Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b08eef-a34a-4572-a9f8-690a88586870/1/fdnw4v-Ynp23ce-w6zK0_5IkCPE.roa
File: fdnw4v-Ynp23ce-w6zK0_5IkCPE.roa (raw, json)
Hash identifier: sy+cioiIC6gWUFHS0OZCnsuEQPcE7Tg26cOkWI8yQWo=
Subject key identifier: 7D:D9:F0:E2:FF:98:9E:9D:B7:71:EF:B0:EB:32:B4:FF:92:24:08:F1
Certificate issuer: /CN=d9601efb3f0cfdaa2295187d2b0456494110e157
Certificate serial: 01856D9D1F81EDC417A69D425F31EF580A7B
Authority key identifier: D9:60:1E:FB:3F:0C:FD:AA:22:95:18:7D:2B:04:56:49:41:10:E1:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2WAe-z8M_aoilRh9KwRWSUEQ4Vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b08eef-a34a-4572-a9f8-690a88586870/1/fdnw4v-Ynp23ce-w6zK0_5IkCPE.roa
Signing time: Sun 01 Jan 2023 13:54:51 +0000
ROA not before: Sun 01 Jan 2023 13:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50304
IP address blocks: 185.12.72.0/22 maxlen: 24
2a02:e340::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:1f:81:ed:c4:17:a6:9d:42:5f:31:ef:58:0a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9601efb3f0cfdaa2295187d2b0456494110e157
Validity
Not Before: Jan 1 13:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dd9f0e2ff989e9db771efb0eb32b4ff922408f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:75:cc:ef:b3:d6:f2:30:cd:fb:4b:9b:c5:3b:
01:3e:8f:22:b8:f7:a4:68:92:76:fe:10:cf:5b:89:
a1:06:03:6b:a7:20:39:45:c6:85:72:a6:fd:49:42:
3e:e4:6f:a9:1c:f8:11:23:18:4b:8d:af:73:97:bd:
4f:2f:7e:1a:a4:1f:64:8a:33:47:55:6b:f7:48:67:
b4:0c:a5:68:3c:19:dd:e5:67:9f:75:f1:be:ae:5b:
34:1a:ae:f2:e0:3c:56:0c:d4:3f:d0:ef:a1:d1:d9:
bc:06:b1:9a:e8:e4:e7:fe:a4:01:cd:29:49:e9:a2:
a3:b5:03:74:e2:b1:6e:f2:3a:8f:20:5a:9d:e5:4d:
f7:7b:14:60:27:eb:54:37:ec:c0:5f:67:2e:a5:a0:
94:b7:4a:45:d1:88:3f:ec:2d:6b:1e:17:1f:76:3f:
d4:ef:54:56:88:ff:24:f3:7e:70:5d:6c:7f:6a:ee:
98:35:5d:60:43:26:52:cf:67:0f:c3:85:fe:cc:b6:
ad:a3:dd:fc:3c:12:a1:32:ac:0e:06:51:49:30:f2:
13:c3:e0:2d:f3:85:27:f2:d6:01:33:83:22:29:5f:
e3:24:1d:62:33:5d:b8:6d:ea:88:1d:3f:21:20:b7:
2d:60:ba:03:e2:07:b7:1f:3b:0b:e8:9b:23:c5:65:
fc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D9:F0:E2:FF:98:9E:9D:B7:71:EF:B0:EB:32:B4:FF:92:24:08:F1
X509v3 Authority Key Identifier:
keyid:D9:60:1E:FB:3F:0C:FD:AA:22:95:18:7D:2B:04:56:49:41:10:E1:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2WAe-z8M_aoilRh9KwRWSUEQ4Vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b08eef-a34a-4572-a9f8-690a88586870/1/fdnw4v-Ynp23ce-w6zK0_5IkCPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b08eef-a34a-4572-a9f8-690a88586870/1/2WAe-z8M_aoilRh9KwRWSUEQ4Vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.72.0/22
IPv6:
2a02:e340::/29
Signature Algorithm: sha256WithRSAEncryption
88:c0:dd:ff:6e:05:75:54:58:53:58:8e:f3:f3:67:a0:9b:37:
51:b5:ee:8a:7d:ce:9a:2a:ad:11:0d:0e:7a:8b:1a:5b:ff:5f:
7c:39:50:c0:9d:99:b2:02:72:4a:25:05:e8:f0:42:bb:3b:f1:
30:88:56:84:b0:fd:7f:9f:ac:ee:77:9d:e8:cd:29:c8:5b:39:
57:03:d7:10:70:80:bf:14:4e:fb:e7:76:88:5e:50:ef:2f:30:
91:00:11:fc:03:e7:2b:1c:63:6f:82:59:86:1b:ff:91:c8:c9:
cc:2c:78:96:28:10:77:86:f3:40:a2:62:09:14:f0:16:49:78:
b8:80:1e:f7:f8:90:ab:1c:09:1a:f3:27:8d:cf:e6:a4:6a:2a:
6a:6b:3e:e0:0e:57:8c:9b:d7:50:e1:35:a7:4e:0b:37:aa:02:
5c:c0:25:28:40:e8:7b:d6:2f:22:89:42:24:a9:1a:09:06:1b:
52:74:c5:78:94:ed:c5:10:84:d3:1e:7f:2e:2d:45:5b:74:e4:
20:63:f5:4a:68:b8:18:d6:4a:60:d6:aa:d9:20:b5:1a:f9:6b:
de:b2:55:f8:58:7b:20:8e:7e:78:5b:3a:06:3d:05:90:e7:46:
a8:03:80:21:c3:da:84:34:ba:25:60:16:59:9a:ac:c1:84:d6:
f8:bf:1b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:07 2024 by rpki-client on console-ams.rpki-client.org