Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/fQgxSVw8ziemzO90Z9SgUrec-mI.roa
File: fQgxSVw8ziemzO90Z9SgUrec-mI.roa (raw, json)
Hash identifier: 7Cs/R7FmWlesebTQWVs7RL2lt3S8bGPkoSbdwpsBjqA=
Subject key identifier: 7D:08:31:49:5C:3C:CE:27:A6:CC:EF:74:67:D4:A0:52:B7:9C:FA:62
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 018BA515917D62B9E20829053DD613361AFA
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/fQgxSVw8ziemzO90Z9SgUrec-mI.roa
Signing time: Mon 06 Nov 2023 14:42:15 +0000
ROA not before: Mon 06 Nov 2023 14:42:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 86.107.58.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:15:91:7d:62:b9:e2:08:29:05:3d:d6:13:36:1a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Nov 6 14:42:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d0831495c3cce27a6ccef7467d4a052b79cfa62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2a:70:b5:42:06:6f:6e:45:79:5c:29:92:a2:
77:18:8c:d6:52:3e:f2:ea:94:63:20:c6:22:34:b9:
42:2e:ad:eb:f9:84:32:98:10:8e:fe:73:ac:cd:c5:
fe:b0:68:49:1f:37:9c:7b:99:be:8e:ec:6e:6f:4b:
b2:b8:dc:69:4b:e7:6e:be:c2:b4:20:8d:71:4c:64:
91:b0:29:36:25:40:f6:36:2a:54:fb:13:52:e2:38:
70:1c:8b:c2:5f:97:b8:64:3a:5c:37:de:9d:8c:72:
bf:53:67:29:b9:dc:62:5d:87:c8:e2:1a:bb:fa:43:
e0:25:5b:bd:8d:a5:b2:48:75:a1:34:7c:56:98:14:
3b:de:c7:ea:e3:0f:f3:52:d3:bf:ef:f2:1b:5d:6d:
19:d6:34:10:6b:af:07:3a:33:49:d5:ca:83:54:39:
0c:95:60:20:d5:6f:22:2e:cd:e2:59:5e:74:9c:cd:
fa:05:5e:76:0c:28:ba:c1:1a:1a:db:87:2d:ff:3f:
72:96:f2:6c:5c:3e:a8:c4:d9:0d:54:b9:3d:bd:f0:
b4:82:bb:1f:d9:fd:38:95:a1:d1:b8:78:92:03:c5:
05:dc:25:59:09:00:4f:cd:8d:a8:25:e7:70:bb:e2:
6f:9e:e7:a2:8c:d3:3f:94:83:10:92:19:42:3b:b5:
f8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:08:31:49:5C:3C:CE:27:A6:CC:EF:74:67:D4:A0:52:B7:9C:FA:62
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/fQgxSVw8ziemzO90Z9SgUrec-mI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.58.0/23
Signature Algorithm: sha256WithRSAEncryption
97:f0:e1:3a:2f:e5:63:53:16:da:d2:c2:71:28:e5:94:bf:2a:
3c:db:02:1a:5e:09:3c:50:46:dd:ca:c9:df:76:97:af:0e:14:
d9:11:b2:e2:75:45:58:b9:8c:f6:29:af:60:1f:0f:2a:b8:86:
fa:fe:0a:d7:b3:2d:ed:f5:bb:0c:39:e6:67:1b:8b:a7:b6:41:
cf:bd:e0:fe:6a:f5:86:d6:e8:09:7f:80:a3:93:66:ef:09:f4:
c9:d8:72:e3:61:0b:cd:5e:3f:69:f1:0d:f1:9d:e6:98:56:10:
00:d2:0b:49:27:7c:8d:52:bf:b7:0e:d8:87:80:fd:cf:b6:39:
57:1f:bd:99:c1:37:74:b7:7c:e8:19:b3:67:d7:9d:92:a5:03:
79:db:39:73:a4:3c:29:0c:d5:04:66:f1:4c:f9:79:8a:ac:a9:
ab:66:27:d5:42:71:ba:4b:97:da:72:f7:7d:80:db:87:38:d1:
7e:d3:25:30:1d:40:79:f4:42:a5:df:bb:2b:2e:8d:4f:3b:91:
47:ec:99:84:f5:91:95:05:7b:be:20:f9:d1:eb:8c:84:11:e0:
c6:74:1d:6d:38:2e:b5:c4:7d:b4:10:3e:64:3a:a4:f8:5d:4f:
94:fd:d0:b2:04:e9:8e:96:86:d1:da:35:03:fa:f2:5e:fa:87:
74:1f:92:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-fra.rpki-client.org