Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/3e73a6-1da7-47f6-a38c-0ee847d3fb79/1/FuVyWywTQ8YAGmxvbTLbhKV1XKY.roa
File: FuVyWywTQ8YAGmxvbTLbhKV1XKY.roa (raw, json)
Hash identifier: ptTf7Fpe7hUklWbY11zOeJMIY4pGPK5AVhOmPNrbIis=
Subject key identifier: 16:E5:72:5B:2C:13:43:C6:00:1A:6C:6F:6D:32:DB:84:A5:75:5C:A6
Certificate issuer: /CN=a065e65749caa5fbb491e906977db18d3559bf43
Certificate serial: 0185714C3F95355A9B135EC724485C3BB652
Authority key identifier: A0:65:E6:57:49:CA:A5:FB:B4:91:E9:06:97:7D:B1:8D:35:59:BF:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGXmV0nKpfu0kekGl32xjTVZv0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/3e73a6-1da7-47f6-a38c-0ee847d3fb79/1/FuVyWywTQ8YAGmxvbTLbhKV1XKY.roa
Signing time: Mon 02 Jan 2023 07:05:00 +0000
ROA not before: Mon 02 Jan 2023 07:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44045
IP address blocks: 185.79.60.0/22 maxlen: 22
185.79.63.0/24 maxlen: 24
185.79.60.0/24 maxlen: 24
185.79.62.0/24 maxlen: 24
185.79.61.0/24 maxlen: 24
2a05:7200::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:3f:95:35:5a:9b:13:5e:c7:24:48:5c:3b:b6:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a065e65749caa5fbb491e906977db18d3559bf43
Validity
Not Before: Jan 2 07:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16e5725b2c1343c6001a6c6f6d32db84a5755ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0b:87:6e:c0:48:1a:c0:50:b9:10:1b:68:54:
fd:b3:96:14:f1:d0:32:19:a6:1f:99:fe:28:7f:62:
c4:ca:9f:81:71:ef:0c:c6:cd:35:07:dd:88:42:0b:
64:8b:29:aa:0d:68:a4:10:ac:86:8f:08:d2:1a:e0:
b1:19:da:fb:c3:dc:67:77:e7:05:a1:3b:f5:a3:92:
de:c5:a7:4f:c7:64:09:a4:65:1e:fc:ab:7c:e0:94:
25:63:0a:06:3c:d2:8b:b1:09:52:02:d3:bd:e1:db:
21:a9:50:73:0f:f9:17:ee:2c:40:e8:bd:ab:2b:42:
03:46:7e:e4:52:7a:b9:50:c4:65:b0:49:16:fe:d4:
00:42:67:46:c2:77:c7:93:54:69:7c:25:14:7b:93:
82:66:88:dd:98:16:76:6d:c7:26:53:be:27:82:33:
46:e4:b8:6e:74:9c:e3:b0:00:02:9d:b1:1e:6a:29:
af:3d:66:5f:56:b8:45:fe:23:6d:64:44:79:69:9d:
f0:79:9a:79:23:be:26:19:6b:90:24:fe:d6:e3:33:
b2:c0:6b:fb:3b:d9:b4:0c:fe:b5:24:e7:eb:97:ca:
07:74:9e:ca:84:f8:26:eb:f9:19:4d:59:25:e0:13:
70:d7:15:91:c9:50:f1:44:00:25:74:7b:e0:bd:34:
ea:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E5:72:5B:2C:13:43:C6:00:1A:6C:6F:6D:32:DB:84:A5:75:5C:A6
X509v3 Authority Key Identifier:
keyid:A0:65:E6:57:49:CA:A5:FB:B4:91:E9:06:97:7D:B1:8D:35:59:BF:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGXmV0nKpfu0kekGl32xjTVZv0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/3e73a6-1da7-47f6-a38c-0ee847d3fb79/1/FuVyWywTQ8YAGmxvbTLbhKV1XKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/3e73a6-1da7-47f6-a38c-0ee847d3fb79/1/oGXmV0nKpfu0kekGl32xjTVZv0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.60.0/22
IPv6:
2a05:7200::/29
Signature Algorithm: sha256WithRSAEncryption
74:61:05:60:05:9e:b8:df:d3:ff:a3:2c:89:4f:27:7e:be:58:
ae:86:a0:b3:e2:5e:f1:3d:bb:38:58:e4:59:b7:01:d1:9c:73:
11:65:ae:45:27:08:67:a6:66:48:4f:7f:28:b0:f7:d6:ed:ce:
00:28:f9:4a:b4:84:4b:e5:43:41:49:5c:f7:67:2b:f3:ad:ea:
e1:55:d0:3f:f0:f0:0c:cf:ef:df:70:0b:b8:07:a0:14:02:45:
6f:b7:40:7f:02:1a:89:d6:39:c3:fc:c1:28:ce:65:2f:7b:72:
30:1c:c0:46:e7:c8:db:27:ae:4e:2a:d9:cd:ca:6f:40:8c:28:
99:4c:d1:a0:98:a6:7f:89:4a:f5:df:09:f8:7d:5f:b3:49:06:
4b:a9:7f:dc:c0:db:9b:7b:18:4d:4e:70:2c:01:10:00:b8:d8:
54:03:ac:52:50:53:40:4e:f3:b4:18:7e:fa:01:10:12:69:29:
e1:06:f2:fd:c9:a8:e9:00:f3:7a:ab:12:59:31:15:19:fc:65:
3b:64:6c:35:ca:e0:ef:55:48:a9:8a:fa:f1:bd:3e:bb:28:ea:
6e:5b:ba:b3:f9:5e:6b:87:19:dc:8d:3d:b2:16:af:bf:9a:d5:
89:2f:93:d8:41:45:94:78:5d:4a:a6:2a:a0:b5:8c:2c:3a:69:
2c:42:75:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:10 2024 by rpki-client on console-ams.rpki-client.org