Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cbc746-416b-4da9-9225-892ec6ff4771/1/FBNqizuBIJd4noih8_niE9w2JjI.roa
File: FBNqizuBIJd4noih8_niE9w2JjI.roa (raw, json)
Hash identifier: T2tYvhTcp/UquR3rZd1J+USPQxCZUzr9dxUr672XRZQ=
Subject key identifier: 14:13:6A:8B:3B:81:20:97:78:9E:88:A1:F3:F9:E2:13:DC:36:26:32
Certificate issuer: /CN=537f9bf84b69a09042432dae8377ee0ac8ff1c61
Certificate serial: 0188570026E3CDA4CF9BFFC9D5855F5F2783
Authority key identifier: 53:7F:9B:F8:4B:69:A0:90:42:43:2D:AE:83:77:EE:0A:C8:FF:1C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3-b-EtpoJBCQy2ug3fuCsj_HGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cbc746-416b-4da9-9225-892ec6ff4771/1/FBNqizuBIJd4noih8_niE9w2JjI.roa
Signing time: Fri 26 May 2023 07:40:07 +0000
ROA not before: Fri 26 May 2023 07:40:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.1.226.0/23 maxlen: 23
2001:67c:29f0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:00:26:e3:cd:a4:cf:9b:ff:c9:d5:85:5f:5f:27:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537f9bf84b69a09042432dae8377ee0ac8ff1c61
Validity
Not Before: May 26 07:40:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14136a8b3b812097789e88a1f3f9e213dc362632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:04:c3:f7:db:64:cf:4b:f5:bc:0c:f5:22:8c:
34:94:e6:df:f8:17:9e:2b:6b:9f:a1:27:e0:6d:f7:
eb:13:b7:fe:6e:57:74:26:b0:49:0a:aa:cb:f6:35:
4b:00:b1:cd:e6:be:f8:dc:c7:09:66:f3:6e:fb:5d:
28:6a:7d:9a:8c:c8:ec:84:85:27:03:3c:e9:c7:01:
08:e5:97:c1:83:e4:10:94:36:94:0a:2f:48:69:32:
1d:98:ef:94:aa:01:ec:a4:79:58:53:d0:1f:a8:df:
f6:66:09:9f:81:a5:78:4f:dc:20:96:cd:af:f7:ca:
cb:f0:d6:4e:2e:3c:53:3c:8f:cc:29:0d:da:4d:cf:
b4:d7:ea:61:fc:11:8f:7d:cd:b6:18:08:97:4f:e4:
1f:fe:ba:bc:1f:49:2d:9c:d5:f5:fa:33:6b:69:dc:
20:f7:fc:00:6c:6c:16:19:3d:a4:53:6b:d5:1e:20:
25:c9:23:05:75:f0:ce:93:2a:80:e4:83:61:a2:2b:
8b:98:a3:13:af:74:dc:6d:ec:62:00:5f:fa:96:e7:
de:42:5e:5b:1c:40:b3:09:f6:c9:49:95:28:da:e3:
34:77:88:57:51:f3:30:70:34:67:54:2a:13:03:95:
64:86:d4:56:65:27:7c:51:cd:18:35:53:3c:04:02:
27:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:13:6A:8B:3B:81:20:97:78:9E:88:A1:F3:F9:E2:13:DC:36:26:32
X509v3 Authority Key Identifier:
keyid:53:7F:9B:F8:4B:69:A0:90:42:43:2D:AE:83:77:EE:0A:C8:FF:1C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3-b-EtpoJBCQy2ug3fuCsj_HGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cbc746-416b-4da9-9225-892ec6ff4771/1/FBNqizuBIJd4noih8_niE9w2JjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cbc746-416b-4da9-9225-892ec6ff4771/1/U3-b-EtpoJBCQy2ug3fuCsj_HGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.226.0/23
IPv6:
2001:67c:29f0::/48
Signature Algorithm: sha256WithRSAEncryption
6b:24:1f:4d:14:97:99:8f:66:73:19:95:f2:8e:ba:ac:5c:08:
e5:1b:43:77:a0:e5:a7:b5:a1:a3:58:98:de:01:1e:49:11:ad:
50:ed:cc:a5:b2:4a:15:c7:57:9d:c9:7d:7a:7f:5a:34:db:e4:
f7:38:34:d8:d4:ff:06:2f:79:3d:4d:28:2d:cd:d7:ce:76:d7:
c2:21:c0:b8:8f:50:eb:a7:c5:ed:d9:ea:ff:e9:01:6b:60:70:
aa:0a:7d:d6:19:62:ba:e7:34:fc:e7:08:f2:43:ad:e4:5e:7b:
e9:be:bd:fd:86:f2:3d:bf:79:d3:07:a4:eb:91:22:cb:b6:85:
24:e3:c6:1e:74:f9:1b:cb:47:2f:6b:71:47:73:ed:da:fd:0f:
2f:69:b6:c2:86:76:62:b5:de:2a:c5:a5:4c:b6:7e:10:4e:63:
df:fb:51:99:eb:5c:4d:77:e2:81:42:a9:07:e5:47:e0:8b:7e:
25:ef:b3:1e:b4:f3:e9:33:4d:68:04:f0:fc:10:18:dd:62:ee:
6f:39:3a:9e:c7:0f:f8:a7:fe:33:9f:33:dc:fc:c4:ec:cb:42:
17:0a:52:4d:3a:54:98:b6:ed:44:64:b2:0c:33:50:17:ca:23:
18:4a:c9:f4:d0:ce:f7:67:2e:ec:1c:0b:b8:3e:2a:21:06:3e:
00:04:c9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:22 2024 by rpki-client on console-fra.rpki-client.org