Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/FDmtRkfSTrDxaZ4a1qmOTwmBsq0.roa
File: FDmtRkfSTrDxaZ4a1qmOTwmBsq0.roa (raw, json)
Hash identifier: YS+BDULlAmF+fxBITTpOjdV+vwyHLZ6F42/ywR3CNy4=
Subject key identifier: 14:39:AD:46:47:D2:4E:B0:F1:69:9E:1A:D6:A9:8E:4F:09:81:B2:AD
Certificate issuer: /CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Certificate serial: 0185725585E4E70DE80AFAAB47C3624BF09D
Authority key identifier: A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/FDmtRkfSTrDxaZ4a1qmOTwmBsq0.roa
Signing time: Mon 02 Jan 2023 11:54:45 +0000
ROA not before: Mon 02 Jan 2023 11:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31388
IP address blocks: 176.105.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:85:e4:e7:0d:e8:0a:fa:ab:47:c3:62:4b:f0:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a016588bd1ccb2dd221c6f87838567475d7ef29b
Validity
Not Before: Jan 2 11:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1439ad4647d24eb0f1699e1ad6a98e4f0981b2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:60:04:b1:f6:e4:a7:91:c8:b3:91:8d:03:e5:
56:7b:a2:15:b1:57:ec:c3:53:c9:57:ed:60:9e:82:
5b:58:91:37:b5:c5:85:5a:41:0d:40:69:cd:f9:6d:
d8:20:15:71:8c:97:ce:73:6c:15:61:33:f9:34:ec:
ab:e3:1f:64:99:ea:be:6e:cd:9a:aa:36:7b:74:8a:
22:84:07:40:af:e1:d1:c8:a6:3b:29:e8:88:13:ac:
38:b4:1a:56:0d:7e:49:9c:9b:7a:7a:92:2f:a0:79:
9b:11:f0:46:1f:be:8e:8a:a7:98:bc:d9:e6:e3:f5:
53:3a:fc:32:95:c3:b4:02:4d:83:fb:30:b2:de:84:
6b:4d:7f:90:25:12:30:56:91:11:1d:3c:4f:e7:07:
ad:8c:9b:57:11:d8:65:62:7f:7d:f5:dd:0d:cb:70:
48:ec:40:18:28:8e:f3:19:0a:d3:e8:db:65:a0:d7:
af:ae:41:30:ed:7e:df:ec:7d:38:f6:3e:69:72:a3:
8e:4f:20:99:34:5b:5f:fc:34:b0:c7:80:8d:03:b0:
c6:2a:72:c4:5c:bb:91:81:b2:96:d6:b6:d5:1f:01:
be:b6:81:1f:60:79:99:41:37:a6:3a:cc:8a:c8:c5:
f3:8a:16:7a:0a:ea:42:58:89:c5:1d:27:ef:4f:9c:
60:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:39:AD:46:47:D2:4E:B0:F1:69:9E:1A:D6:A9:8E:4F:09:81:B2:AD
X509v3 Authority Key Identifier:
keyid:A0:16:58:8B:D1:CC:B2:DD:22:1C:6F:87:83:85:67:47:5D:7E:F2:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBZYi9HMst0iHG-Hg4VnR11-8ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/FDmtRkfSTrDxaZ4a1qmOTwmBsq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4ec569-8caf-4198-bae1-773120ff7c0f/1/oBZYi9HMst0iHG-Hg4VnR11-8ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e8:dd:31:93:bf:93:9c:96:05:02:41:61:23:7e:7b:f7:34:
b1:da:6a:5e:2e:7b:ea:f4:68:6a:ca:05:f2:a2:5c:3a:e2:65:
b7:e2:c1:81:96:cc:00:d5:1f:0b:ee:05:cd:36:7b:45:5f:a8:
d6:07:b9:c9:84:15:7c:45:14:ca:77:3e:fd:71:79:34:84:ea:
c5:75:ff:e1:09:0c:8d:0a:60:42:43:96:02:41:07:b1:dd:31:
d0:cf:52:d2:90:15:4c:0a:4f:b3:71:ee:7b:fe:b8:1e:ae:a3:
b0:50:9c:c0:02:4f:31:d5:cc:8f:d0:ae:d8:f7:37:ae:8d:e8:
30:78:df:d9:9d:b1:88:4e:a2:6e:f7:f6:ac:74:aa:a0:9f:d0:
d8:cf:62:a2:6d:fb:3b:ca:c4:1b:ca:d6:b4:65:00:cd:26:3d:
2a:00:aa:39:13:85:1e:f5:1c:56:1c:d0:3a:89:a6:59:e3:8f:
d0:79:d0:94:b8:28:9e:b1:18:54:f2:0f:fc:44:15:09:1b:55:
f7:d4:3f:3c:01:dc:cd:00:82:b7:a4:27:db:16:85:f0:2c:36:
15:d5:d9:72:ee:1c:a4:66:e9:96:47:e1:22:72:9f:7a:ca:5c:
be:4e:76:78:a3:dd:25:a0:ba:b0:54:db:b4:2f:93:d6:cd:92:
a9:ee:05:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:06 2024 by rpki-client on console-fra.rpki-client.org