Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/P_aBGofVleiZ5L8Pk855xzH3hsk.roa
File: P_aBGofVleiZ5L8Pk855xzH3hsk.roa (raw, json)
Hash identifier: wgsDdLDQQU3ZhuD2o7YojrflNmT8pPtXGpzILA36lTM=
Subject key identifier: 3F:F6:81:1A:87:D5:95:E8:99:E4:BF:0F:93:CE:79:C7:31:F7:86:C9
Certificate issuer: /CN=fb02bac7b79a3109e9be3dfe4f06d585bb9f9051
Certificate serial: 018706007A6236ACC600BC442A63186CE114
Authority key identifier: FB:02:BA:C7:B7:9A:31:09:E9:BE:3D:FE:4F:06:D5:85:BB:9F:90:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wK6x7eaMQnpvj3-TwbVhbufkFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/P_aBGofVleiZ5L8Pk855xzH3hsk.roa
Signing time: Tue 21 Mar 2023 21:08:27 +0000
ROA not before: Tue 21 Mar 2023 21:08:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212321
IP address blocks: 185.217.142.0/24 maxlen: 24
2a10:cd00::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Mar 2023 21:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:06:00:7a:62:36:ac:c6:00:bc:44:2a:63:18:6c:e1:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb02bac7b79a3109e9be3dfe4f06d585bb9f9051
Validity
Not Before: Mar 21 21:08:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ff6811a87d595e899e4bf0f93ce79c731f786c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:ef:1e:b1:05:3d:ab:89:e4:7e:24:0c:0e:
c5:1b:7e:2b:a4:f8:64:a8:37:4b:a7:09:69:bf:05:
18:ca:a6:f9:41:47:76:68:01:40:a8:93:2e:dd:92:
16:6c:1a:58:86:ae:6a:32:83:e2:29:41:45:c7:e8:
79:3f:81:fc:39:27:08:77:2e:fa:0d:f1:3c:31:cd:
a5:e2:e3:1d:06:02:24:b7:e8:1f:48:37:f8:d0:91:
40:cb:04:fc:9c:37:3b:d0:9c:cb:d9:e1:88:3a:c4:
54:ba:0d:17:93:f2:7a:da:9a:52:53:51:67:26:17:
9c:da:66:c1:e9:c4:30:84:fc:41:79:5a:d5:e8:ee:
90:66:e8:3d:0e:1e:6b:6f:bb:a0:dc:e6:da:a5:46:
1c:dd:ac:6a:93:30:60:87:97:f1:c5:5a:91:af:a3:
42:d4:32:9a:2e:0b:c8:3e:a2:04:b4:bb:2a:04:90:
55:f9:ba:3b:72:e4:aa:56:a9:f9:eb:77:4c:d5:73:
c7:da:ee:14:2b:52:f8:86:41:df:6f:3e:78:88:d4:
1f:83:0d:05:bd:42:6e:7e:8e:13:dd:43:75:35:3b:
89:24:67:ca:4c:de:1e:19:3a:3c:63:d6:cd:40:ad:
44:bc:98:a2:47:4f:59:8b:05:45:2d:54:e5:69:d9:
a4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F6:81:1A:87:D5:95:E8:99:E4:BF:0F:93:CE:79:C7:31:F7:86:C9
X509v3 Authority Key Identifier:
keyid:FB:02:BA:C7:B7:9A:31:09:E9:BE:3D:FE:4F:06:D5:85:BB:9F:90:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wK6x7eaMQnpvj3-TwbVhbufkFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/P_aBGofVleiZ5L8Pk855xzH3hsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/200e2b-d3a4-4557-9735-4950f86cbb5b/1/1-wK6x7eaMQnpvj3-TwbVhbufkFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.142.0/24
IPv6:
2a10:cd00::/32
Signature Algorithm: sha256WithRSAEncryption
09:0d:43:bc:9d:32:9a:cf:b1:02:bd:eb:40:1b:f7:d6:24:c3:
9a:d4:73:cb:d0:d9:d3:09:d0:73:ae:7e:48:e4:3d:c2:6a:52:
f5:29:e9:fe:37:05:14:73:eb:66:ae:1b:a7:85:5d:68:b5:5e:
a4:69:0d:cf:21:50:18:68:f4:ce:da:2d:11:3e:f2:84:41:65:
4c:eb:55:ea:08:3c:b1:aa:7f:7a:07:68:da:85:82:61:43:c2:
7d:86:14:e4:be:50:10:d6:b0:3a:dd:52:70:f3:f9:7a:5e:86:
55:6c:01:fb:67:77:39:81:9e:94:a1:e9:1b:4b:e1:20:53:62:
b9:71:9f:29:f5:c2:fd:34:ea:a2:c4:5b:7b:85:8d:bd:36:fb:
64:29:1d:f8:8a:3d:bd:c4:28:22:36:9f:b5:88:b0:4c:c5:ce:
43:1b:5c:1f:c1:c2:11:b8:f9:33:26:73:4d:cc:9a:a1:1c:13:
4e:93:f6:3b:d5:7e:57:e0:39:b2:89:c8:9c:86:74:ff:80:3b:
38:5c:40:96:ea:ae:7a:77:46:a7:40:73:e5:d5:6b:d8:ff:2f:
28:64:0f:eb:83:19:1b:ce:45:eb:cf:b9:d8:28:cc:e6:dd:91:
eb:96:7c:d8:2e:bf:a7:ab:fc:25:17:fd:3a:71:c2:e3:e1:73:
43:fc:85:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:39 2024 by rpki-client on console-fra.rpki-client.org