Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/FaPzYRANBQ9BG24ZiceRMllp9wg.roa
File: FaPzYRANBQ9BG24ZiceRMllp9wg.roa (raw, json)
Hash identifier: mBP9W6rs7xeQZsgFn+4uCpK8D2baah/qvNpEcOQFrPU=
Subject key identifier: 15:A3:F3:61:10:0D:05:0F:41:1B:6E:19:89:C7:91:32:59:69:F7:08
Certificate issuer: /CN=3188fae3ebbb3d74feeddcf507f83e67db8850a2
Certificate serial: 018570E76A518A8B123B533E9F594CA50725
Authority key identifier: 31:88:FA:E3:EB:BB:3D:74:FE:ED:DC:F5:07:F8:3E:67:DB:88:50:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYj64-u7PXT-7dz1B_g-Z9uIUKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/FaPzYRANBQ9BG24ZiceRMllp9wg.roa
Signing time: Mon 02 Jan 2023 05:14:52 +0000
ROA not before: Mon 02 Jan 2023 05:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33988
IP address blocks: 185.188.204.0/22 maxlen: 22
2a0b:8f00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:6a:51:8a:8b:12:3b:53:3e:9f:59:4c:a5:07:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3188fae3ebbb3d74feeddcf507f83e67db8850a2
Validity
Not Before: Jan 2 05:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15a3f361100d050f411b6e1989c791325969f708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:91:70:e5:8c:5c:96:3c:e6:39:66:8e:6d:74:
73:98:a2:3f:02:19:d4:36:4d:11:87:15:16:ce:41:
aa:c6:c9:5c:cd:b8:0a:ca:82:75:4a:6e:3b:bb:78:
f5:bb:2e:c0:62:1a:c7:1d:90:10:e4:1c:3b:23:40:
6b:e1:b0:86:c5:95:9e:ab:e9:a2:c2:1d:a5:7a:d3:
bb:8a:52:28:77:2b:a6:61:75:e5:6e:ee:19:1b:08:
06:e9:6a:ee:bb:ed:be:00:41:14:77:34:88:3b:af:
6e:a0:89:2a:c9:91:41:67:d7:57:5a:08:b0:ef:5d:
14:27:fa:5f:40:88:ff:e0:6e:5c:29:c3:af:54:16:
e8:87:5d:66:5b:dd:dc:a6:e2:33:54:5a:b4:4e:05:
ec:7a:34:02:76:8c:3c:97:04:b7:9f:31:49:e1:e5:
41:d8:20:84:60:98:46:cf:cc:2f:e4:6a:43:57:2a:
36:3e:b9:88:dd:88:ff:b2:46:53:4a:5a:a3:29:e0:
67:9b:66:a3:66:77:01:42:7e:41:ff:69:aa:9e:96:
52:56:89:e4:78:6c:7b:45:e5:2f:7b:41:6a:5f:55:
75:f6:5a:1e:91:37:9c:36:d4:60:59:e9:05:9b:99:
77:6f:d4:60:59:92:7c:87:00:84:bb:d6:98:f8:54:
e1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A3:F3:61:10:0D:05:0F:41:1B:6E:19:89:C7:91:32:59:69:F7:08
X509v3 Authority Key Identifier:
keyid:31:88:FA:E3:EB:BB:3D:74:FE:ED:DC:F5:07:F8:3E:67:DB:88:50:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYj64-u7PXT-7dz1B_g-Z9uIUKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/FaPzYRANBQ9BG24ZiceRMllp9wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ea29f2-c340-4d61-b5bb-b853dff8765c/1/MYj64-u7PXT-7dz1B_g-Z9uIUKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.204.0/22
IPv6:
2a0b:8f00::/29
Signature Algorithm: sha256WithRSAEncryption
21:7e:c1:3f:74:62:6e:ad:40:29:fa:9e:82:13:87:00:db:69:
be:65:bd:19:df:75:96:01:2c:46:af:9e:28:eb:c3:59:fa:72:
93:a8:91:d8:c8:0f:57:5b:7a:45:e8:4f:3e:a2:ce:8e:0a:90:
33:65:75:4c:20:05:39:54:e2:2b:56:b7:f8:bb:72:de:7b:6c:
6c:3f:82:89:13:2a:70:3b:ae:4b:96:23:e9:96:cf:9b:4a:92:
5c:81:05:5d:79:4a:b2:f9:a8:dc:0d:2b:aa:94:73:13:ff:f3:
d9:70:2b:18:a0:4e:06:e4:51:b5:20:c5:7f:54:47:84:4c:52:
90:38:e4:fa:77:ef:0d:58:d5:06:08:0b:71:04:66:3f:d1:e0:
96:d8:d0:d8:06:41:80:66:75:43:39:05:18:31:cc:53:32:ef:
83:7c:97:2e:9d:30:2d:a7:d8:a5:41:71:6a:88:16:d1:a2:a0:
d0:38:03:12:f6:f6:54:e4:23:7b:0a:bf:e9:3a:24:5d:9f:d1:
74:a6:4c:f7:9b:85:1f:d6:fb:4c:9c:15:4c:6a:07:b6:a2:1e:
58:d1:c2:72:03:07:03:b9:32:29:3f:d9:ef:e5:58:ca:b6:3b:
dc:7d:a9:ab:b7:f8:03:81:80:26:ec:99:ce:75:c1:4b:f1:1f:
53:b0:e7:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 7 10:08:36 2023 by rpki-client on console-ams.rpki-client.org