Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/FHGCE-V6rDSoFjweXe79JSo6v_U.roa
File: FHGCE-V6rDSoFjweXe79JSo6v_U.roa (raw, json)
Hash identifier: SKyUi6r9DXNve9i0eVa1c5mgjukbos0IYVdTcrf2Oic=
Subject key identifier: 14:71:82:13:E5:7A:AC:34:A8:16:3C:1E:5D:EE:FD:25:2A:3A:BF:F5
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA778FD97C31F5D62C13DBBA401577
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/FHGCE-V6rDSoFjweXe79JSo6v_U.roa
Signing time: Mon 02 Jan 2023 13:45:00 +0000
ROA not before: Mon 02 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205923
IP address blocks: 2a0f:5707:fff6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:77:8f:d9:7c:31:f5:d6:2c:13:db:ba:40:15:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14718213e57aac34a8163c1e5deefd252a3abff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b3:cf:aa:a3:d9:b0:59:bb:ad:56:e6:90:1a:
c0:5a:22:18:ca:dd:42:a6:86:fb:90:00:3e:87:c2:
57:50:7f:27:fd:64:e9:c5:5d:d7:d7:d2:e7:fb:38:
e6:52:3e:97:d2:53:e1:d2:a2:f2:c0:62:4a:bc:a9:
76:51:13:d5:b1:b7:0d:fd:7a:01:26:68:65:7f:bd:
4d:3b:54:2d:ed:33:e4:41:47:69:f7:24:5c:4c:75:
24:04:14:5f:6b:b0:2d:2a:c2:d0:50:01:18:d6:75:
3c:30:f6:44:fa:74:dd:ae:3c:0d:ef:cd:b3:ec:10:
e0:f6:3f:5f:1e:5a:ec:11:a0:80:9d:89:fc:44:86:
e5:82:30:1a:74:4e:4b:9f:bd:f4:3c:96:b0:cc:9a:
8d:ef:ac:fa:7d:94:08:3e:af:c1:96:98:15:dd:cd:
64:d9:cb:cc:57:b9:85:76:09:a4:81:d3:6e:65:35:
22:dc:1b:31:5b:35:af:9d:d5:a1:91:b3:94:96:ad:
b1:43:25:5a:d6:48:2d:7c:3c:ea:4a:cb:10:57:7f:
10:7f:a4:b7:3c:72:bb:e4:54:bd:31:60:3f:50:6a:
9d:22:53:c9:ff:ee:a3:e4:cb:89:37:bd:b9:47:f3:
f3:45:1b:7e:3a:17:ba:ff:7a:56:d0:c5:b4:45:6a:
b0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:71:82:13:E5:7A:AC:34:A8:16:3C:1E:5D:EE:FD:25:2A:3A:BF:F5
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/FHGCE-V6rDSoFjweXe79JSo6v_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:fff6::/48
Signature Algorithm: sha256WithRSAEncryption
61:99:16:79:8b:7c:d9:de:75:8e:4a:7d:6c:3b:2d:0c:94:18:
06:f2:e0:a1:75:db:da:1b:27:98:41:a4:58:3c:72:d7:cc:93:
b2:6e:67:7b:26:43:6b:01:17:d2:eb:7b:fa:67:00:ac:a6:a0:
f1:d8:62:ec:ed:39:96:f5:dc:54:ec:75:f4:10:ee:5f:97:e2:
e1:0a:b7:d5:c2:e9:cb:b1:fe:54:b0:00:02:69:c6:36:c3:7b:
70:b9:2b:a2:3c:de:38:1e:0c:cc:e1:8a:06:8f:f5:61:d1:de:
ae:81:72:e5:d2:1d:bf:9c:3e:e5:0a:f2:1a:23:37:17:2c:52:
59:d3:e0:61:45:73:6b:bb:eb:e0:2d:1c:8b:99:13:0e:cf:25:
93:e4:5a:2d:27:ef:c2:8f:21:ad:c1:a4:1c:8a:19:5f:87:68:
fd:6c:c1:a1:80:f0:30:5c:34:20:3d:6a:0f:50:de:f6:5f:50:
de:2f:69:0e:ba:c7:10:c4:2f:90:d1:45:97:4d:59:07:e1:ad:
3f:c5:0e:54:06:ea:1b:46:f7:54:bf:5b:8e:a2:bb:a9:5c:5b:
c0:56:ad:59:ca:2c:bf:88:90:c0:ea:11:ba:a4:a1:b9:c9:f5:
31:dc:a6:f2:54:53:68:91:be:fb:81:c4:d5:7a:ea:db:15:14:
70:5a:4d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org