Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c9035d-e57b-43f3-93d1-c27d1a85569b/1/0FKLByUM_9a1vTNHeCemxOvvXuk.roa
File: 0FKLByUM_9a1vTNHeCemxOvvXuk.roa (raw, json)
Hash identifier: r8stwHlTtr44McK/rvxULw0Sfti+h/smqLfAiyNKx/o=
Subject key identifier: D0:52:8B:07:25:0C:FF:D6:B5:BD:33:47:78:27:A6:C4:EB:EF:5E:E9
Certificate issuer: /CN=48fec1af2f321b1d1b8287a1fd05513ce66e4cfd
Certificate serial: 01856D5CF2BF0A45E2B7E779AD7FA1217FED
Authority key identifier: 48:FE:C1:AF:2F:32:1B:1D:1B:82:87:A1:FD:05:51:3C:E6:6E:4C:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SP7Bry8yGx0bgoeh_QVRPOZuTP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c9035d-e57b-43f3-93d1-c27d1a85569b/1/0FKLByUM_9a1vTNHeCemxOvvXuk.roa
Signing time: Sun 01 Jan 2023 12:44:46 +0000
ROA not before: Sun 01 Jan 2023 12:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197752
IP address blocks: 176.100.200.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5c:f2:bf:0a:45:e2:b7:e7:79:ad:7f:a1:21:7f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48fec1af2f321b1d1b8287a1fd05513ce66e4cfd
Validity
Not Before: Jan 1 12:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0528b07250cffd6b5bd33477827a6c4ebef5ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e2:ae:bf:40:b3:8c:c3:f0:db:0b:6c:1c:2b:
57:d0:83:24:8a:7e:d0:ac:37:41:c0:83:9e:06:1d:
37:c3:c8:c3:f0:69:84:9e:55:bf:fa:84:5f:89:af:
5f:2e:67:14:3a:24:f8:59:62:7f:b6:80:84:36:8d:
e8:04:91:5e:5f:41:c7:ae:fc:3c:7a:df:64:f0:b5:
a8:ab:97:db:f1:b2:db:eb:de:d4:b8:11:15:7a:ca:
1b:18:ee:fd:f8:1e:b8:35:40:06:f3:db:fc:de:84:
ce:1a:dd:cb:33:df:e1:7b:73:f4:87:96:f5:e9:a4:
7b:bd:7b:73:17:ae:fd:53:94:6e:f0:45:2e:9e:29:
c5:bb:9a:dd:76:ea:0f:a1:b5:1f:29:4e:d6:db:fb:
fa:99:53:a0:58:59:93:d8:50:f6:86:96:98:b4:9a:
1e:25:a4:a8:ed:83:f4:79:bc:33:ad:5a:92:61:cf:
4a:ed:0f:31:05:26:26:47:c1:6e:2f:94:69:1d:97:
9d:78:eb:d4:30:cd:ef:6d:4d:d0:9b:c7:23:72:16:
55:50:68:7a:ef:e3:8e:ba:2a:ef:79:28:62:c6:91:
f8:7b:9a:7a:4d:d5:13:74:bb:cd:eb:fe:02:d4:52:
76:ff:3c:0a:13:e5:d2:fa:29:79:b5:4c:a1:c8:f9:
02:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:52:8B:07:25:0C:FF:D6:B5:BD:33:47:78:27:A6:C4:EB:EF:5E:E9
X509v3 Authority Key Identifier:
keyid:48:FE:C1:AF:2F:32:1B:1D:1B:82:87:A1:FD:05:51:3C:E6:6E:4C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SP7Bry8yGx0bgoeh_QVRPOZuTP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c9035d-e57b-43f3-93d1-c27d1a85569b/1/0FKLByUM_9a1vTNHeCemxOvvXuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c9035d-e57b-43f3-93d1-c27d1a85569b/1/SP7Bry8yGx0bgoeh_QVRPOZuTP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.200.0/21
Signature Algorithm: sha256WithRSAEncryption
74:72:2c:4a:51:f0:8b:1e:a4:05:12:bc:a5:c3:f9:39:99:ee:
8a:7a:e1:46:d2:db:23:9c:c1:83:77:f4:7f:57:75:f1:8f:13:
8e:80:cd:29:50:ec:35:23:e6:ba:5c:83:72:ee:81:f2:ed:c6:
08:55:47:84:8c:ff:b2:07:6f:cc:e4:7d:61:4b:34:4d:c7:a0:
ec:a2:7c:b3:fe:5b:fb:28:94:16:f1:07:37:48:c5:04:ea:f1:
a4:9b:78:4b:49:84:2f:05:f1:5d:cb:16:66:ef:9c:80:a0:07:
23:12:0c:86:ba:71:84:5d:0a:2e:86:b8:69:9b:31:70:50:86:
a3:58:46:7e:4f:9d:ee:42:9f:3c:28:9e:11:59:6d:d0:10:b6:
d7:85:20:0f:a8:1a:f9:7d:de:a7:09:72:aa:75:63:43:4e:9b:
c9:fa:93:fa:0b:22:e6:a5:cf:8d:73:61:ad:8e:40:4c:7a:80:
18:d6:2b:e4:d4:b0:f0:12:8b:64:43:28:2a:af:76:07:da:c2:
ba:b4:6a:99:ae:8f:28:db:ff:21:27:f4:5b:40:42:17:57:32:
9d:13:e3:1b:c5:a1:25:59:24:44:3f:bc:39:4b:5c:1c:8c:9a:
9d:06:dc:d1:0b:26:f4:47:0a:3f:36:b6:0c:d9:0a:a9:d7:ad:
67:5d:ab:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:53 2024 by rpki-client on console-ams.rpki-client.org