 2024 00:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59765
IP address blocks: 188.214.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:5c:68:3b:86:fd:62:89:73:79:28:5e:d4:ca:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7da3decb070a5b918b24f6181faaada6781f43fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:28:52:ae:53:1e:8d:aa:9d:e9:16:79:14:6b:
8b:48:a2:d3:4b:c1:a7:fb:f6:6c:58:a7:6d:22:5c:
d7:0e:38:8a:4d:6e:8b:5b:0e:5a:b7:0b:14:07:2f:
3f:f3:e3:b4:35:86:6b:f0:7f:95:db:20:4b:22:75:
2b:d1:70:58:a6:5a:b1:bb:73:80:c8:0a:1f:d8:c9:
cc:a2:fc:32:f4:ce:89:4f:5b:2c:f4:85:c2:f3:93:
7d:5c:70:91:81:ca:60:91:32:0e:db:79:2e:0e:8e:
2f:1c:c6:09:66:d5:64:8e:e1:f6:ba:ff:e2:cf:57:
c4:b6:92:89:e3:f8:50:fa:12:70:cd:74:27:57:0b:
48:02:b4:99:a5:71:67:b6:e2:04:de:89:d9:73:76:
d0:c6:aa:67:9b:1d:82:6c:cc:02:bb:51:71:ac:62:
14:9e:a1:bd:c3:0a:3d:0e:c5:05:b0:aa:29:59:a9:
65:ec:05:91:ce:31:50:3b:02:3c:b8:34:97:41:41:
9a:c2:56:dd:9c:16:51:ff:af:b7:31:62:58:b8:ef:
bf:64:fc:cf:74:f7:27:1a:8c:61:67:f3:fe:6c:34:
c9:fc:e0:97:e3:1d:50:02:e8:2b:fc:9f:cd:6c:8d:
46:98:ce:ed:0c:7e:f9:32:8b:84:be:0d:33:d8:7d:
85:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A3:DE:CB:07:0A:5B:91:8B:24:F6:18:1F:AA:AD:A6:78:1F:43:FE
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/faPeywcKW5GLJPYYH6qtpngfQ_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.111.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ca:b5:40:1e:f5:5e:10:b3:82:89:ac:59:b1:f2:de:6e:f5:
58:ef:7e:ff:a5:57:fc:85:46:b4:b4:d8:19:88:94:ec:39:e7:
76:ab:9a:cd:8c:dd:5f:a9:ef:88:b0:1f:5a:6f:a0:97:4c:54:
1f:b6:c3:3a:78:3a:ef:2d:e2:ae:43:83:ae:ba:8d:db:cd:cf:
c4:07:1f:e8:fa:81:72:b6:07:a7:7e:99:f6:cd:45:35:ba:f4:
06:75:c3:b2:82:68:9c:67:84:c9:26:29:5b:3e:a6:8b:be:d6:
9d:30:40:a3:e0:fa:b3:7a:b3:05:e8:4e:44:d0:b6:4a:ef:c6:
87:20:27:3c:be:97:1e:c4:30:e1:b5:c6:77:8e:f3:cc:00:fc:
e2:65:40:92:9c:4d:2e:77:46:aa:d9:13:65:13:87:6f:c4:42:
3b:ad:e0:0d:30:2f:fe:90:64:8c:1f:bb:c6:66:5a:d9:04:3b:
c6:6b:7c:26:5d:97:d0:26:c2:36:d1:23:ee:f1:c0:05:f3:55:
cc:34:6e:3b:d3:9b:64:ec:82:2a:e1:05:d9:b3:2e:f5:9c:e9:
9e:6a:67:8f:c6:f2:f4:ad:ee:8e:13:9b:d8:d8:ba:95:c2:6a:
e4:48:3c:c7:7c:a6:cc:a5:31:75:43:97:47:f0:a8:64:78:78:
41:b8:56:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:52 2025 by rpki-client