Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/F59RNmavMKtjkcoNc68g0zFXtqw.roa
File: F59RNmavMKtjkcoNc68g0zFXtqw.roa (raw, json)
Hash identifier: 19yg757rMWJ3+3kHir/9vtwCS3vI5SiAs4VPoqEJ9Fs=
Subject key identifier: 17:9F:51:36:66:AF:30:AB:63:91:CA:0D:73:AF:20:D3:31:57:B6:AC
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 018B47E49E1D037BB4E67CDDAD5683AAC6BF
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/F59RNmavMKtjkcoNc68g0zFXtqw.roa
Signing time: Thu 19 Oct 2023 12:24:06 +0000
ROA not before: Thu 19 Oct 2023 12:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34305
IP address blocks: 81.171.75.0/24 maxlen: 24
2001:4de0:2101::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:e4:9e:1d:03:7b:b4:e6:7c:dd:ad:56:83:aa:c6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Oct 19 12:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=179f513666af30ab6391ca0d73af20d33157b6ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:37:f9:b1:79:e4:77:26:9e:31:c0:a0:67:1c:
75:0b:d3:a0:0e:32:44:33:44:c6:a6:18:cc:2c:92:
88:ee:7b:f1:cb:c7:e9:c6:81:64:2e:69:d0:64:b3:
9e:2d:e5:da:94:5c:a3:8e:9a:ea:f1:05:57:a4:83:
fe:21:32:f1:aa:cb:dd:5c:7d:1a:ac:96:78:90:93:
a0:3e:1d:49:7c:7f:ce:4c:c1:dd:a2:5b:a2:08:be:
7a:bc:9e:09:f4:e3:65:0a:48:2f:0b:20:5b:81:38:
c7:c1:12:03:ea:c4:e0:4c:2a:81:38:e7:f1:1a:3e:
5b:59:e2:fb:3f:a4:e7:e9:0f:f9:f3:0e:9f:ca:be:
76:2b:7a:5c:90:c3:23:49:5b:6c:2d:5a:12:25:c1:
ac:f5:1a:13:f3:e9:f9:ee:8a:53:fa:94:f0:31:87:
0d:3e:14:e2:a1:74:9f:d0:c3:95:6b:39:07:6e:fc:
8b:40:54:e6:e2:75:8e:9f:d4:0d:ce:18:10:d8:2d:
32:de:4d:47:ab:0b:5f:c3:67:57:03:fd:28:6d:8c:
75:8d:21:19:86:43:0a:1b:57:83:0b:34:ed:9a:42:
8a:b4:a0:dd:b1:de:bf:4f:8c:fe:bc:30:df:75:ea:
81:b0:ce:14:87:e4:8a:f5:7d:23:a7:42:59:c9:81:
16:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9F:51:36:66:AF:30:AB:63:91:CA:0D:73:AF:20:D3:31:57:B6:AC
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/F59RNmavMKtjkcoNc68g0zFXtqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.171.75.0/24
IPv6:
2001:4de0:2101::/48
Signature Algorithm: sha256WithRSAEncryption
7c:3e:4d:2f:d9:96:0a:df:84:e4:a1:83:69:2a:b7:e4:f0:e4:
1e:f5:22:eb:b6:a9:05:de:1b:32:b3:05:bc:ef:1d:83:c0:9f:
17:54:cd:0b:24:f4:0a:0c:f4:10:1d:88:17:b1:b6:43:e0:69:
d6:9c:b2:a1:f8:a7:87:4f:c3:68:ad:40:ea:6c:fc:ca:8e:41:
99:76:96:d9:10:c1:d7:5e:5e:7a:c4:94:8d:48:3f:41:24:75:
55:86:07:2d:85:16:14:b2:63:20:7d:8b:24:54:6a:ab:7c:78:
2b:fd:92:ef:6c:62:4a:11:96:46:2d:37:ce:c9:4a:91:a3:09:
79:c4:10:43:4f:22:47:d9:2a:88:2c:f1:bc:e1:1c:2a:a7:cc:
71:11:c9:75:85:82:78:c1:9b:d2:14:2b:e1:4b:9c:6f:2e:79:
6e:9a:a9:eb:36:04:c7:96:91:df:6a:f4:7e:e5:bc:51:de:fe:
96:6c:f5:12:69:bc:31:53:35:19:bd:e7:61:3e:14:b4:8d:71:
8a:cb:35:06:b5:b8:09:05:14:0d:bc:38:22:f5:e4:11:4e:3d:
6b:51:5a:fd:28:c8:47:36:04:cb:cd:13:b8:9f:d7:11:6c:d7:
72:6e:6e:b6:b3:c7:8d:b2:9b:d4:f1:75:8d:59:48:3b:c8:a1:
22:46:bf:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:51 2024 by rpki-client on console-fra.rpki-client.org