Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/FG-4uvL5UG1ENlyxE_i4GCOg1FA.roa
File: FG-4uvL5UG1ENlyxE_i4GCOg1FA.roa (raw, json)
Hash identifier: XjrPWAhZ+tnQSFo5T1K/8+qfIcJfBXspDA6YjX85eNg=
Subject key identifier: 14:6F:B8:BA:F2:F9:50:6D:44:36:5C:B1:13:F8:B8:18:23:A0:D4:50
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0185729EC3A81B7B0F3E79669988984A38E4
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/FG-4uvL5UG1ENlyxE_i4GCOg1FA.roa
Signing time: Mon 02 Jan 2023 13:14:45 +0000
ROA not before: Mon 02 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15924
IP address blocks: 185.174.21.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:c3:a8:1b:7b:0f:3e:79:66:99:88:98:4a:38:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 2 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=146fb8baf2f9506d44365cb113f8b81823a0d450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:91:1a:af:fb:52:d5:af:34:74:e5:ac:4f:d7:
03:40:9c:f6:32:56:a2:f1:0e:a5:da:f8:72:08:8b:
7f:2a:a8:af:9a:70:19:08:95:b9:18:cc:9b:fa:1f:
ea:18:9d:7c:a9:dc:5e:06:f9:d9:14:c5:86:ce:08:
2c:04:fa:f9:82:a9:f9:42:44:aa:55:71:1f:aa:0c:
6d:13:ab:23:68:39:13:68:c3:88:5e:8a:26:77:49:
37:3a:91:54:61:be:93:af:67:9a:3b:f9:a1:83:a0:
ea:76:10:25:81:bb:51:5b:af:9a:3d:02:91:5e:ce:
7e:27:71:b7:6e:8c:39:31:47:25:b8:90:b6:37:85:
a2:e4:b9:90:47:b0:6e:05:22:d6:c0:de:8e:90:04:
7e:98:2f:85:a8:f9:01:4e:f0:0c:e9:f6:43:6b:9d:
36:ef:c1:aa:09:63:a7:9c:80:76:63:58:ba:08:94:
f8:16:bf:af:0a:5a:89:b6:05:ed:51:6f:ce:71:21:
f1:9a:0d:78:e9:0a:a2:85:3e:a2:a4:90:0c:b7:11:
ca:f3:f4:fe:49:6e:46:1f:88:a4:af:fe:4f:5c:20:
c4:65:c4:5c:a8:df:fc:0e:70:4d:4f:cb:81:2b:b3:
9d:a5:c2:e9:97:0f:42:99:fd:5f:39:35:68:b2:79:
df:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6F:B8:BA:F2:F9:50:6D:44:36:5C:B1:13:F8:B8:18:23:A0:D4:50
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/FG-4uvL5UG1ENlyxE_i4GCOg1FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
12:60:65:2a:a5:8f:3f:3a:aa:84:0d:ca:46:05:ad:18:31:34:
27:ca:59:d3:5e:0e:fd:72:56:15:a3:8a:b0:39:83:b1:b6:f5:
71:ac:12:4a:de:99:11:ff:92:6a:15:2f:92:5b:9c:9a:dd:57:
be:53:33:e3:80:56:7e:c7:ae:94:b2:b9:e3:ec:4a:bb:d1:0f:
10:21:89:33:10:dd:99:a1:45:73:91:ef:ad:e0:70:c0:60:ff:
b6:da:6d:df:2e:e6:82:72:48:f7:fb:89:5a:f4:61:a7:c3:f3:
7a:1e:3a:09:77:21:a3:04:b1:37:d8:d6:81:e8:76:fb:3e:b9:
60:b4:14:c9:c7:11:d6:d0:ea:d1:bb:5b:be:57:d9:90:cf:24:
46:8e:6b:c5:0d:a5:af:07:57:7d:f9:b4:c7:fe:52:1e:8e:a7:
41:03:94:a1:dd:56:4e:08:6f:f8:16:60:e0:49:9e:21:6c:31:
26:30:af:d5:f3:cc:0e:a5:aa:d6:11:1c:8b:29:c1:30:bf:64:
b0:40:5b:21:92:72:22:df:53:bf:18:d0:3d:aa:ea:46:28:73:
af:2e:54:7d:ff:dd:26:08:5f:13:99:1c:25:1a:10:80:47:4c:
44:21:9d:1b:59:8a:cd:42:23:8b:4b:6c:63:c0:36:3e:11:83:
d8:b3:5d:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVynsOoG3sPPnlmmYiYSjjkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3
MjAyZDUwHhcNMjMwMTAyMTMxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDZmYjhiYWYyZjk1MDZkNDQzNjVjYjExM2Y4YjgxODIzYTBkNDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5Ear/tS1a80dOWsT9cDQJz2Mlai
8Q6l2vhyCIt/KqivmnAZCJW5GMyb+h/qGJ18qdxeBvnZFMWGzggsBPr5gqn5QkSq
VXEfqgxtE6sjaDkTaMOIXoomd0k3OpFUYb6Tr2eaO/mhg6DqdhAlgbtRW6+aPQKR
Xs5+J3G3bow5MUcluJC2N4Wi5LmQR7BuBSLWwN6OkAR+mC+FqPkBTvAM6fZDa502
78GqCWOnnIB2Y1i6CJT4Fr+vClqJtgXtUW/OcSHxmg146QqihT6ipJAMtxHK8/T+
SW5GH4ikr/5PXCDEZcRcqN/8DnBNT8uBK7OdpcLplw9Cmf1fOTVosnnfaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBRvuLry+VBtRDZcsRP4uBgjoNRQMB8GA1UdIwQY
MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct
YzUxNWYzNTRjYzVhLzEvRkctNHV2TDVVRzFFTmx5eEVfaTRHQ09nMUZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh
LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAua4VMA0G
CSqGSIb3DQEBCwUAA4IBAQASYGUqpY8/OqqEDcpGBa0YMTQnylnTXg79clYVo4qw
OYOxtvVxrBJK3pkR/5JqFS+SW5ya3Ve+UzPjgFZ+x66Usrnj7Eq70Q8QIYkzEN2Z
oUVzke+t4HDAYP+22m3fLuaCckj3+4la9GGnw/N6HjoJdyGjBLE32NaB6Hb7Prlg
tBTJxxHW0OrRu1u+V9mQzyRGjmvFDaWvB1d9+bTH/lIejqdBA5Sh3VZOCG/4FmDg
SZ4hbDEmMK/V88wOparWERyLKcEwv2SwQFshknIi31O/GNA9qupGKHOvLlR9/90m
CF8TmRwlGhCAR0xEIZ0bWYrNQiOLS2xjwDY+EYPYs12n
-----END CERTIFICATE-----
Generated at Wed Oct 25 20:07:27 2023 by rpki-client on console-fra.rpki-client.org