Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/fmoJQNQ49nXprECCFLQLcwrMVR0.roa
File: fmoJQNQ49nXprECCFLQLcwrMVR0.roa (raw, json)
Hash identifier: IHX6z05utT3dPZmWGg1QYO7/R0NFG2DDj7yPUqFn1v8=
Subject key identifier: 7E:6A:09:40:D4:38:F6:75:E9:AC:40:82:14:B4:0B:73:0A:CC:55:1D
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018A98B19766FD5C82F307E536185D47AA9A
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/fmoJQNQ49nXprECCFLQLcwrMVR0.roa
Signing time: Fri 15 Sep 2023 11:54:50 +0000
ROA not before: Fri 15 Sep 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Sep 2023 07:50:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:b1:97:66:fd:5c:82:f3:07:e5:36:18:5d:47:aa:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Sep 15 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e6a0940d438f675e9ac408214b40b730acc551d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:3e:04:c2:05:62:80:0e:8c:ab:0a:e6:d9:
33:1f:79:4e:09:81:91:82:3d:e9:cf:f4:17:b1:ea:
72:af:95:58:80:82:16:f6:d8:0b:0f:d5:17:18:20:
3e:14:96:bd:58:a8:76:f1:bf:a9:4e:46:0b:b4:f0:
3b:64:63:65:d5:dd:f7:45:f2:5c:4a:0d:99:01:83:
99:63:4e:72:14:1e:30:e3:45:fd:72:66:b5:89:94:
56:75:31:1b:37:96:dc:f7:87:4a:9e:8e:7e:13:eb:
75:2c:a6:20:4c:0e:96:92:ef:28:83:6f:e2:95:8c:
74:48:a7:96:e2:07:2e:3b:57:35:4c:24:68:b9:1b:
f7:a6:17:23:08:eb:d8:ea:b1:2d:29:12:9b:b2:74:
f7:86:81:83:c0:e8:ae:f4:3b:27:ff:47:fe:c1:94:
ba:94:fb:c4:b4:cf:73:5a:f0:0c:46:82:9f:5d:73:
5a:6c:c6:12:6d:ce:c8:2a:ee:11:dc:3d:13:13:e5:
01:0b:dd:86:26:f4:65:d1:3e:9e:f6:0b:fe:82:33:
14:8c:15:c1:42:5a:b0:b9:d8:70:56:97:6a:89:e0:
83:4c:c0:fb:32:b1:25:70:63:3e:85:ff:2f:45:ec:
ab:18:c0:e8:b0:4c:01:79:91:3e:40:5c:0c:82:ee:
6f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6A:09:40:D4:38:F6:75:E9:AC:40:82:14:B4:0B:73:0A:CC:55:1D
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/fmoJQNQ49nXprECCFLQLcwrMVR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
96:3c:08:a0:47:bc:80:97:ff:38:c4:e6:81:57:55:d4:51:72:
e7:5d:25:83:0d:5f:7c:8d:21:9e:1b:7d:75:29:9a:0d:d5:21:
3d:05:e7:07:b6:da:8d:0f:2b:d5:2a:9e:0f:cd:7a:03:15:1c:
af:71:17:87:8e:3f:f9:cf:66:2b:ea:a3:14:17:9f:fd:89:8f:
5d:8c:d4:86:52:32:21:cf:fb:ab:30:f3:64:78:10:e3:f4:16:
b2:2b:b4:cd:cf:cb:4f:f9:a5:13:b0:9c:01:44:0d:ab:02:d0:
9f:9b:76:b8:0b:1b:0a:8c:a6:b5:9d:db:e5:4a:52:01:39:d1:
18:91:7e:6e:0a:04:34:a7:cf:f6:34:00:30:eb:f4:8c:3c:c3:
f6:a9:0f:b5:5e:65:ed:6e:40:80:9f:2e:21:52:96:17:dd:58:
51:e1:e7:88:19:03:62:e6:d1:c1:08:cb:7d:ee:0f:9c:ac:27:
c8:1e:70:b8:cb:d1:42:6e:0c:1c:c0:70:c8:17:b0:f3:ab:9d:
21:4f:40:a2:c6:7a:61:5c:01:1b:60:c4:91:c0:13:78:77:b2:
85:5f:d7:28:fe:5b:9e:5c:aa:6c:ff:b2:f1:0c:c2:ce:d9:a4:
22:11:53:02:55:5c:c4:30:76:0d:55:e5:bf:9c:b3:f1:6c:a1:
cb:a4:fa:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:42 2024 by rpki-client on console-ams.rpki-client.org