Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/fuQU65lfXKVqnEMo84yFQO9DSnM.roa
File: fuQU65lfXKVqnEMo84yFQO9DSnM.roa (raw, json)
Hash identifier: JQuSLXTwWW8BuKGrBeCmYnM9/APS3AgLFm4z1c3F88M=
Subject key identifier: 7E:E4:14:EB:99:5F:5C:A5:6A:9C:43:28:F3:8C:85:40:EF:43:4A:73
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01877715ABCC42CDD1B8D9D1E738E6F6B73D
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/fuQU65lfXKVqnEMo84yFQO9DSnM.roa
Signing time: Wed 12 Apr 2023 20:08:41 +0000
ROA not before: Wed 12 Apr 2023 20:08:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.185.40.0/22 maxlen: 24
193.31.30.0/23 maxlen: 24
2a0b:7080:20::/44 maxlen: 48
2a0b:b86::/34 maxlen: 34
Validation: Failed, certificate revoked on Mon 24 Apr 2023 09:12:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:77:15:ab:cc:42:cd:d1:b8:d9:d1:e7:38:e6:f6:b7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Apr 12 20:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ee414eb995f5ca56a9c4328f38c8540ef434a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8f:d8:7c:65:85:2a:3a:c0:1f:4f:b7:a9:82:
d5:39:30:11:7f:a3:be:9d:a2:97:41:d4:29:3f:48:
70:c7:d0:11:02:b4:78:94:f3:b8:ac:ce:ce:de:37:
d2:b0:38:5c:fa:5f:72:ec:68:09:d3:5b:e4:52:0f:
18:02:24:7a:ad:18:50:4f:e5:1e:8b:71:54:a5:4f:
6b:d3:23:f4:a8:11:77:5e:77:d5:46:20:ca:3e:ca:
75:f8:10:43:36:bb:69:76:d6:48:83:08:69:02:e3:
7d:49:f7:7a:41:6c:e9:5a:78:95:ca:0b:ad:79:9b:
bb:cd:62:cd:4a:0a:92:b3:ac:29:ab:19:28:e6:81:
5a:ad:a4:8d:79:5e:1f:14:5e:30:65:2a:f3:ed:18:
d6:64:47:ad:da:4f:18:f1:c2:ad:6b:48:00:bb:38:
97:58:52:87:03:ea:62:e4:4d:48:5e:ee:2a:bb:3f:
bd:d2:97:e3:f8:5d:de:31:15:0b:ff:16:37:37:71:
91:45:9a:83:fe:d6:f6:fb:af:d8:56:eb:6c:12:9e:
00:61:6a:34:7e:f6:27:da:3e:8b:07:8d:51:d9:38:
83:ba:5b:07:38:fc:f4:c2:12:e6:4e:76:81:e9:8d:
4f:31:19:d2:9c:fb:13:ff:4b:55:52:42:e2:12:27:
d8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E4:14:EB:99:5F:5C:A5:6A:9C:43:28:F3:8C:85:40:EF:43:4A:73
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/fuQU65lfXKVqnEMo84yFQO9DSnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.40.0/22
193.31.30.0/23
IPv6:
2a0b:b86::/34
2a0b:7080:20::/44
Signature Algorithm: sha256WithRSAEncryption
47:83:78:de:ab:a2:2c:ce:78:7b:18:e9:bd:a7:c7:93:56:b9:
06:39:59:f8:34:5d:6c:a5:00:d3:c2:5d:6a:75:66:18:6c:d6:
8c:ef:fd:f0:22:d7:2e:1a:02:51:57:24:05:bc:b0:1e:d4:ee:
5a:fa:6d:dd:38:d5:ea:36:1a:44:02:96:fa:a1:8c:81:43:d2:
00:73:16:57:69:f7:af:6b:27:8c:b2:c9:12:4b:b4:36:65:00:
88:96:16:07:ea:95:1a:d0:27:7a:c4:72:36:d7:df:f9:82:0d:
7d:01:30:da:f0:dd:0b:e3:95:60:2f:93:7d:d2:dc:ce:2a:eb:
a9:58:b7:2f:b4:0f:06:12:71:19:ee:a0:60:f8:18:5e:75:59:
67:6d:c6:5b:15:33:12:98:0b:cb:7d:9a:26:36:5a:78:b9:a6:
45:49:df:71:08:6b:01:00:ac:39:c0:ba:a9:30:31:50:69:56:
51:a1:0c:e5:05:ab:44:65:9c:8a:b5:b5:3a:a3:cd:4f:09:c9:
81:a6:57:13:79:4d:7f:bc:cf:ce:cb:39:6d:01:e9:52:96:54:
48:ca:fd:e6:97:88:ce:58:dd:75:72:ee:ca:84:e7:35:79:09:
15:be:58:d8:79:78:1c:68:af:d0:05:d5:55:5e:2d:b4:b2:91:
86:51:84:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org