Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/bFSfWFahDs-bOLVypsTJ7VJTWSI.roa
File: bFSfWFahDs-bOLVypsTJ7VJTWSI.roa (raw, json)
Hash identifier: m1PTHAZg+7yNVF4qHRz/DqyXSNB4D+5vJGBQfICySoI=
Subject key identifier: 6C:54:9F:58:56:A1:0E:CF:9B:38:B5:72:A6:C4:C9:ED:52:53:59:22
Certificate issuer: /CN=2c3b0ae5b7f781122c709a2650adf9729187e1e1
Certificate serial: 01857014FCFB374E97E1343C8BB35FF476AB
Authority key identifier: 2C:3B:0A:E5:B7:F7:81:12:2C:70:9A:26:50:AD:F9:72:91:87:E1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDsK5bf3gRIscJomUK35cpGH4eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/bFSfWFahDs-bOLVypsTJ7VJTWSI.roa
Signing time: Mon 02 Jan 2023 01:25:01 +0000
ROA not before: Mon 02 Jan 2023 01:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20760
IP address blocks: 193.127.0.0/16 maxlen: 24
193.201.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:14:fc:fb:37:4e:97:e1:34:3c:8b:b3:5f:f4:76:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3b0ae5b7f781122c709a2650adf9729187e1e1
Validity
Not Before: Jan 2 01:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c549f5856a10ecf9b38b572a6c4c9ed52535922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8e:db:02:88:16:8f:5a:71:84:67:2c:1e:12:
45:08:40:7f:28:04:7d:25:ff:dd:32:2f:0a:20:af:
3b:34:f0:3e:53:b7:30:23:93:b2:45:0d:53:bf:11:
9b:8b:cb:db:7a:7f:71:a9:45:ed:ad:1a:5b:73:41:
eb:2c:44:c0:54:d6:5c:b9:fa:d6:05:a1:40:6e:45:
5c:2c:68:cc:09:48:a5:68:05:ef:cf:39:28:bc:11:
10:ba:69:b0:2e:2f:2e:44:34:8a:ac:06:d5:c5:20:
57:e4:ed:59:80:a6:e0:2a:9a:76:8b:70:09:3e:58:
e0:c2:ff:c1:7c:88:fb:d4:b5:2b:f9:e4:6d:ca:c2:
2f:20:bd:8b:c2:2d:a1:e4:a5:94:6d:97:54:92:0a:
0a:4c:c0:8e:cd:b7:c7:15:81:1d:38:bc:3e:4b:45:
9e:f2:4a:53:5d:0a:be:8b:24:f4:5c:25:87:2c:ab:
e7:44:68:21:d3:a6:59:68:dd:4f:93:3d:05:61:c3:
2a:4c:7a:31:c0:93:0a:82:16:bb:92:e8:01:27:8a:
96:6a:6e:ba:d4:88:fc:22:dd:ec:1d:41:8c:7f:0c:
cb:0d:38:21:33:ae:71:4c:d9:17:10:29:86:41:ca:
8b:83:de:64:dd:59:ee:23:f5:36:8d:9a:50:cf:b1:
c6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:54:9F:58:56:A1:0E:CF:9B:38:B5:72:A6:C4:C9:ED:52:53:59:22
X509v3 Authority Key Identifier:
keyid:2C:3B:0A:E5:B7:F7:81:12:2C:70:9A:26:50:AD:F9:72:91:87:E1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDsK5bf3gRIscJomUK35cpGH4eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/bFSfWFahDs-bOLVypsTJ7VJTWSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/LDsK5bf3gRIscJomUK35cpGH4eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.127.0.0/16
193.201.108.0/24
Signature Algorithm: sha256WithRSAEncryption
29:80:ea:ba:52:79:f2:07:a6:25:26:17:2e:79:5d:ba:d6:70:
3c:b0:93:a3:fd:88:ac:ea:46:80:a3:46:20:68:32:69:ff:65:
0c:c8:7e:77:71:14:f3:44:c2:c6:a6:1d:bd:9d:cd:dd:89:bb:
bc:83:8f:ca:23:10:3e:be:b4:b6:99:0c:10:9d:56:f6:f8:83:
78:2a:e0:ee:f0:0a:03:ef:bb:b3:89:1a:56:f4:4b:87:ad:b8:
88:89:dc:89:c8:5d:ae:88:9f:76:d3:d4:f0:ec:2d:e8:8c:e4:
a2:a9:cf:64:1b:19:45:e2:4c:b9:82:d2:a1:05:11:f6:06:8d:
67:87:a5:79:fe:d9:f6:39:6e:db:d2:20:f1:68:20:84:73:0a:
99:55:2d:6b:18:86:03:89:1c:b4:12:36:4f:78:2d:3c:ca:22:
95:ff:9a:43:e0:d9:16:cf:ae:de:4d:95:e7:b8:fb:16:a6:dd:
af:83:1c:5c:67:97:b8:25:2b:87:7a:d4:9e:f9:19:1b:7d:25:
cb:89:c9:67:2e:2d:e6:d4:2b:1b:01:26:a4:d0:66:38:99:93:
8c:2a:3a:4a:7a:ff:c3:37:45:04:58:ad:47:0d:7d:ba:ec:4e:
ad:66:0b:a4:f7:c4:c8:a1:b9:42:75:53:e5:32:5d:6b:0b:25:
62:38:ae:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:07 2024 by rpki-client on console-fra.rpki-client.org