Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/fcFuPYGi3SMkFHQhtnUezldZYQo.roa
File: fcFuPYGi3SMkFHQhtnUezldZYQo.roa (raw, json)
Hash identifier: HEXEuuiifpxBPixKNUy1Df/PcgxTZaJ1iU9PDnM2/Y0=
Subject key identifier: 7D:C1:6E:3D:81:A2:DD:23:24:14:74:21:B6:75:1E:CE:57:59:61:0A
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018CC86FC4C2B03250C5A690D83FABF2BA7E
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/fcFuPYGi3SMkFHQhtnUezldZYQo.roa
Signing time: Tue 02 Jan 2024 04:30:17 +0000
ROA not before: Tue 02 Jan 2024 04:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211027
IP address blocks: 2a0f:6fc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 25 Jan 2024 15:35:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:c4:c2:b0:32:50:c5:a6:90:d8:3f:ab:f2:ba:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 2 04:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7dc16e3d81a2dd2324147421b6751ece5759610a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:80:15:ee:a8:f4:40:d8:3d:b0:0a:d6:36:c2:
11:fa:79:fd:22:20:d3:e1:07:da:0f:da:1f:70:4a:
4d:43:98:41:93:4d:11:3b:e8:db:ea:9c:5e:7c:c7:
29:cf:53:b0:6c:e2:fd:72:b3:0e:39:78:2d:6a:bc:
8d:76:a6:3e:52:2a:0e:87:e2:c8:7a:5a:21:4e:f6:
2a:c1:75:f0:cf:68:63:63:7c:52:ad:50:8d:3c:dc:
eb:4f:4a:63:45:a7:0a:c9:a1:c3:8c:09:51:85:95:
fe:6d:01:de:90:74:e9:bd:68:45:32:42:87:a6:b4:
00:a1:13:33:c8:ea:1f:5f:e9:aa:83:f4:19:ad:ae:
c6:1f:33:2d:57:0b:bf:ef:db:a0:b1:b4:74:2e:4e:
c6:02:b2:ee:ac:f2:cc:02:46:24:70:4e:7b:3f:b9:
ef:bf:9f:83:0d:3b:39:1e:27:93:b7:93:eb:79:82:
bc:67:6f:ab:a6:d5:3c:c6:bd:af:28:b1:0a:ec:42:
1f:a1:48:fc:58:74:12:ea:0f:90:92:de:f0:d0:de:
fc:d1:43:df:1c:48:ef:8e:c5:97:10:e5:ef:d6:99:
51:45:4d:61:45:98:fd:e2:56:dc:cc:8d:11:94:34:
13:b1:24:f7:80:24:33:e8:be:15:64:31:a2:8d:e5:
b9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C1:6E:3D:81:A2:DD:23:24:14:74:21:B6:75:1E:CE:57:59:61:0A
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/fcFuPYGi3SMkFHQhtnUezldZYQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6fc1::/32
Signature Algorithm: sha256WithRSAEncryption
2c:45:ad:72:d8:a2:86:0e:f0:87:72:52:3a:53:af:a8:0f:c8:
85:37:e0:1b:4c:ee:8e:4f:5b:63:9b:7a:0c:84:77:e4:70:a3:
c4:a7:ec:dc:68:ce:49:c1:de:67:81:bc:32:4b:40:29:de:bb:
0d:52:d9:39:16:69:f6:89:2c:07:41:5d:79:88:77:e8:10:f2:
8a:fd:3e:d6:1f:09:40:5c:68:52:ea:a5:a4:eb:f3:2b:9f:fc:
8c:e3:9f:79:36:f0:e4:4f:e2:26:f7:77:b3:01:cb:f4:0a:6c:
75:75:5f:69:1d:7d:6c:ac:2f:5a:c2:c5:42:35:ba:ba:32:d9:
88:45:06:8f:b1:6e:c0:67:cb:6d:37:40:29:4c:78:e3:47:38:
b5:31:38:b9:80:bc:1c:12:d9:aa:03:ce:85:e7:35:00:00:d7:
0c:c7:d8:88:0f:65:3d:5e:5e:70:94:98:23:25:de:81:d0:2f:
13:80:15:99:93:d0:12:44:09:8e:3d:2d:b0:a5:ac:de:e6:4e:
f4:6a:56:e3:58:e6:c9:7e:9a:22:1b:66:fd:ac:46:1f:ba:29:
8b:e4:8b:0c:d6:7b:60:65:0d:b4:5a:ba:4c:55:0c:c3:66:e5:
8c:5f:42:1b:2d:a8:28:19:bc:04:af:d4:1e:cd:a6:a0:c7:c0:
80:4e:68:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:25 2024 by rpki-client on console-ams.rpki-client.org