Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/1-FmsJYXRHvUhHUkrCEuvehR2xtI.roa
File: 1-FmsJYXRHvUhHUkrCEuvehR2xtI.roa (raw, json)
Hash identifier: fQi+ZI5IdUjr8Tm0TKF1qj9nQQtMLNCHIXdM+FkUj/o=
Subject key identifier: F8:59:AC:25:85:D1:1E:F5:21:1D:49:2B:08:4B:AF:7A:14:76:C6:D2
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0188542E11E33B009C59CD1EC61281110E8F
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/1-FmsJYXRHvUhHUkrCEuvehR2xtI.roa
Signing time: Thu 25 May 2023 18:31:25 +0000
ROA not before: Thu 25 May 2023 18:31:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202656
IP address blocks: 2.59.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:54:2e:11:e3:3b:00:9c:59:cd:1e:c6:12:81:11:0e:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: May 25 18:31:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f859ac2585d11ef5211d492b084baf7a1476c6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:ec:d2:a7:b9:ba:eb:3c:42:db:3b:9a:4f:
18:eb:31:1c:69:fa:0b:ec:24:8b:12:a2:06:12:d4:
b5:d5:f1:42:f8:e1:9c:db:2d:f1:9e:0a:85:72:c5:
ac:d1:59:dc:16:9f:1f:09:7c:ae:b3:ce:34:16:e0:
3e:36:59:2f:de:4d:a3:3d:a7:a3:5c:b0:20:20:59:
75:9e:94:be:05:10:61:76:f0:28:9b:e1:af:e8:87:
fd:25:31:ab:5a:83:b1:3c:a1:8b:41:9f:b1:57:6f:
0b:82:65:f9:7b:ac:b0:db:b4:d6:4f:dd:39:84:2a:
87:83:4f:dc:1c:b1:98:37:9e:97:c7:54:43:cf:f6:
f1:05:32:af:76:23:37:45:c2:dd:6a:e6:66:81:1b:
f6:31:42:db:0a:3a:2c:a2:1e:01:01:b5:3b:6f:c7:
d0:48:e0:1a:d0:bc:77:dd:d3:fc:0c:f9:70:46:87:
43:29:14:70:31:50:24:c2:fd:ec:f3:d8:92:de:4a:
65:26:40:ce:c2:fd:b2:6b:bb:a1:a4:3a:d5:07:1b:
39:28:62:7b:49:41:4b:a1:68:c0:3d:e9:31:85:da:
fa:e3:4f:e9:a7:c7:03:bd:dd:26:3b:39:ff:a3:aa:
e4:d8:2a:cf:6f:ea:41:fc:93:fc:08:28:7e:4f:0e:
b3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:59:AC:25:85:D1:1E:F5:21:1D:49:2B:08:4B:AF:7A:14:76:C6:D2
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/1-FmsJYXRHvUhHUkrCEuvehR2xtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.212.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:c2:c3:e0:d6:eb:10:26:1d:c0:ac:a6:89:70:90:e7:73:d5:
97:29:a2:b3:80:82:24:62:a6:18:7e:bf:47:03:6c:3f:16:5d:
de:e9:f9:38:5b:c2:24:55:c5:58:c0:ef:2e:19:66:6b:5c:42:
4f:52:ce:0d:17:41:a0:37:44:ea:72:56:30:3f:b8:90:71:1d:
93:7f:cf:dc:f6:ce:f7:5e:f5:97:e2:6d:72:d9:8b:2c:ff:6d:
0e:63:cc:59:b8:66:bd:34:c0:28:2a:2f:ab:db:dc:83:93:d7:
54:31:30:f9:5f:49:e4:41:9f:f5:36:a5:56:63:1e:4d:f2:01:
2f:c0:39:46:6c:e9:8c:0a:3c:67:3a:f8:90:e3:0d:14:9a:48:
2c:3f:a8:f7:a7:68:cc:d7:74:e7:4b:e2:7f:6f:a9:0a:9e:e9:
f1:48:c2:e4:20:88:e5:56:56:b4:af:f0:fa:b4:bc:6f:0e:ce:
f9:c3:21:a6:1f:c4:af:36:f8:10:2a:da:28:d7:14:0e:f8:43:
e7:99:7d:fc:3c:b6:ad:a8:b8:36:fd:a2:6c:ea:12:2b:86:10:
67:88:aa:22:ed:3c:9f:e5:6c:91:92:06:51:f0:86:d8:36:15:
19:15:6b:ea:a0:d2:04:9a:0c:d0:c3:40:fd:b6:88:e8:95:5a:
51:78:49:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:41 2024 by rpki-client on console-ams.rpki-client.org