Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/fTdiAOEcTICOFn5PI74-JWYvMEk.roa
File: fTdiAOEcTICOFn5PI74-JWYvMEk.roa (raw, json)
Hash identifier: nLbm9xn6uO7vP0W+WbQSNyN55zb/Qb76dxPs1HzCDPA=
Subject key identifier: 7D:37:62:00:E1:1C:4C:80:8E:16:7E:4F:23:BE:3E:25:66:2F:30:49
Certificate issuer: /CN=47aa878f76b50947cbd7deca04ac832e287b514d
Certificate serial: 01856F0247C666DB7B787953A7ABA51D93CB
Authority key identifier: 47:AA:87:8F:76:B5:09:47:CB:D7:DE:CA:04:AC:83:2E:28:7B:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R6qHj3a1CUfL197KBKyDLih7UU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/fTdiAOEcTICOFn5PI74-JWYvMEk.roa
Signing time: Sun 01 Jan 2023 20:24:58 +0000
ROA not before: Sun 01 Jan 2023 20:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207188
IP address blocks: 194.61.102.0/23 maxlen: 24
2a03:98c7::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:47:c6:66:db:7b:78:79:53:a7:ab:a5:1d:93:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47aa878f76b50947cbd7deca04ac832e287b514d
Validity
Not Before: Jan 1 20:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d376200e11c4c808e167e4f23be3e25662f3049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:77:8d:7a:df:4d:9e:66:50:48:ee:ee:30:
76:c3:b0:9d:42:35:b7:04:10:ee:64:6e:ca:44:81:
6a:c5:c0:92:4a:b1:c9:23:34:f4:f9:2b:82:27:d0:
b4:1b:0e:7a:55:f7:88:b0:1e:49:ae:b3:17:3d:97:
62:dd:79:3d:88:7d:41:1d:10:a8:9d:da:41:0b:0c:
ad:37:cf:b1:9d:74:3c:4e:cb:e4:4e:19:fa:54:08:
b4:33:aa:d2:43:21:1c:10:5c:32:b4:de:a5:6a:98:
fa:97:76:d6:ef:ff:e0:a0:76:e2:f9:6f:1b:ce:17:
01:fc:db:8b:97:44:4d:23:96:eb:61:1e:01:15:97:
0d:1b:96:44:bb:d9:66:49:4b:62:be:38:68:68:2f:
db:0c:7e:a5:64:ee:12:7f:3d:02:79:49:94:51:32:
25:2b:58:13:cb:37:fe:fb:d5:3b:e8:9d:f3:2f:88:
9e:48:ff:4c:84:20:4a:78:14:39:f9:45:30:c4:c7:
ac:dc:0c:0f:a8:fe:10:da:b9:ca:a0:8c:79:4d:9b:
e3:93:d9:be:24:3e:f2:13:3b:c4:e4:1d:8f:b3:c9:
31:63:1d:0c:59:a2:e1:4e:1b:ec:26:a3:a2:a0:ed:
d8:97:fa:f1:66:06:55:d9:6c:88:70:8b:97:37:a9:
88:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:37:62:00:E1:1C:4C:80:8E:16:7E:4F:23:BE:3E:25:66:2F:30:49
X509v3 Authority Key Identifier:
keyid:47:AA:87:8F:76:B5:09:47:CB:D7:DE:CA:04:AC:83:2E:28:7B:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R6qHj3a1CUfL197KBKyDLih7UU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/fTdiAOEcTICOFn5PI74-JWYvMEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/R6qHj3a1CUfL197KBKyDLih7UU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.102.0/23
IPv6:
2a03:98c7::/32
Signature Algorithm: sha256WithRSAEncryption
65:bd:d6:49:fd:f6:e0:98:9a:20:82:98:fb:f5:fb:c0:02:50:
6a:e0:21:46:4f:ce:e5:30:48:29:de:b7:f0:60:e8:6e:04:9b:
c1:58:9f:1e:1f:6b:64:61:aa:f6:6c:73:ce:c4:dc:e9:bc:de:
75:ed:b4:ab:a2:f6:96:13:d5:89:bf:60:ef:30:f4:43:46:4e:
ca:45:90:8c:20:b0:a4:cd:42:8f:81:ab:b4:61:05:a2:9c:8c:
35:9b:87:62:56:07:c3:95:08:fc:8c:c6:29:44:ea:b6:ed:34:
ae:bf:fd:4f:26:6b:69:3e:b6:1e:f9:82:21:b7:ee:70:e4:31:
88:cb:fb:8d:b4:4a:f8:08:da:47:07:c0:cc:6d:4c:b4:b7:26:
68:55:5d:6c:55:a1:1d:6b:7e:92:56:80:a3:39:84:e3:a9:0c:
a1:41:95:05:8c:ea:1a:c3:4d:bf:48:64:68:ca:a0:1f:1f:22:
da:b7:f9:f9:15:02:e6:68:c9:09:5d:f2:0f:b5:db:af:4f:0b:
2f:aa:4f:7a:54:6c:ab:30:b2:f8:07:6e:35:d4:39:e6:49:32:
2c:20:58:d3:ca:5e:c7:ba:22:35:64:b8:0b:18:cd:b4:69:81:
e9:56:20:6f:34:4d:d0:c7:fa:c8:d6:4a:cd:da:a7:8e:5b:fc:
e3:0b:b8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org