Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/0c37c3-9990-4596-99e9-dd5ffd531571/1/FuouHw3rY9dBDos3Hybqg_0mcb0.roa
File: FuouHw3rY9dBDos3Hybqg_0mcb0.roa (raw, json)
Hash identifier: c1XjJL0wyYrOCDQAHy+MfDgtM5ZEMs18er6s693TTJA=
Subject key identifier: 16:EA:2E:1F:0D:EB:63:D7:41:0E:8B:37:1F:26:EA:83:FD:26:71:BD
Certificate issuer: /CN=9e34b186271ccb89c5e58b30e70bd74109cc284a
Certificate serial: 018FE7CAF06C14CFC12C2CE5C6E308A03C1D
Authority key identifier: 9E:34:B1:86:27:1C:CB:89:C5:E5:8B:30:E7:0B:D7:41:09:CC:28:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njSxhiccy4nF5Ysw5wvXQQnMKEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/0c37c3-9990-4596-99e9-dd5ffd531571/1/FuouHw3rY9dBDos3Hybqg_0mcb0.roa
Signing time: Wed 05 Jun 2024 09:46:27 +0000
ROA not before: Wed 05 Jun 2024 09:46:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197674
IP address blocks: 185.72.216.0/24 maxlen: 24
185.72.217.0/24 maxlen: 24
185.72.218.0/24 maxlen: 24
185.72.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 13:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e7:ca:f0:6c:14:cf:c1:2c:2c:e5:c6:e3:08:a0:3c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e34b186271ccb89c5e58b30e70bd74109cc284a
Validity
Not Before: Jun 5 09:46:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16ea2e1f0deb63d7410e8b371f26ea83fd2671bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:31:d1:4c:ff:13:d4:19:31:4b:6e:2b:2a:
61:aa:42:96:87:0b:55:d0:fb:36:da:30:fb:4c:8e:
4d:3f:f9:cc:9f:79:93:e8:f6:be:4f:18:30:2d:1e:
0a:74:20:b7:f7:66:1d:7c:4a:63:b3:0c:97:7c:69:
4d:cf:e0:0b:4b:7e:ea:4d:01:a9:df:97:7e:b1:a9:
f0:34:4d:1f:d1:06:47:67:ec:e7:f2:5a:ce:87:73:
1a:3f:f4:cc:fa:30:0c:73:9a:f5:4b:05:74:50:c9:
ba:6b:2f:ae:91:9a:bc:de:0e:dc:43:7d:a0:d5:ca:
ec:c5:31:99:eb:31:b4:df:63:85:99:68:50:1e:a9:
39:8d:1b:f3:b6:68:2e:18:7e:1e:34:b2:3d:89:fd:
8c:35:7c:fd:dd:73:d4:8e:aa:f6:61:64:11:a1:21:
83:f6:ba:49:1f:93:4c:1d:da:3a:3d:fc:65:6c:57:
64:d8:26:37:3e:49:9c:b7:80:cc:9e:3b:6b:9f:41:
ef:c5:47:c8:b6:5c:df:be:ab:6c:ce:90:37:91:37:
df:0a:7f:5b:66:d4:0d:fa:ec:13:d7:ec:ea:52:fb:
1c:56:47:22:ac:6e:aa:05:10:78:37:38:96:b3:9f:
3e:0b:53:fd:25:90:24:b2:d4:e1:ce:10:91:9e:49:
30:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EA:2E:1F:0D:EB:63:D7:41:0E:8B:37:1F:26:EA:83:FD:26:71:BD
X509v3 Authority Key Identifier:
keyid:9E:34:B1:86:27:1C:CB:89:C5:E5:8B:30:E7:0B:D7:41:09:CC:28:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njSxhiccy4nF5Ysw5wvXQQnMKEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/0c37c3-9990-4596-99e9-dd5ffd531571/1/FuouHw3rY9dBDos3Hybqg_0mcb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/0c37c3-9990-4596-99e9-dd5ffd531571/1/njSxhiccy4nF5Ysw5wvXQQnMKEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.216.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:f8:bc:8b:06:b2:70:17:7d:d8:66:e4:7b:58:f1:0d:b1:86:
1c:58:b9:d9:32:36:4f:98:51:4f:ab:81:bb:63:31:13:36:ae:
12:3e:25:82:ae:d1:4c:14:d3:29:6c:97:99:6e:84:a8:4c:06:
54:e4:48:82:e2:54:71:e3:f5:61:2d:68:b5:a2:0f:4f:d0:e1:
7b:1d:ee:c5:be:fa:db:5c:6f:9e:1d:34:f3:10:c6:04:35:fb:
4f:ec:e4:f1:52:24:b5:64:2b:4a:46:36:1a:49:3c:fa:60:85:
8f:de:a4:2c:80:98:41:bd:29:14:71:1d:df:01:67:99:35:45:
fd:08:50:0a:c8:e3:66:e4:3b:42:6e:aa:dd:42:9d:e2:96:bd:
69:e8:0c:f3:7f:17:0e:77:3f:f5:3e:99:f6:f8:df:b4:21:1f:
c8:0d:9f:e1:9b:1d:95:35:7c:62:8b:1f:c5:22:46:1b:52:c2:
f5:00:9c:8c:d2:da:44:b7:2f:76:bf:6a:99:6c:2e:e5:33:a6:
15:3a:92:19:2e:73:2b:dc:63:46:4d:60:7e:07:8f:c0:38:72:
40:ec:43:e9:f4:e6:69:34:3d:5c:b6:ad:62:9b:51:2c:f5:79:
0f:b1:ca:b9:6a:f3:1f:77:49:98:33:79:71:00:7e:f7:3a:95:
39:bb:b7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org