Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/F0FmtWxzlh0KJRryitd2jGiQNAI.roa
File: F0FmtWxzlh0KJRryitd2jGiQNAI.roa (raw, json)
Hash identifier: DNkiC+Yxa6afEoblxQvQl8rwgqDDIxlPh9NVhGOWsk4=
Subject key identifier: 17:41:66:B5:6C:73:96:1D:0A:25:1A:F2:8A:D7:76:8C:68:90:34:02
Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Certificate serial: 018B2D8BC331C5E203370C012CA9B9BA8EB4
Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/F0FmtWxzlh0KJRryitd2jGiQNAI.roa
Signing time: Sat 14 Oct 2023 09:36:55 +0000
ROA not before: Sat 14 Oct 2023 09:36:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216176
IP address blocks: 2a14::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Nov 2023 20:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2d:8b:c3:31:c5:e2:03:37:0c:01:2c:a9:b9:ba:8e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Validity
Not Before: Oct 14 09:36:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=174166b56c73961d0a251af28ad7768c68903402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2e:e5:22:47:c7:73:b8:e0:7f:d5:50:8f:30:
95:db:d0:f4:cc:57:8e:50:35:23:32:bf:db:7e:ac:
d3:ac:c4:29:49:bf:af:f9:1d:07:2a:6e:6c:8f:84:
ef:5b:5a:ad:80:1c:6e:ab:bc:f7:ff:ca:73:52:08:
cc:31:83:ed:f0:a3:6c:57:81:c5:eb:cd:32:a6:6a:
7c:54:fe:39:40:0b:4a:6c:97:52:99:e2:ea:9e:22:
ec:2f:b3:98:2e:9f:55:53:54:ab:c6:8b:65:b0:d4:
80:02:cc:d3:50:21:52:43:89:28:e5:4b:05:31:c9:
1b:c2:03:59:30:77:08:6e:44:b6:a2:72:fc:81:96:
2d:81:68:ea:a3:b2:7f:68:88:8d:ff:27:e7:1a:be:
60:9d:30:b8:f4:3b:b8:1a:62:32:5f:bd:42:14:96:
38:1a:91:e2:10:56:30:94:18:b2:b0:2d:92:ab:ad:
9d:ee:7e:10:cf:55:cb:87:58:45:8b:7e:55:5e:6d:
88:e0:f2:0e:3b:7f:b8:3f:85:45:fb:78:7c:71:53:
ba:95:ff:c6:19:fe:26:08:58:f9:0b:17:be:75:53:
d0:7b:95:78:5c:86:60:bd:93:53:33:38:40:d4:4e:
9f:05:69:08:71:d0:16:5e:fa:ef:62:d4:b0:09:ed:
94:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:41:66:B5:6C:73:96:1D:0A:25:1A:F2:8A:D7:76:8C:68:90:34:02
X509v3 Authority Key Identifier:
keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/F0FmtWxzlh0KJRryitd2jGiQNAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14::/32
Signature Algorithm: sha256WithRSAEncryption
0f:c9:62:6a:59:48:87:bb:05:88:5b:02:62:90:f8:15:4b:24:
e7:fd:b5:cf:ec:7c:2c:11:6a:34:ee:3b:9a:a2:74:7c:bb:e4:
d7:c0:84:8c:0e:69:3b:8c:a5:a3:2a:72:65:a1:54:4a:38:80:
d5:dc:71:d5:47:2b:aa:f5:ad:05:ac:c9:ab:e2:73:45:18:df:
14:76:ed:cc:3f:43:a9:33:2b:cf:d7:8c:d4:ae:a1:fe:95:81:
d3:bb:8d:d8:99:29:c4:fd:9c:80:31:96:54:32:5c:80:8b:6d:
d1:4b:78:4c:e7:03:38:2e:14:16:b5:b3:6c:3c:3c:b4:1a:3a:
40:e7:b8:f7:5e:50:62:dd:f8:14:47:ee:1c:ed:fc:33:bd:34:
b9:b9:2e:61:96:7a:68:7b:95:6b:aa:d5:aa:9a:c5:ae:b8:fe:
cf:53:43:51:f9:f0:59:1d:d9:38:38:0b:4d:1f:4c:7d:97:37:
b4:4e:fa:a7:d2:e5:89:36:9c:15:da:c1:80:35:3f:55:71:5c:
ce:5d:92:8f:c4:5f:dc:c7:57:52:55:17:38:4d:76:88:0e:26:
df:e7:0d:5e:dd:ac:a7:dc:4e:c1:1a:e3:05:ea:b4:bd:88:9f:
b9:27:32:34:fc:15:e7:1c:4e:f1:ff:f2:fb:ee:05:f3:a8:6a:
59:7c:05:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org