Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/FrDP01TENItJvGBKtInVuIShK3g.roa
File: FrDP01TENItJvGBKtInVuIShK3g.roa (raw, json)
Hash identifier: PzYIwOnLTRgiPzuJ/Er+/wzoeZ6olO86YLtzYnPQD/8=
Subject key identifier: 16:B0:CF:D3:54:C4:34:8B:49:BC:60:4A:B4:89:D5:B8:84:A1:2B:78
Certificate issuer: /CN=179fbe82afcb4e54c7d497123a5c837114c57162
Certificate serial: 01856F39406A0D90553BF38A1CCC8321D8D7
Authority key identifier: 17:9F:BE:82:AF:CB:4E:54:C7:D4:97:12:3A:5C:83:71:14:C5:71:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5--gq_LTlTH1JcSOlyDcRTFcWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/FrDP01TENItJvGBKtInVuIShK3g.roa
Signing time: Sun 01 Jan 2023 21:25:01 +0000
ROA not before: Sun 01 Jan 2023 21:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202146
IP address blocks: 185.52.64.0/22 maxlen: 24
2a04:c500::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:40:6a:0d:90:55:3b:f3:8a:1c:cc:83:21:d8:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179fbe82afcb4e54c7d497123a5c837114c57162
Validity
Not Before: Jan 1 21:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16b0cfd354c4348b49bc604ab489d5b884a12b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ad:ec:47:e4:37:07:2e:54:d4:90:3b:15:39:
96:e3:cc:bd:3a:82:24:37:60:8a:0d:84:5c:27:f9:
75:b2:3c:3b:f6:43:c4:31:be:4a:b2:63:e7:95:c5:
f7:fb:0a:5b:5e:5f:22:53:10:2c:bc:25:54:21:df:
7b:cb:30:52:02:21:bb:26:d4:2a:25:5c:1a:8f:e6:
20:cd:45:c7:38:98:9a:e9:98:13:cc:35:81:20:1d:
bf:ef:c2:03:b6:37:e6:db:ce:8a:a9:e5:4a:ff:0f:
74:22:e0:b8:c0:29:46:20:66:a1:cb:ac:6c:b6:53:
05:db:ac:ec:c7:84:77:b7:16:c3:a8:f3:df:c8:f4:
d5:c9:f7:08:3f:5f:4c:6f:7e:4f:ab:83:ca:b1:96:
62:6c:03:db:c9:1c:86:b6:30:1e:06:29:b5:d3:b7:
b4:b5:c6:68:b6:77:58:fb:45:08:de:b0:ca:56:ec:
03:16:8d:91:ad:e4:7d:09:03:5b:71:38:39:29:e4:
3d:b0:89:6b:50:67:44:3b:22:56:1c:59:0d:8f:08:
a3:97:7e:f1:40:df:51:67:5d:43:87:ae:73:bd:4c:
53:fc:ff:83:6b:ea:45:f9:71:86:82:ee:46:5a:46:
51:41:fc:2d:1f:82:ea:af:ee:78:61:4e:30:ab:ee:
0a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B0:CF:D3:54:C4:34:8B:49:BC:60:4A:B4:89:D5:B8:84:A1:2B:78
X509v3 Authority Key Identifier:
keyid:17:9F:BE:82:AF:CB:4E:54:C7:D4:97:12:3A:5C:83:71:14:C5:71:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5--gq_LTlTH1JcSOlyDcRTFcWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/FrDP01TENItJvGBKtInVuIShK3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ccc1cb-0721-4542-9d65-7e610bab8178/1/F5--gq_LTlTH1JcSOlyDcRTFcWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.64.0/22
IPv6:
2a04:c500::/29
Signature Algorithm: sha256WithRSAEncryption
76:06:5e:92:c0:53:cd:12:89:1a:ec:c4:b2:1a:77:db:84:20:
97:a7:c3:3e:5c:10:86:19:34:a0:c3:d6:20:5f:80:fa:4c:e9:
5e:9d:38:8d:f5:b8:41:5d:d1:82:fe:09:b2:a3:96:33:93:d5:
eb:42:bd:6a:8e:26:b9:11:a8:d9:38:36:9c:ac:62:23:62:f1:
31:96:2c:54:7c:5e:1f:26:fb:ba:e9:d8:9d:62:20:69:7c:8b:
c8:00:85:ce:90:8f:47:8d:c6:00:96:2f:70:cb:75:b6:df:21:
97:3b:22:1a:25:65:59:5e:dd:7f:f0:f0:94:a7:87:0f:76:e7:
0f:5f:56:d7:84:62:eb:9f:2a:1b:a2:42:00:19:d3:f9:f4:7f:
78:09:a6:7b:3f:5f:3b:a6:92:f1:3d:22:1f:cb:cc:62:48:e8:
23:66:e6:29:a9:15:7a:30:4f:87:9f:be:13:f9:28:b1:8c:d5:
88:96:06:52:ab:fe:70:64:9f:af:42:0e:fe:d0:c7:87:b1:f1:
d6:4a:26:bd:17:85:12:d8:24:7f:a8:54:ad:27:cc:31:da:7a:
6f:5e:16:9c:40:6b:ef:aa:c5:cf:d6:71:e5:94:a7:fd:39:c7:
a5:8f:6b:ed:15:ea:54:30:70:1b:12:a4:7a:81:b4:af:47:0d:
40:aa:46:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:30 2024 by rpki-client on console-ams.rpki-client.org