Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/a27620-d32d-4e98-aec4-bf6a97a56f10/1/fhj2IkEkZWprTEUwahdDfDk0YRQ.roa
File: fhj2IkEkZWprTEUwahdDfDk0YRQ.roa (raw, json)
Hash identifier: zonVuYgPBeY8H3CL87226SWGiY/UsZv1SNYTBiluXD4=
Subject key identifier: 7E:18:F6:22:41:24:65:6A:6B:4C:45:30:6A:17:43:7C:39:34:61:14
Certificate issuer: /CN=fa0896cf1823c74bfcb7d623e2c438787b9f167b
Certificate serial: 0192BF7D5D0266BDA4E6A21A879508AEC5CB
Authority key identifier: FA:08:96:CF:18:23:C7:4B:FC:B7:D6:23:E2:C4:38:78:7B:9F:16:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-giWzxgjx0v8t9Yj4sQ4eHufFns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/a27620-d32d-4e98-aec4-bf6a97a56f10/1/fhj2IkEkZWprTEUwahdDfDk0YRQ.roa
Signing time: Thu 24 Oct 2024 17:05:16 +0000
ROA not before: Thu 24 Oct 2024 17:05:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31350
IP address blocks: 193.151.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:49:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bf:7d:5d:02:66:bd:a4:e6:a2:1a:87:95:08:ae:c5:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa0896cf1823c74bfcb7d623e2c438787b9f167b
Validity
Not Before: Oct 24 17:05:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e18f6224124656a6b4c45306a17437c39346114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b9:27:33:c4:1c:08:c7:25:77:6a:6b:77:26:
24:cb:80:9d:0a:3b:fe:a4:58:b5:06:3d:e0:c2:c2:
b8:7f:24:2c:22:f8:a0:46:a6:c3:88:59:47:0d:bf:
2c:9e:64:1a:f6:59:68:b7:fe:ff:c9:85:e0:26:83:
2e:99:c3:6e:7d:36:10:5a:0b:59:36:5a:94:b2:e5:
6c:59:4f:5c:2d:99:52:d2:e9:17:ba:ab:dd:4a:56:
7d:7b:82:83:de:93:7d:ac:69:1b:51:63:20:58:1a:
e4:5e:e7:de:73:db:fd:16:10:7f:49:44:6c:d6:6b:
a9:25:3c:4e:a1:51:22:f7:73:c9:9d:34:57:b3:74:
86:1c:4b:a9:b2:c9:0c:2b:5c:73:66:21:00:37:4c:
82:54:f1:af:60:51:5a:23:4d:ca:11:d4:a7:60:14:
a3:64:d9:a8:90:52:98:10:9a:ef:02:a4:ba:63:b1:
7e:5e:37:33:2f:c0:fa:d1:36:dc:48:4f:1d:a8:30:
72:e6:b0:a3:0d:b4:f6:6d:21:be:1b:6c:40:d5:d9:
41:e6:12:ac:8a:49:71:ce:22:52:d4:30:c8:7e:e1:
ec:7f:f9:b4:7f:90:87:20:60:80:25:0c:18:13:0a:
d6:0c:19:df:d2:83:aa:67:7e:fe:dc:42:fb:aa:2d:
e5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:18:F6:22:41:24:65:6A:6B:4C:45:30:6A:17:43:7C:39:34:61:14
X509v3 Authority Key Identifier:
keyid:FA:08:96:CF:18:23:C7:4B:FC:B7:D6:23:E2:C4:38:78:7B:9F:16:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-giWzxgjx0v8t9Yj4sQ4eHufFns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/a27620-d32d-4e98-aec4-bf6a97a56f10/1/fhj2IkEkZWprTEUwahdDfDk0YRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/a27620-d32d-4e98-aec4-bf6a97a56f10/1/1-giWzxgjx0v8t9Yj4sQ4eHufFns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.56.0/22
Signature Algorithm: sha256WithRSAEncryption
04:b5:8d:23:7f:ef:22:02:54:63:fd:b5:dd:c4:8b:01:ba:00:
c6:b7:2b:3d:c1:ff:26:d4:b6:f9:18:57:06:fc:fe:b7:a8:cc:
96:82:5d:12:9b:5c:e9:84:10:93:b2:f2:e7:5c:5c:59:e9:69:
8e:a4:88:21:04:23:70:1b:0b:03:03:10:9c:2b:ac:78:5a:70:
fe:d5:ae:7f:19:f7:fe:93:57:bb:ae:a3:67:13:b3:95:87:3b:
c7:f7:eb:d2:ec:96:72:04:78:d8:d2:76:f9:dc:ae:50:be:c2:
80:92:9f:6d:b2:3c:6e:d6:3d:7b:d4:fe:26:5d:6f:62:25:da:
b7:0f:3b:03:7d:49:af:c6:a7:e2:11:5b:8c:fa:f5:f3:cf:a7:
a5:b4:93:74:d9:8d:5d:f8:a9:cf:7a:17:c1:e9:01:8a:18:3c:
3c:e4:5d:2d:27:71:a1:b0:e8:8d:39:3b:00:3d:25:40:45:eb:
92:04:0d:04:ae:16:93:55:3c:ad:53:96:d8:96:62:36:88:7c:
18:bd:03:02:8e:ec:e7:04:08:58:ef:ac:69:f7:8a:7e:58:de:
76:f5:cc:97:f8:f2:23:5f:47:d2:74:df:e4:f5:9f:aa:e8:35:
9e:5c:19:ea:97:b0:d2:8d:af:b5:eb:aa:f4:48:52:27:c5:79:
34:7a:0d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:02:28 2025 by rpki-client