Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/FAMxY-QAwgT30xYDNlhWw_5f-40.roa
File: FAMxY-QAwgT30xYDNlhWw_5f-40.roa (raw, json)
Hash identifier: qD41ujhSXfig1IfITYSzpdOOLr0KpFKxWIiwRfAm7BU=
Subject key identifier: 14:03:31:63:E4:00:C2:04:F7:D3:16:03:36:58:56:C3:FE:5F:FB:8D
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01856F14EBE8859539440D665A7BA458E85C
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/FAMxY-QAwgT30xYDNlhWw_5f-40.roa
Signing time: Sun 01 Jan 2023 20:45:20 +0000
ROA not before: Sun 01 Jan 2023 20:45:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 185.104.32.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:eb:e8:85:95:39:44:0d:66:5a:7b:a4:58:e8:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jan 1 20:45:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14033163e400c204f7d31603365856c3fe5ffb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3f:8b:23:1c:25:d8:c8:2e:f5:21:b4:8d:ae:
29:15:f2:0d:73:4a:a6:e9:bb:e0:05:08:ac:88:90:
69:16:90:30:4f:76:f1:3c:ae:0b:6c:48:f2:c9:9d:
4d:c6:1b:31:09:b4:29:6f:7c:2b:dd:88:c7:76:b7:
85:95:0c:59:4f:29:f2:e1:7e:15:c2:f5:3f:e8:a8:
43:b4:8b:57:2f:c9:d8:83:69:f9:0d:17:ab:b5:80:
dd:fa:ff:68:bb:a5:d9:a3:aa:1c:17:b7:ba:8a:f4:
6c:84:af:28:55:3b:16:96:0c:94:5b:6e:4f:a7:39:
43:20:73:9b:be:24:6d:aa:bd:80:da:89:ce:4d:7e:
f7:65:ae:e7:c4:cf:3d:55:e2:2b:c2:37:5b:a6:ae:
fd:33:f3:3a:f8:38:a9:37:6d:d1:cd:fe:28:f2:09:
34:5e:3b:33:15:6d:e8:e6:2e:cf:59:4e:84:3c:37:
e5:a9:36:e5:9d:79:7e:cf:61:b5:23:10:6c:f4:53:
3c:2c:c9:e9:63:90:55:b0:94:30:48:43:09:34:47:
bc:6d:00:7e:a0:00:8c:96:6f:c0:12:4a:68:aa:0b:
91:97:da:e6:76:70:14:04:b9:50:42:3a:6e:bc:7f:
8e:47:da:16:12:b8:7e:d0:1a:38:d3:86:57:7b:63:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:03:31:63:E4:00:C2:04:F7:D3:16:03:36:58:56:C3:FE:5F:FB:8D
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/FAMxY-QAwgT30xYDNlhWw_5f-40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.32.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:3f:f6:fa:13:60:27:c8:44:fd:58:7b:76:51:bd:04:fa:d7:
25:bd:bc:25:b2:1e:91:f8:50:fa:23:1a:d7:9b:cc:fb:1d:9c:
f9:3a:64:d8:93:b8:7f:eb:41:35:23:56:6e:97:5f:5b:3f:aa:
8d:7d:70:b1:69:33:7e:29:0a:9a:7f:98:20:64:11:ce:b1:e8:
c8:aa:77:ec:f8:c5:84:d5:0b:44:ec:fe:4d:cf:ac:2c:dd:69:
a5:99:df:c8:55:9a:0f:0b:a5:d8:da:61:9a:05:ec:f5:a0:7f:
5a:ef:4a:4a:6c:f4:62:e2:ad:b6:da:d9:7e:db:ca:74:79:f1:
30:a2:a5:e8:a9:4e:0a:8d:42:ce:fe:69:9e:72:fa:31:00:cf:
d8:d9:a3:26:50:a2:4e:26:21:81:b1:fe:54:67:b5:df:da:52:
c1:97:58:4d:32:63:df:94:b1:37:c6:e9:aa:b7:c4:ad:84:48:
39:a0:b7:36:b0:a0:35:53:74:78:fc:78:94:9c:f8:d2:96:5d:
e4:25:3d:63:40:4e:c6:98:65:74:f2:37:e7:41:30:94:3a:67:
18:9d:49:3c:45:23:15:a2:d3:9a:29:d7:c6:5c:99:e9:04:cd:
89:3f:a2:de:aa:b4:4f:41:8b:af:d8:d9:45:b0:6f:5a:02:6d:
cd:1e:ea:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org