Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/FvqqGQAZjQ87PwJ71q0IqIeZXDI.roa
File: FvqqGQAZjQ87PwJ71q0IqIeZXDI.roa (raw, json)
Hash identifier: xLRFbrFcfiQ/USy4jCUzsw0elBYrDhc9i0VMn4hfF9w=
Subject key identifier: 16:FA:AA:19:00:19:8D:0F:3B:3F:02:7B:D6:AD:08:A8:87:99:5C:32
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018C5D128F5195106BB6E6604CBA70869FE3
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/FvqqGQAZjQ87PwJ71q0IqIeZXDI.roa
Signing time: Tue 12 Dec 2023 08:09:06 +0000
ROA not before: Tue 12 Dec 2023 08:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 213.176.2.0/23 maxlen: 24
213.176.6.0/24 maxlen: 24
62.60.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 11:09:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5d:12:8f:51:95:10:6b:b6:e6:60:4c:ba:70:86:9f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Dec 12 08:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16faaa1900198d0f3b3f027bd6ad08a887995c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:78:8b:fd:05:df:39:d5:b3:87:83:84:95:7f:
d0:5a:8e:14:12:5a:8d:27:97:57:c2:dc:37:d4:66:
20:ef:63:1c:19:ed:40:dc:7f:73:06:c0:a9:89:31:
0b:6c:79:0e:2c:75:fa:c3:66:46:d7:2e:5a:3d:43:
7b:54:78:51:e2:48:b6:a7:41:cd:4b:3d:e0:0c:38:
5d:2e:0b:05:65:55:1f:6f:e6:75:ae:68:55:31:38:
4f:d0:62:b0:6f:9f:90:01:5b:01:92:b0:5c:bf:51:
4a:51:b9:66:d5:46:98:e0:be:53:d5:e3:93:5f:68:
79:20:e9:51:58:1f:ea:ed:a3:d2:3b:25:bc:64:88:
79:31:0f:6b:53:77:99:a0:bb:fa:6c:12:c1:30:93:
ce:33:cc:79:fc:f7:e2:88:0f:de:e1:05:03:09:ef:
48:d6:e5:ea:14:72:4d:58:6a:31:54:2c:d5:84:93:
3b:db:bf:6d:a8:5b:47:c0:1d:dc:ec:81:c9:b9:1c:
4e:8c:34:f8:0b:72:b5:ef:e6:27:f4:6d:c0:05:d5:
de:11:f4:2d:ed:ae:26:b5:4b:d9:18:d8:63:b3:2a:
b0:cb:16:55:87:60:ba:13:7b:46:09:7f:26:96:f4:
80:ed:be:89:6b:2e:47:07:cf:2c:3d:18:9f:b6:78:
c3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FA:AA:19:00:19:8D:0F:3B:3F:02:7B:D6:AD:08:A8:87:99:5C:32
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/FvqqGQAZjQ87PwJ71q0IqIeZXDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.196.0/22
213.176.2.0/23
213.176.6.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b6:9a:2e:43:33:73:7c:eb:20:5c:33:67:1b:a9:23:35:7c:
c4:8d:99:57:3a:eb:04:ee:09:4e:d4:5e:c9:94:1b:8d:74:06:
2d:52:bc:09:ab:4e:d7:dc:24:6b:df:42:93:0a:17:86:c3:58:
b3:17:fa:fc:ce:4e:15:22:b6:57:4d:9b:68:01:ed:91:63:2f:
1d:43:cb:5d:5b:f7:ac:63:4d:32:8f:7e:3d:63:af:3c:ae:01:
eb:8f:98:d5:58:5b:ab:2f:3c:9f:c6:ea:dc:d0:6c:4e:01:d4:
83:bb:c9:13:04:79:68:26:c1:19:89:02:1c:fa:ee:9d:b4:63:
4e:bc:f1:dd:f5:12:e6:38:cc:3d:b4:29:f5:b8:36:7d:38:06:
c4:4b:f0:75:67:50:ba:f7:a1:a4:e1:e5:76:38:4a:ee:1b:55:
0b:90:10:bd:a8:93:75:a5:80:3b:ad:06:38:f9:fc:e7:c3:fb:
8b:c3:d4:0c:f8:ab:9e:04:23:3a:b7:d8:52:2e:a2:81:1d:b4:
f7:3d:65:45:31:86:7a:ac:17:55:c7:ea:0f:56:e8:44:0b:58:
0a:31:b0:95:fc:b8:0f:9a:19:ea:e6:6a:0c:6d:af:3d:d9:6a:
43:bc:f9:fa:ea:0b:b6:e8:d7:a6:e0:b5:3b:52:9d:35:9a:5c:
47:dd:53:a1
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYxdEo9RlRBrtuZgTLpwhp/jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMxMjEyMDgwOTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmZhYWExOTAwMTk4ZDBmM2IzZjAyN2JkNmFkMDhhODg3OTk1YzMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgniL/QXfOdWzh4OElX/QWo4UElqN
J5dXwtw31GYg72McGe1A3H9zBsCpiTELbHkOLHX6w2ZG1y5aPUN7VHhR4ki2p0HN
Sz3gDDhdLgsFZVUfb+Z1rmhVMThP0GKwb5+QAVsBkrBcv1FKUblm1UaY4L5T1eOT
X2h5IOlRWB/q7aPSOyW8ZIh5MQ9rU3eZoLv6bBLBMJPOM8x5/PfiiA/e4QUDCe9I
1uXqFHJNWGoxVCzVhJM7279tqFtHwB3c7IHJuRxOjDT4C3K17+Yn9G3ABdXeEfQt
7a4mtUvZGNhjsyqwyxZVh2C6E3tGCX8mlvSA7b6Jay5HB88sPRiftnjDowIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFBb6qhkAGY0POz8Ce9atCKiHmVwyMB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvRnZxcUdRQVpqUTg3UHdKNzFxMElxSWVaWERJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCPjzEAwQB
1bACAwQA1bAGMA0GCSqGSIb3DQEBCwUAA4IBAQABtpouQzNzfOsgXDNnG6kjNXzE
jZlXOusE7glO1F7JlBuNdAYtUrwJq07X3CRr30KTCheGw1izF/r8zk4VIrZXTZto
Ae2RYy8dQ8tdW/esY00yj349Y688rgHrj5jVWFurLzyfxurc0GxOAdSDu8kTBHlo
JsEZiQIc+u6dtGNOvPHd9RLmOMw9tCn1uDZ9OAbES/B1Z1C696Gk4eV2OEruG1UL
kBC9qJN1pYA7rQY4+fznw/uLw9QM+KueBCM6t9hSLqKBHbT3PWVFMYZ6rBdVx+oP
VuhEC1gKMbCV/LgPmhnq5moMba892WpDvPn66gu26Nem4LU7Up01mlxH3VOh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org