Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/FS4pgjMLruyTjjBWQ6u5AEmugQE.roa
File: FS4pgjMLruyTjjBWQ6u5AEmugQE.roa (raw, json)
Hash identifier: wMS79BahLAgNrWNCZGiB3tBWX+1XaKC7EXUK2W7z6BQ=
Subject key identifier: 15:2E:29:82:33:0B:AE:EC:93:8E:30:56:43:AB:B9:00:49:AE:81:01
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 01887CB9350EC7312C6C4CC92F4EF9BBDEC5
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/FS4pgjMLruyTjjBWQ6u5AEmugQE.roa
Signing time: Fri 02 Jun 2023 15:28:12 +0000
ROA not before: Fri 02 Jun 2023 15:28:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198316
IP address blocks: 2a0f:7803:ffe0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7c:b9:35:0e:c7:31:2c:6c:4c:c9:2f:4e:f9:bb:de:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Jun 2 15:28:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=152e2982330baeec938e305643abb90049ae8101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8b:ae:f2:70:d6:49:6b:f2:77:16:e5:e7:66:
f6:88:b5:da:2a:50:b3:53:ab:8b:83:f6:5d:dc:ec:
14:38:73:aa:89:0d:82:25:59:36:3e:0d:7a:fd:9d:
7b:63:56:04:13:20:3c:75:c1:58:41:0b:90:94:11:
eb:4d:50:ac:e7:44:5b:14:ed:36:9a:eb:a5:9b:18:
c5:a0:a9:ba:35:e7:91:ec:d4:8d:38:c0:7f:d3:9d:
2c:d4:68:51:c8:ae:ba:e6:f4:d1:ac:83:68:c0:a7:
52:ac:ff:a0:a2:ef:60:43:b4:32:57:3e:f5:ae:56:
45:22:c8:d1:22:fd:56:b4:25:44:fb:57:2a:b2:98:
da:b6:8e:87:52:15:9a:6b:52:95:1f:87:1e:c3:44:
e6:b4:cc:b0:30:99:9a:85:34:1f:e3:02:39:cb:c8:
fb:58:c8:27:cc:df:bf:7a:fb:96:7f:e9:94:f7:46:
4b:c9:cc:5f:2b:d4:2f:f2:3c:ce:15:a0:da:f4:c9:
09:24:73:3c:e4:2f:91:eb:87:38:3c:34:01:86:77:
3b:9c:3d:85:3b:ad:ad:4b:ac:7e:ff:b9:35:68:f2:
f2:9e:36:56:44:29:ed:2d:57:04:e6:e8:cb:f5:fc:
2b:25:b7:b8:5b:7d:47:dd:ac:d4:0e:01:29:67:b1:
3d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2E:29:82:33:0B:AE:EC:93:8E:30:56:43:AB:B9:00:49:AE:81:01
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/FS4pgjMLruyTjjBWQ6u5AEmugQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:ffe0::/44
Signature Algorithm: sha256WithRSAEncryption
07:f4:a6:81:7e:0e:64:86:82:54:53:0f:1f:c0:1d:33:74:51:
69:4d:f0:e6:4b:86:4c:48:d0:7b:4d:0c:00:19:be:f4:e3:90:
95:33:f5:6b:86:36:67:d3:f4:f6:52:40:19:6c:f2:60:7f:7d:
49:d4:40:05:0b:48:58:d9:38:f9:96:84:3a:35:c3:22:44:8e:
19:64:40:f2:ec:6f:cb:c7:71:0c:16:64:07:e6:3e:43:64:50:
9e:84:0a:6c:78:96:3c:ba:e6:21:8e:82:7b:9b:d5:09:fc:1d:
81:c2:1b:a6:f3:10:fc:cc:a7:91:2a:cd:ca:c9:01:7a:0d:00:
5c:7c:43:30:de:de:b9:c3:fd:49:c4:f7:ba:40:3e:a0:14:de:
52:32:e9:f3:23:7a:19:0f:5b:d0:41:6c:dd:74:7a:ef:85:be:
b8:81:40:01:53:92:ec:ee:9d:15:00:cc:54:b2:99:1b:81:b6:
24:a8:93:53:c0:c9:41:8a:56:bd:db:af:6c:a2:ec:58:0f:1a:
0f:1f:35:09:9a:6c:d0:be:1b:f7:23:d8:95:c7:f8:b3:4e:0c:
aa:d0:69:8d:d4:5c:d8:5c:54:9b:06:de:2c:ea:e1:40:ca:f6:
88:22:9d:b9:e7:67:4d:9c:82:45:a2:9a:2c:cd:63:0d:0f:f0:
27:57:4f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:29 2024 by rpki-client on console-fra.rpki-client.org