Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/FPC0NbYar0iFtRZtSTZcMBSQDnk.roa
File: FPC0NbYar0iFtRZtSTZcMBSQDnk.roa (raw, json)
Hash identifier: 5dYW8mAhGkw+vxDhz4yMs13ukDs/Kk4YSVMDR93v9a8=
Subject key identifier: 14:F0:B4:35:B6:1A:AF:48:85:B5:16:6D:49:36:5C:30:14:90:0E:79
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 018CCA29DB5A2FF3C3E63B603CF7F8BEA5DD
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/FPC0NbYar0iFtRZtSTZcMBSQDnk.roa
Signing time: Tue 02 Jan 2024 12:33:09 +0000
ROA not before: Tue 02 Jan 2024 12:33:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204603
IP address blocks: 5.42.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 26 Jun 2024 12:29:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:db:5a:2f:f3:c3:e6:3b:60:3c:f7:f8:be:a5:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Jan 2 12:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14f0b435b61aaf4885b5166d49365c3014900e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9f:d5:e1:3f:c6:53:2c:8a:87:65:0e:94:dd:
9c:ab:e0:9b:a5:bc:b5:0a:78:a0:dd:a9:13:ee:85:
80:83:a3:96:ab:5a:dc:03:66:46:2c:55:03:6b:73:
df:d9:03:5d:2c:86:53:72:88:24:9a:4a:03:42:70:
4e:9e:09:61:83:64:88:bd:f3:3a:3d:1d:82:ac:85:
a4:86:8a:0f:87:88:dd:40:ae:ed:c8:cd:d6:04:1c:
dc:0d:e9:f0:05:22:80:36:ec:e0:e2:3c:dc:84:5f:
83:d7:44:cb:eb:34:da:ca:c0:96:e8:22:78:e9:66:
24:da:90:22:2b:64:ce:60:92:dd:c4:18:bf:ef:9e:
cb:ba:7f:c8:eb:2f:e2:77:1f:36:e7:55:05:31:02:
4f:ea:bf:1e:f7:0f:b5:00:af:de:ac:d9:4f:85:e4:
bb:f8:60:0f:b6:42:61:b2:e3:7f:e2:cf:63:ce:93:
8c:25:73:f8:0d:f2:b4:f5:ab:26:55:6b:e5:b1:d5:
93:fd:2d:e3:9a:fe:aa:31:b7:81:3e:17:a5:04:44:
74:5c:c3:17:67:bc:35:7d:8c:2e:1e:ad:85:e4:44:
ea:cd:84:0a:79:18:a6:b2:6c:67:08:a4:45:7d:93:
6a:51:b3:a2:68:ff:f3:65:a7:10:de:73:fc:39:64:
1c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F0:B4:35:B6:1A:AF:48:85:B5:16:6D:49:36:5C:30:14:90:0E:79
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/FPC0NbYar0iFtRZtSTZcMBSQDnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.64.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:b4:b6:2a:96:b7:7e:16:84:8a:32:9e:34:d4:66:45:13:81:
c3:e3:38:57:19:33:71:f4:57:6f:c2:1e:2f:fa:1a:dc:83:e2:
58:58:1d:32:cc:15:50:a6:8e:ee:1d:60:c1:56:a6:f7:1e:ec:
ab:a9:03:6e:e2:bd:b6:7e:eb:73:8a:82:78:f5:de:7b:02:0f:
a2:5f:fa:21:74:b0:09:62:4b:5c:da:5f:03:fb:b6:da:4e:8f:
ce:19:c4:9e:07:c6:8f:3c:14:46:6f:8e:ba:d6:32:2d:5d:02:
78:c3:15:b7:30:b6:52:2d:03:50:0f:f2:a6:e9:84:a9:b9:c2:
f6:58:86:76:4b:cd:5a:bc:4c:b4:54:ca:f1:c3:b3:26:ee:93:
58:f2:47:21:a8:b5:a3:e4:e9:82:10:2a:c2:88:08:7d:e6:8e:
18:01:b2:d6:40:34:37:96:01:c2:24:c4:2d:ce:d2:50:60:86:
81:d8:b5:f4:ea:e3:3c:ca:9f:49:b6:c3:b0:87:9b:e9:d0:80:
10:2d:ec:8c:03:da:fd:49:35:ad:0a:46:6f:53:93:b8:0d:dc:
35:f2:a9:62:81:5a:0c:e5:ca:fc:da:01:7b:a1:c4:a8:4a:07:
af:ce:f1:46:b4:21:87:3b:39:d8:8b:7b:33:36:88:cd:61:fd:
1d:82:9d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 18:22:49 2024 by rpki-client on console-ams.rpki-client.org