Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/F4OehZGx6dPhx8KL8-mh3zxOpFw.roa
File: F4OehZGx6dPhx8KL8-mh3zxOpFw.roa (raw, json)
Hash identifier: ioZOgrKsekJAjuMHCPl3Qv40ILoPtmexClILSnKO8nk=
Subject key identifier: 17:83:9E:85:91:B1:E9:D3:E1:C7:C2:8B:F3:E9:A1:DF:3C:4E:A4:5C
Certificate issuer: /CN=6743e5de39c21f8a78be6a457a3b86d5822bc17c
Certificate serial: 018F4833F9C666E8C70183E8C65586979455
Authority key identifier: 67:43:E5:DE:39:C2:1F:8A:78:BE:6A:45:7A:3B:86:D5:82:2B:C1:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0Pl3jnCH4p4vmpFejuG1YIrwXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/F4OehZGx6dPhx8KL8-mh3zxOpFw.roa
Signing time: Sun 05 May 2024 10:01:56 +0000
ROA not before: Sun 05 May 2024 10:01:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57358
IP address blocks: 2001:67c:5f8::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 05 May 2024 12:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:48:33:f9:c6:66:e8:c7:01:83:e8:c6:55:86:97:94:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6743e5de39c21f8a78be6a457a3b86d5822bc17c
Validity
Not Before: May 5 10:01:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17839e8591b1e9d3e1c7c28bf3e9a1df3c4ea45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cf:55:9d:04:80:2e:19:e9:62:82:b4:80:29:
2f:de:17:29:4e:18:13:51:b0:d0:20:a2:50:45:7f:
97:08:ff:be:89:ee:b6:b2:14:db:fb:22:3c:9b:ef:
4b:5d:dd:df:3f:ef:d6:71:1c:1c:ff:c1:49:f8:8c:
5f:6d:9b:95:57:2b:75:e8:07:49:c9:cc:c9:52:e7:
b9:ec:38:50:15:2a:10:9b:a1:48:d6:cd:3a:21:e1:
4e:21:1a:69:8e:8d:96:3d:9d:a3:9b:4b:11:5b:cf:
a5:98:c9:82:12:d4:05:35:48:e2:63:6f:46:78:3d:
ea:bb:99:03:5b:f4:8d:18:b3:73:3b:3a:af:06:cd:
60:59:65:ae:4c:ff:01:d7:c8:86:dd:6a:1b:4d:32:
ab:ab:c2:f4:1c:d4:53:29:5e:b4:6d:32:79:b2:60:
51:72:4f:d4:51:69:63:2e:1b:2a:57:5d:8c:1e:90:
a5:a0:8c:b0:60:f3:76:56:63:79:84:57:c2:af:8f:
68:c7:20:52:d5:84:41:78:32:e5:9b:72:d8:3f:b5:
27:a9:e5:b8:ec:28:2e:7a:2d:a7:3b:bc:7e:6a:ac:
a0:8a:76:8c:b2:fa:df:f8:9a:f9:b7:8e:45:91:0a:
dd:af:a3:b5:52:66:bd:6b:09:8e:e6:90:a6:df:56:
7c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:83:9E:85:91:B1:E9:D3:E1:C7:C2:8B:F3:E9:A1:DF:3C:4E:A4:5C
X509v3 Authority Key Identifier:
keyid:67:43:E5:DE:39:C2:1F:8A:78:BE:6A:45:7A:3B:86:D5:82:2B:C1:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0Pl3jnCH4p4vmpFejuG1YIrwXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/F4OehZGx6dPhx8KL8-mh3zxOpFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/39e5c5-431c-4375-b7e1-7aae52176d8b/1/Z0Pl3jnCH4p4vmpFejuG1YIrwXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:5f8::/48
