Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/FKUcJV9YcmE7VUG76C3D7VxS9oE.roa
File: FKUcJV9YcmE7VUG76C3D7VxS9oE.roa (raw, json)
Hash identifier: 2ATr7QQR4ZnyOSqoe53xwRhAvnc1J4F7S6X0xk8fFY8=
Subject key identifier: 14:A5:1C:25:5F:58:72:61:3B:55:41:BB:E8:2D:C3:ED:5C:52:F6:81
Certificate issuer: /CN=e32bcd40c6774677d2c3702ef59edf49d0b36c6c
Certificate serial: 01856DAF53172511358E415662B79731AE99
Authority key identifier: E3:2B:CD:40:C6:77:46:77:D2:C3:70:2E:F5:9E:DF:49:D0:B3:6C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/FKUcJV9YcmE7VUG76C3D7VxS9oE.roa
Signing time: Sun 01 Jan 2023 14:14:44 +0000
ROA not before: Sun 01 Jan 2023 14:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5146
IP address blocks: 84.255.168.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:af:53:17:25:11:35:8e:41:56:62:b7:97:31:ae:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32bcd40c6774677d2c3702ef59edf49d0b36c6c
Validity
Not Before: Jan 1 14:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14a51c255f5872613b5541bbe82dc3ed5c52f681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0d:13:82:1e:53:10:e6:c5:62:1a:d0:8f:db:
be:88:80:ca:2c:7b:6d:0a:60:f7:f8:04:32:92:5b:
1b:96:cd:98:c5:07:e1:6e:50:b1:d1:66:31:e8:fc:
8d:e9:87:6e:3f:5a:c5:89:fa:04:46:54:44:66:56:
ed:ee:f4:ae:07:a4:38:80:2d:78:6b:33:95:07:2e:
5d:a5:a8:50:08:69:c0:f9:44:ab:81:36:5e:15:86:
6d:66:0e:08:66:ff:94:3a:c6:9d:fe:d2:c9:38:24:
48:87:00:81:65:f8:1c:e7:c3:9b:4d:11:7f:c8:0c:
8a:97:2c:93:69:c8:67:5b:72:05:09:51:83:db:c8:
58:4d:2d:ea:7b:5b:4b:e2:76:c0:21:49:06:5a:67:
26:01:70:56:a9:71:21:34:a6:1c:15:df:c2:93:58:
22:09:df:e6:ce:dc:c6:62:44:7d:ab:e3:52:3d:29:
01:f1:87:64:86:6a:8b:d9:37:be:39:17:85:1a:27:
a9:ee:07:9a:d3:15:c0:39:3a:50:e2:09:1c:28:db:
d8:2a:99:89:6a:7f:93:27:ae:25:5d:c7:3a:92:bd:
eb:07:87:07:d0:c8:e1:10:cb:c3:1c:f6:59:4c:6d:
92:49:94:e6:8e:ff:af:81:77:a0:d8:d3:db:ba:f5:
ae:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A5:1C:25:5F:58:72:61:3B:55:41:BB:E8:2D:C3:ED:5C:52:F6:81
X509v3 Authority Key Identifier:
keyid:E3:2B:CD:40:C6:77:46:77:D2:C3:70:2E:F5:9E:DF:49:D0:B3:6C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/FKUcJV9YcmE7VUG76C3D7VxS9oE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4b7ef8-8643-4dbb-92aa-0740115b5a52/1/4yvNQMZ3RnfSw3Au9Z7fSdCzbGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.255.168.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:e2:47:fe:fc:e9:3f:41:30:b9:30:9e:3a:53:eb:6d:af:64:
