Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/o-FhfH4bhKNs8GMcoLpLxgRCTmE.roa
File: o-FhfH4bhKNs8GMcoLpLxgRCTmE.roa (raw, json)
Hash identifier: bBIhGSrnas3MqA1N5A4Kt/gjFlV6sn1L+7R5zSJwiPE=
Subject key identifier: A3:E1:61:7C:7E:1B:84:A3:6C:F0:63:1C:A0:BA:4B:C6:04:42:4E:61
Certificate issuer: /CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Certificate serial: 018AA79C0709953C680115580B44545F9E71
Authority key identifier: 2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/o-FhfH4bhKNs8GMcoLpLxgRCTmE.roa
Signing time: Mon 18 Sep 2023 09:25:35 +0000
ROA not before: Mon 18 Sep 2023 09:25:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.107.197.0/24 maxlen: 24
185.107.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:9c:07:09:95:3c:68:01:15:58:0b:44:54:5f:9e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Validity
Not Before: Sep 18 09:25:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3e1617c7e1b84a36cf0631ca0ba4bc604424e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b7:38:d0:e6:ee:ca:5f:93:e7:f2:31:b6:eb:
dd:af:24:22:74:56:89:2f:fe:5b:6d:7c:73:e9:53:
36:91:2c:f8:92:51:28:38:7f:4c:e6:4f:76:72:1a:
25:a9:11:94:5d:dc:71:ab:d8:80:ba:3a:be:23:0a:
bf:e6:99:00:c8:20:df:6d:e8:dc:76:c6:62:74:b0:
40:58:a4:aa:38:17:40:c6:ff:1e:1c:a5:05:98:70:
f3:9f:0a:b8:93:3f:ba:85:41:64:09:5e:27:0c:c8:
0f:6f:9b:ef:93:9e:83:6b:ff:27:8a:43:7b:26:1d:
e0:19:61:44:1c:42:80:61:f2:6a:1e:52:05:3d:4b:
e8:9e:7a:c2:92:fe:d2:e4:1b:63:05:0d:56:db:a2:
b9:76:d2:ee:89:e1:c1:aa:d1:2e:ce:93:84:2a:d9:
8d:84:78:9b:68:6f:1b:9a:ab:2a:89:b7:22:75:c4:
8f:96:99:3a:7e:91:25:c7:03:08:53:76:75:6e:89:
8b:e0:92:c1:f7:bf:b1:d0:c7:0c:10:b3:cf:99:60:
d9:4b:35:c8:61:fd:fa:72:e8:6e:03:57:3b:9e:f6:
81:89:f7:d5:f5:f7:fb:a5:10:e5:e6:4b:fc:3e:8a:
25:ca:9c:1a:c6:95:ed:43:1c:df:ed:1c:fa:db:e3:
c6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E1:61:7C:7E:1B:84:A3:6C:F0:63:1C:A0:BA:4B:C6:04:42:4E:61
X509v3 Authority Key Identifier:
keyid:2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/o-FhfH4bhKNs8GMcoLpLxgRCTmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.196.0/23
Signature Algorithm: sha256WithRSAEncryption
21:de:e7:9b:62:87:41:75:74:d2:a6:81:f6:ca:d8:22:7d:d4:
12:f4:a0:64:54:94:3f:71:a1:cb:a8:a4:84:f8:64:e4:e8:cd:
64:60:c1:9e:b3:7d:7b:1d:53:be:49:79:5e:5b:be:b4:77:ca:
67:43:42:09:3d:de:9d:8f:87:3b:05:8d:c6:1d:3e:69:67:81:
42:ca:d4:99:d2:a4:f2:3f:5b:9d:a5:67:75:0d:c9:a7:9b:ea:
0b:3a:a8:4d:3e:bc:09:44:55:f1:c3:a2:77:bc:06:d8:05:23:
27:ae:94:c0:10:30:fc:9d:6b:ea:cb:da:e5:af:df:57:04:45:
ce:5a:57:01:2a:3f:e8:dc:d8:ba:94:de:a2:76:31:23:97:2f:
c4:49:c8:c4:58:1e:5f:85:e9:5f:3b:5b:d8:2f:f0:60:a7:f1:
78:6d:c5:1e:6e:50:ed:f9:f7:6d:4e:f2:cb:d4:7c:45:e2:50:
a4:e6:b2:4a:4a:9e:12:e3:4d:d1:c5:0f:45:dd:79:47:1c:e1:
c6:5f:2b:71:65:05:33:a5:0e:a0:ba:54:ae:4f:22:25:5d:16:
48:2c:92:15:5b:33:ea:b4:ca:51:cf:f0:24:72:24:f1:95:40:
b5:0f:76:f7:18:97:0f:0f:fd:7b:6b:cd:f2:5e:a1:50:57:29:
67:c4:b6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:19 2024 by rpki-client on console-ams.rpki-client.org