Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/FLhY2OCIO06dTfDj7ti0Tv0XPIQ.roa
File: FLhY2OCIO06dTfDj7ti0Tv0XPIQ.roa (raw, json)
Hash identifier: 8Alv1T8mv9JWJTxmeiqoi5144+ISTG6n1l55Hr7dZjs=
Subject key identifier: 14:B8:58:D8:E0:88:3B:4E:9D:4D:F0:E3:EE:D8:B4:4E:FD:17:3C:84
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 01856E2F7EED335B6313B6BB7D64A40D5538
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/FLhY2OCIO06dTfDj7ti0Tv0XPIQ.roa
Signing time: Sun 01 Jan 2023 16:34:44 +0000
ROA not before: Sun 01 Jan 2023 16:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16262
IP address blocks: 94.159.109.0/24 maxlen: 24
94.159.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:7e:ed:33:5b:63:13:b6:bb:7d:64:a4:0d:55:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Jan 1 16:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14b858d8e0883b4e9d4df0e3eed8b44efd173c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:7d:e7:c7:af:72:f4:d0:df:53:74:e5:d7:
6e:85:d2:b6:9e:2b:3e:a4:83:aa:06:6a:b8:f8:27:
8b:8c:f7:4d:b2:a3:2a:89:39:67:d0:9e:16:b6:14:
6f:27:b5:8d:37:1e:d9:ea:5f:cb:60:89:5f:e9:1b:
aa:7a:f4:75:98:38:c7:69:6e:c7:f7:d0:87:8f:dd:
3e:41:07:ff:d5:ae:72:d8:a0:00:de:e9:98:f7:03:
c0:b9:88:fe:20:a9:a9:2a:35:a1:97:ef:c8:4e:50:
8a:b1:81:21:e7:08:db:d0:ef:02:ac:6c:04:ae:35:
92:ba:01:9f:0d:e1:5e:4c:93:4e:77:f3:8e:85:d5:
ab:16:bd:fc:52:20:2d:61:93:e5:15:91:14:29:c3:
dd:f9:89:5e:80:6d:71:50:53:a0:6e:3f:85:d0:25:
26:0d:7e:36:17:5a:12:78:0b:d7:82:e8:b8:29:fa:
50:70:41:24:85:65:22:93:ac:6e:ec:d1:b0:f7:19:
a8:9b:da:8f:67:9b:9d:69:8f:fa:32:17:3e:7e:ed:
c0:15:e2:6d:f3:06:7b:08:37:b3:5a:82:e3:e6:f2:
88:d6:da:74:9c:fe:55:4a:99:5c:95:27:24:73:9e:
c3:1f:0c:b0:f2:83:35:ff:3d:fd:d4:6a:4c:59:6f:
40:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B8:58:D8:E0:88:3B:4E:9D:4D:F0:E3:EE:D8:B4:4E:FD:17:3C:84
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/FLhY2OCIO06dTfDj7ti0Tv0XPIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.159.109.0-94.159.110.255
Signature Algorithm: sha256WithRSAEncryption
8b:4d:ae:e3:03:8b:9b:4c:55:29:be:11:08:30:00:08:1d:41:
f3:85:b7:94:de:05:ca:b2:ec:ef:73:b7:ad:52:56:5e:d2:5d:
a8:65:11:70:d4:f6:f4:34:c6:66:bb:3a:40:52:07:0b:08:01:
27:33:9e:89:27:fb:cc:a6:0a:b4:62:ce:4e:f6:26:c4:8c:ef:
ca:8c:d4:be:55:d1:0f:07:e1:99:3b:1f:ed:4f:54:f1:4f:34:
8e:26:82:68:2a:82:ee:fa:94:30:da:de:8e:8a:74:b6:90:39:
a8:c1:59:5f:4e:5e:c3:ea:66:7e:c3:b2:46:e2:d9:bc:4d:61:
06:3d:27:ea:00:20:44:9d:52:37:d7:83:33:e5:24:7c:eb:db:
d4:03:8a:b2:76:b5:ef:0f:ac:73:aa:b9:3d:88:be:60:38:6a:
9f:f1:aa:79:75:c3:b4:21:2f:d3:b9:98:3d:6b:2f:37:21:5c:
c7:0b:3a:13:79:ab:62:ca:aa:d0:75:16:b9:38:f7:de:5c:f4:
32:c8:83:65:28:a9:0a:18:9d:21:e4:32:40:30:f8:a7:22:33:
70:57:e4:dc:0d:4a:ca:6e:c8:dc:9d:7b:a5:93:7d:b5:13:31:
8d:1c:89:bc:c1:4c:d8:00:ce:e9:fc:4d:77:b1:e0:73:d1:34:
ab:af:d0:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org