Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/FR7kcbn3W3zuF2hTWTdgZ7v-4V8.roa
File: FR7kcbn3W3zuF2hTWTdgZ7v-4V8.roa (raw, json)
Hash identifier: 8quGgdT+XdRvdldODDe/1DPbJ/E09C9OT2McFdrnNfs=
Subject key identifier: 15:1E:E4:71:B9:F7:5B:7C:EE:17:68:53:59:37:60:67:BB:FE:E1:5F
Certificate issuer: /CN=46ebddae6a7acee83a322a0e743a6759d85365f2
Certificate serial: 0185724C55EE53A7493083EC6433F9366958
Authority key identifier: 46:EB:DD:AE:6A:7A:CE:E8:3A:32:2A:0E:74:3A:67:59:D8:53:65:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ruvdrmp6zug6MioOdDpnWdhTZfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/FR7kcbn3W3zuF2hTWTdgZ7v-4V8.roa
Signing time: Mon 02 Jan 2023 11:44:43 +0000
ROA not before: Mon 02 Jan 2023 11:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206944
IP address blocks: 185.171.20.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:55:ee:53:a7:49:30:83:ec:64:33:f9:36:69:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ebddae6a7acee83a322a0e743a6759d85365f2
Validity
Not Before: Jan 2 11:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=151ee471b9f75b7cee17685359376067bbfee15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:db:07:f9:1e:12:16:bb:40:74:59:7e:11:0b:
7e:33:d2:7e:00:8b:d5:15:b7:32:e1:5d:80:02:df:
f2:ed:9d:43:ce:3c:69:63:27:41:35:54:8e:50:3f:
41:13:e0:33:e3:49:8b:60:23:3b:65:b8:5d:3f:2c:
ae:f6:23:fc:f7:36:76:fa:6f:56:3b:a1:de:e5:0f:
bf:69:a8:a0:51:b0:0e:34:f4:70:19:ef:59:19:c3:
ef:8b:92:2d:b0:72:4f:b5:7c:e0:3d:13:6f:9d:c4:
68:13:77:e9:73:b2:2f:09:0d:1c:26:f9:bd:c3:a7:
58:9e:a6:fe:6c:bc:06:7c:29:d0:07:99:a9:f0:49:
a3:d2:10:da:2f:71:ea:30:55:02:65:a6:24:f5:bc:
b8:cf:6d:e5:23:21:f3:98:ef:05:bd:e4:14:8d:16:
ab:8d:2f:54:07:69:13:c9:67:3a:0e:2c:22:8d:e5:
6f:dd:81:f2:1d:6f:75:9e:bb:dc:ca:6b:80:e1:5a:
30:b7:80:26:42:18:02:64:9e:59:c5:67:08:f6:68:
4d:57:9c:b6:bb:88:cf:c1:2a:c4:47:e1:19:bb:2f:
66:65:23:97:55:e5:70:23:4c:ff:55:aa:ad:f9:08:
bb:c0:57:1a:f5:bf:ee:14:7c:aa:9d:fd:e8:1f:c6:
ca:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1E:E4:71:B9:F7:5B:7C:EE:17:68:53:59:37:60:67:BB:FE:E1:5F
X509v3 Authority Key Identifier:
keyid:46:EB:DD:AE:6A:7A:CE:E8:3A:32:2A:0E:74:3A:67:59:D8:53:65:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ruvdrmp6zug6MioOdDpnWdhTZfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/FR7kcbn3W3zuF2hTWTdgZ7v-4V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/Ruvdrmp6zug6MioOdDpnWdhTZfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.20.0/23
Signature Algorithm: sha256WithRSAEncryption
39:43:df:83:b5:e5:b3:5f:3b:c2:54:0b:c7:03:65:44:65:96:
3b:96:5c:47:e1:f9:ed:04:34:91:79:b8:fa:38:dd:cd:87:be:
75:1e:94:cf:15:60:0a:c9:3b:6c:af:4b:dc:2c:f6:6f:6d:df:
4a:d5:82:d1:2f:f0:84:c9:66:44:8f:56:e6:25:b2:48:52:22:
00:5d:f1:05:9c:52:e4:a5:b3:94:f3:da:00:86:76:64:4b:79:
36:2f:79:62:9b:10:ef:09:5d:b4:59:ac:a6:28:70:b6:aa:26:
0e:42:a5:24:05:75:11:2f:84:f0:8b:52:75:f1:4e:43:28:b5:
72:f4:8c:cf:d9:08:9e:65:68:51:9d:16:97:82:5a:77:8e:8a:
74:bc:e9:51:49:af:a8:22:f8:33:8f:4a:ef:ec:8f:53:22:cc:
53:97:63:21:98:07:56:47:32:cd:d4:27:ee:8e:b9:81:cf:08:
a3:74:40:4b:44:3a:3f:0a:56:b2:27:28:32:2e:a7:d2:05:30:
92:97:3c:48:34:63:ed:0c:14:d9:20:0f:2c:2c:ab:94:19:f9:
78:f4:77:84:0d:44:eb:38:75:12:ca:f8:8c:00:a2:98:9c:26:
92:4a:b0:a7:29:18:1a:c9:ce:6e:1f:59:e8:7b:2f:6f:77:8d:
39:cb:5e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:43 2024 by rpki-client on console-ams.rpki-client.org