Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/fvjhjWySEcthmT09xMt5hs2rMI0.roa
File: fvjhjWySEcthmT09xMt5hs2rMI0.roa (raw, json)
Hash identifier: y2ADU8EKKxsbC6q7qgowW5UgfpaRsGI9ksCu+8w7XOs=
Subject key identifier: 7E:F8:E1:8D:6C:92:11:CB:61:99:3D:3D:C4:CB:79:86:CD:AB:30:8D
Certificate issuer: /CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Certificate serial: 01856F799333972AEFA951ADA558FDD64561
Authority key identifier: 16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/fvjhjWySEcthmT09xMt5hs2rMI0.roa
Signing time: Sun 01 Jan 2023 22:35:16 +0000
ROA not before: Sun 01 Jan 2023 22:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51905
IP address blocks: 84.19.112.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 18 Jul 2023 15:24:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:93:33:97:2a:ef:a9:51:ad:a5:58:fd:d6:45:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Validity
Not Before: Jan 1 22:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ef8e18d6c9211cb61993d3dc4cb7986cdab308d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:16:da:a5:11:18:98:92:90:8f:7e:eb:1a:61:
1f:fb:fe:a0:67:d9:f1:be:28:5c:63:94:cb:40:9e:
57:63:f6:d9:5f:a0:a8:3b:1e:3e:4e:84:72:59:42:
dd:bf:5e:5a:fe:07:1f:f2:60:55:87:ac:6a:b0:5b:
bd:4b:25:4c:6f:62:c8:5a:e0:8d:7d:0a:8f:9e:ad:
e7:a9:97:22:94:81:aa:97:90:c3:1c:c0:df:4b:16:
20:ee:04:8c:be:5e:f5:6e:ea:34:b6:e5:9d:20:96:
f8:49:76:45:7e:70:e4:ff:2f:61:92:46:0d:3b:a6:
e6:50:4c:52:15:12:32:35:70:11:dc:b7:1c:40:16:
6a:22:9a:a9:cc:e3:8b:46:a8:f1:4f:dd:ea:df:78:
cc:aa:32:01:78:76:73:fc:2e:f7:2c:d7:53:9f:2e:
35:86:5c:12:57:1a:d4:f5:fb:f8:66:6e:90:81:c1:
91:16:f9:50:ee:46:73:4f:18:96:99:b6:83:e4:28:
4b:f6:76:31:1d:f3:84:c3:48:b9:9c:b4:23:c8:29:
9b:4d:04:b5:c7:0e:d4:fc:77:50:2f:02:07:c4:3f:
af:1c:b9:6c:b4:9c:c9:2c:0d:95:5e:a9:82:5a:54:
7b:55:94:50:5b:de:d8:80:9a:cf:59:56:b0:f2:ac:
78:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F8:E1:8D:6C:92:11:CB:61:99:3D:3D:C4:CB:79:86:CD:AB:30:8D
X509v3 Authority Key Identifier:
keyid:16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/fvjhjWySEcthmT09xMt5hs2rMI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.19.112.0/21
Signature Algorithm: sha256WithRSAEncryption
08:a4:c5:da:18:df:8f:c1:5a:e1:c8:d3:a7:44:47:80:6c:f2:
1e:f5:ab:8b:67:e9:34:0a:b3:a1:89:ad:22:b4:b0:16:8d:7a:
f3:bd:50:2c:ca:d0:c2:ed:9d:d8:68:37:dd:96:0b:7a:fa:5b:
df:42:85:eb:d5:54:3f:b9:0d:db:03:4d:97:4b:95:c7:d2:ad:
b1:64:e9:c0:4a:e7:c6:7f:05:5c:b9:61:4b:3e:e1:b6:18:d6:
b1:7e:3d:83:8e:df:2c:87:b2:12:af:7a:da:18:b5:1f:41:1e:
21:67:a5:74:29:12:09:86:82:9d:4f:b0:04:f6:df:43:17:bb:
57:3b:ff:e0:27:12:82:20:98:7b:34:f8:c5:60:a1:bb:6b:90:
b4:ca:43:55:17:31:77:da:1d:74:e4:dd:fb:c9:81:0f:5b:a2:
41:85:fa:3a:3a:b0:e3:34:bc:57:0c:00:0b:ba:45:5d:37:75:
13:22:27:6a:fb:8f:27:29:f4:a3:11:d1:bd:22:03:ea:16:c3:
97:d4:87:d9:22:f3:77:7d:b4:cb:63:d5:76:0e:83:05:e9:62:
f7:a3:2d:a9:2e:ff:a1:f9:02:15:01:2a:3e:79:e7:58:8c:bd:
c3:7d:20:06:50:b0:be:8a:ac:81:21:a9:16:32:95:f0:d5:9c:
5b:a5:bd:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:32 2024 by rpki-client on console-ams.rpki-client.org