e9:f1:62:84:f0:4b:f4:e2:a3:a2:b5:16:e9:de:14:00:45:0c:
02:59:a1:1f:60:5d:a4:ad:de:ee:5e:4e:db:07:5a:2c:20:ac:
1f:2d:6d:5d:81:47:62:85:fd:ec:9d:fa:85:09:27:6f:ea:0b:
70:19:68:76:51:bf:2d:3e:66:a6:91:57:9a:4b:62:bd:5b:d9:
d6:d9:68:25:1f:1c:e2:52:1e:0e:ae:21:43:6c:23:f1:70:12:
c0:db:e8:9f:9a:fb:61:08:70:34:23:23:7c:dc:ed:f0:dc:47:
86:b6:70:cb:3a:6e:84:7f:63:5f:79:64:33:23:47:f1:41:5f:
6e:79:02:f8:ff:bd:d0:c2:10:eb:e7:23:fb:d1:b1:b6:f4:54:
17:81:c4:43:06:ff:ec:6c:0d:9f:ce:43:56:cb:07:34:55:d0:
07:30:81:8c:ef:3e:e3:ed:6f:56:b3:e6:d1:3c:8f:e9:45:4d:
88:a3:f9:ed:a4:1a:bf:79:d2:43:f7:3f:e4:aa:b6:8d:14:8b:
a2:5f:99:c5:c1:ae:15:d9:19:d4:a7:f0:7e:1c:0b:75:ab:e5:
13:86:b2:ad:c5:86:8c:19:b9:48:59:ae:43:cc:ae:1d:9f:b3:
db:79:4a:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtr1MXJRE1jkFWYreXMa6ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMmJjZDQwYzY3NzQ2NzdkMmMzNzAyZWY1OWVkZjQ5ZDBi
MzZjNmMwHhcNMjMwMTAxMTQxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNGE1MWMyNTVmNTg3MjYxM2I1NTQxYmJlODJkYzNlZDVjNTJmNjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiw0Tgh5TEObFYhrQj9u+iIDKLHtt
CmD3+AQyklsbls2YxQfhblCx0WYx6PyN6YduP1rFifoERlREZlbt7vSuB6Q4gC14
azOVBy5dpahQCGnA+USrgTZeFYZtZg4IZv+UOsad/tLJOCRIhwCBZfgc58ObTRF/
yAyKlyyTachnW3IFCVGD28hYTS3qe1tL4nbAIUkGWmcmAXBWqXEhNKYcFd/Ck1gi
Cd/mztzGYkR9q+NSPSkB8YdkhmqL2Te+OReFGiep7gea0xXAOTpQ4gkcKNvYKpmJ
an+TJ64lXcc6kr3rB4cH0MjhEMvDHPZZTG2SSZTmjv+vgXeg2NPbuvWucwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBSlHCVfWHJhO1VBu+gtw+1cUvaBMB8GA1UdIwQY
MBaAFOMrzUDGd0Z30sNwLvWe30nQs2xsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHl2TlFNWjNSbmZTdzNBdTlaN2ZTZEN6Ykd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80YjdlZjgtODY0My00ZGJiLTkyYWEt
MDc0MDExNWI1YTUyLzEvRktVY0pWOVljbUU3VlVHNzZDM0Q3VnhTOW9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi80YjdlZjgtODY0My00ZGJiLTkyYWEtMDc0MDExNWI1YTUy
LzEvNHl2TlFNWjNSbmZTdzNBdTlaN2ZTZEN6Ykd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDVP+oMA0G
CSqGSIb3DQEBCwUAA4IBAQAr4kf+/Ok/QTC5MJ46U+ttr2Tp8WKE8Ev04qOitRbp
3hQARQwCWaEfYF2krd7uXk7bB1osIKwfLW1dgUdihf3snfqFCSdv6gtwGWh2Ub8t
PmamkVeaS2K9W9nW2WglHxziUh4OriFDbCPxcBLA2+ifmvthCHA0IyN83O3w3EeG
tnDLOm6Ef2NfeWQzI0fxQV9ueQL4/73QwhDr5yP70bG29FQXgcRDBv/sbA2fzkNW
ywc0VdAHMIGM7z7j7W9Ws+bRPI/pRU2Io/ntpBq/edJD9z/kqraNFIuiX5nFwa4V
2RnUp/B+HAt1q+UThrKtxYaMGblIWa5DzK4dn7PbeUqz
-----END CERTIFICATE-----
Generated at Sun Aug 6 11:48:02 2023 by rpki-client on console-ams.rpki-client.org