Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/FlbVln3_axxc8uGvzU8NA7fB4L8.roa
File: FlbVln3_axxc8uGvzU8NA7fB4L8.roa (raw, json)
Hash identifier: NWZD7yn2DBJnGqYA78F5CiHumipH5Ar3KIqPOrvMwPo=
Subject key identifier: 16:56:D5:96:7D:FF:6B:1C:5C:F2:E1:AF:CD:4F:0D:03:B7:C1:E0:BF
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018DF446F8597419002CC690F3E20DA32708
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/FlbVln3_axxc8uGvzU8NA7fB4L8.roa
Signing time: Thu 29 Feb 2024 09:51:48 +0000
ROA not before: Thu 29 Feb 2024 09:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 176.117.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 07:27:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f4:46:f8:59:74:19:00:2c:c6:90:f3:e2:0d:a3:27:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Feb 29 09:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1656d5967dff6b1c5cf2e1afcd4f0d03b7c1e0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:28:c3:de:55:87:1f:4b:67:0f:88:52:be:64:
db:b2:cc:d2:61:a7:3b:0b:cf:ed:89:66:20:8b:a5:
f0:62:0a:5d:08:12:19:4a:a9:c1:44:bd:15:06:17:
35:bc:31:04:6f:4a:23:d9:0f:fe:f5:ea:a3:51:18:
d5:cc:5d:51:39:ef:72:5a:e9:6d:fa:12:f5:82:8d:
36:94:38:01:34:3a:0b:ce:9a:86:fe:dc:fd:1f:13:
f7:d1:c3:7f:f8:0b:96:1d:15:c4:4d:17:f0:ae:bc:
18:35:c9:d5:84:4b:41:81:21:aa:6d:c1:89:f0:56:
1e:00:ac:cc:f7:79:7b:60:a7:56:57:d0:18:a5:6d:
ae:a9:c4:84:d8:ed:66:eb:db:f4:ae:24:6d:4d:88:
52:ed:b8:88:f0:ee:27:94:a1:39:b6:df:64:14:d3:
27:fa:8d:0a:41:84:94:e2:1c:09:14:04:14:51:f7:
3e:ad:67:eb:58:3f:83:c4:b0:70:35:b1:2d:b3:32:
d1:53:1c:eb:e0:98:e5:26:b6:6f:ac:0a:86:e2:25:
e8:8e:b9:4a:08:12:e4:a5:3b:76:34:42:9d:e6:7a:
86:2a:54:58:ea:08:6d:82:87:2f:02:99:47:3a:2d:
f2:ac:85:e1:05:0e:9e:85:09:f9:5a:d2:4e:d8:1b:
07:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:56:D5:96:7D:FF:6B:1C:5C:F2:E1:AF:CD:4F:0D:03:B7:C1:E0:BF
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/FlbVln3_axxc8uGvzU8NA7fB4L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.88.0/22
Signature Algorithm: sha256WithRSAEncryption
08:75:10:08:ba:b4:f0:32:3f:d1:cb:1c:63:c5:f5:ff:e4:ce:
7e:a8:0c:18:a3:04:81:8f:94:56:6b:e7:f3:8b:6a:f6:6a:f8:
3a:35:53:5a:01:7c:7e:4d:53:72:18:6d:58:f3:a9:ff:9c:43:
f9:62:71:f2:76:0d:5c:62:55:39:32:f4:98:70:a9:63:1e:a7:
2b:6a:45:92:b6:d2:79:9a:b0:2d:a1:80:f1:b0:7d:01:e1:b1:
04:0b:9a:1f:84:f4:97:01:3a:15:b0:80:98:32:70:19:2f:37:
4a:8c:b0:c1:6b:c2:dc:c8:0a:69:a9:24:cf:92:d5:10:74:75:
14:6c:82:8a:2d:d9:e9:4a:a3:2b:ba:e6:bc:f9:42:12:1d:0d:
a9:f2:ae:2d:51:d7:53:c1:45:13:92:7f:e0:99:de:15:da:23:
2f:25:c6:5f:13:fa:e9:95:89:4b:07:a7:95:fe:b2:04:eb:4e:
08:92:f6:8b:b0:51:43:a0:85:fc:7e:61:c8:02:7b:9a:00:ea:
1a:d4:b3:1f:90:89:3d:c3:39:93:05:b3:92:06:1a:d1:a8:ae:
da:eb:83:49:c2:b0:27:64:15:77:35:88:35:d6:3b:50:77:a0:
6d:22:fe:08:75:75:96:28:02:4d:c7:ab:2a:a3:3a:fe:4a:15:
c5:77:ad:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 12:05:29 2024 by rpki-client on console-fra.rpki-client.org