Signature Algorithm: sha256WithRSAEncryption
75:8d:73:f0:59:38:92:d0:78:9f:40:68:73:a6:44:66:2b:46:
30:9c:c3:cb:4b:4f:93:bc:56:f8:e8:00:ee:ec:57:8b:ff:a2:
d4:b9:86:99:19:a4:f6:ab:bd:27:01:ce:d6:b2:05:e2:98:f1:
44:be:64:6a:2f:b0:84:8c:71:b5:74:77:9b:ff:9b:f5:fd:de:
35:ef:be:68:67:d1:59:bc:87:f2:14:a4:1d:30:a5:d1:d6:b1:
5c:80:e1:9f:a5:bb:99:e5:fb:14:06:43:08:f6:ac:92:8c:48:
60:8d:d6:0f:0f:43:2f:ba:8f:bf:86:7e:d7:ee:5a:9f:7e:6f:
81:60:a7:6c:d0:9e:ea:56:86:f0:b8:92:21:e3:78:bb:30:06:
fc:58:3c:b8:de:b9:95:22:39:1e:5b:89:26:cc:4d:fc:65:58:
ab:29:ba:5a:2c:3a:3c:5c:a5:99:c0:74:0b:da:7b:47:a4:1d:
18:ff:0f:c2:1f:60:f2:95:70:d1:f9:86:c7:91:f2:f9:29:80:
35:92:28:c1:50:af:71:24:0e:c2:2e:1e:38:08:d6:85:d2:dc:
2f:40:19:3b:07:16:3c:79:f5:c6:2b:61:f9:25:01:c8:e6:44:
7f:55:94:a5:5d:39:46:41:79:01:a7:5b:7f:9d:27:c8:51:20:
17:0e:7d:82
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY9IM/nGZujHAYPoxlWGl5RVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NDNlNWRlMzljMjFmOGE3OGJlNmE0NTdhM2I4NmQ1ODIy
YmMxN2MwHhcNMjQwNTA1MTAwMTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzgzOWU4NTkxYjFlOWQzZTFjN2MyOGJmM2U5YTFkZjNjNGVhNDVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwM9VnQSALhnpYoK0gCkv3hcpThgT
UbDQIKJQRX+XCP++ie62shTb+yI8m+9LXd3fP+/WcRwc/8FJ+IxfbZuVVyt16AdJ
yczJUue57DhQFSoQm6FI1s06IeFOIRppjo2WPZ2jm0sRW8+lmMmCEtQFNUjiY29G
eD3qu5kDW/SNGLNzOzqvBs1gWWWuTP8B18iG3WobTTKrq8L0HNRTKV60bTJ5smBR
ck/UUWljLhsqV12MHpCloIywYPN2VmN5hFfCr49oxyBS1YRBeDLlm3LYP7UnqeW4
7Cguei2nO7x+aqyginaMsvrf+Jr5t45FkQrdr6O1Uma9awmO5pCm31Z89QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBeDnoWRsenT4cfCi/Ppod88TqRcMB8GA1UdIwQY
MBaAFGdD5d45wh+KeL5qRXo7htWCK8F8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjBQbDNqbkNINHA0dm1wRmVqdUcxWUlyd1h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi8zOWU1YzUtNDMxYy00Mzc1LWI3ZTEt
N2FhZTUyMTc2ZDhiLzEvRjRPZWhaR3g2ZFBoeDhLTDgtbWgzenhPcEZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi8zOWU1YzUtNDMxYy00Mzc1LWI3ZTEtN2FhZTUyMTc2ZDhi
LzEvWjBQbDNqbkNINHA0dm1wRmVqdUcxWUlyd1h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAX4
MA0GCSqGSIb3DQEBCwUAA4IBAQB1jXPwWTiS0HifQGhzpkRmK0YwnMPLS0+TvFb4
6ADu7FeL/6LUuYaZGaT2q70nAc7WsgXimPFEvmRqL7CEjHG1dHeb/5v1/d41775o
Z9FZvIfyFKQdMKXR1rFcgOGfpbuZ5fsUBkMI9qySjEhgjdYPD0Mvuo+/hn7X7lqf
fm+BYKds0J7qVobwuJIh43i7MAb8WDy43rmVIjkeW4kmzE38ZVirKbpaLDo8XKWZ
wHQL2ntHpB0Y/w/CH2DylXDR+YbHkfL5KYA1kijBUK9xJA7CLh44CNaF0twvQBk7
BxY8efXGK2H5JQHI5kR/VZSlXTlGQXkBp1t/nSfIUSAXDn2C
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:30 2024 by rpki-client on console-fra.rpki-client.org