Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/FGamImL4Es8MKatIWAzK7Ka7gE8.roa
File: FGamImL4Es8MKatIWAzK7Ka7gE8.roa (raw, json)
Hash identifier: nyNIJ78hdQWWqrFA7jPEdG0V7THwuPKFywIdPVMdVAg=
Subject key identifier: 14:66:A6:22:62:F8:12:CF:0C:29:AB:48:58:0C:CA:EC:A6:BB:80:4F
Certificate issuer: /CN=63f14f8e144c6d50c38ab4faff5ac6e547fe1d47
Certificate serial: 018C3F4322A1C88E5F3F09756448627F2132
Authority key identifier: 63:F1:4F:8E:14:4C:6D:50:C3:8A:B4:FA:FF:5A:C6:E5:47:FE:1D:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_FPjhRMbVDDirT6_1rG5Uf-HUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/FGamImL4Es8MKatIWAzK7Ka7gE8.roa
Signing time: Wed 06 Dec 2023 13:13:33 +0000
ROA not before: Wed 06 Dec 2023 13:13:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51984
IP address blocks: 46.253.36.0/24 maxlen: 24
46.253.35.0/24 maxlen: 24
46.253.34.0/24 maxlen: 24
46.253.33.0/24 maxlen: 24
46.253.32.0/24 maxlen: 24
46.253.38.0/24 maxlen: 24
46.253.37.0/24 maxlen: 24
46.253.39.0/24 maxlen: 24
185.58.172.0/24 maxlen: 24
185.58.175.0/24 maxlen: 24
185.58.174.0/24 maxlen: 24
185.58.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:43:22:a1:c8:8e:5f:3f:09:75:64:48:62:7f:21:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f14f8e144c6d50c38ab4faff5ac6e547fe1d47
Validity
Not Before: Dec 6 13:13:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1466a62262f812cf0c29ab48580ccaeca6bb804f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:46:4b:2d:60:87:92:db:ee:2d:bf:10:8e:ae:
e0:38:b4:85:21:c1:38:f3:60:f6:d9:47:a9:94:dc:
3b:de:75:03:e5:b1:9f:d6:2a:21:3b:fe:d2:db:bd:
e5:61:70:44:ed:a1:5e:78:9a:0a:f2:65:0e:40:ac:
de:68:8e:ed:be:bd:3a:6b:db:ed:56:07:8b:58:d0:
b1:63:00:dc:34:de:f6:dd:5a:68:6d:4a:19:09:79:
21:80:f4:06:e5:6a:e7:71:26:48:d5:ed:d0:18:3d:
64:d0:99:42:2c:ba:8a:13:07:c1:ba:00:e0:62:fe:
eb:68:6b:e1:a2:26:a3:89:dd:70:c2:22:6d:4e:4e:
72:ba:ab:9c:1f:d6:bb:cf:0e:ab:74:4d:6c:88:4f:
13:b0:f6:2e:4f:2e:a3:19:3e:ca:6b:44:2e:6d:09:
e3:df:29:59:6a:0f:91:07:2d:5c:29:cc:9e:d5:85:
bc:c1:e4:8e:08:6d:85:16:fd:57:62:8d:59:f6:81:
d3:f1:c4:33:57:bd:02:53:6f:20:7a:1d:71:30:f5:
b8:c8:e4:f3:f8:b4:55:db:02:e1:a1:e7:58:ba:c9:
25:dc:73:1c:ef:1a:48:b4:9c:53:23:d7:dd:c7:0b:
3e:b8:65:53:f7:83:af:3d:94:37:3c:c5:8c:dc:44:
f5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:A6:22:62:F8:12:CF:0C:29:AB:48:58:0C:CA:EC:A6:BB:80:4F
X509v3 Authority Key Identifier:
keyid:63:F1:4F:8E:14:4C:6D:50:C3:8A:B4:FA:FF:5A:C6:E5:47:FE:1D:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_FPjhRMbVDDirT6_1rG5Uf-HUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/FGamImL4Es8MKatIWAzK7Ka7gE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/Y_FPjhRMbVDDirT6_1rG5Uf-HUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.32.0/21
185.58.172.0/22
Signature Algorithm: sha256WithRSAEncryption
68:04:93:9d:f6:23:25:1a:d4:54:c5:40:62:2a:4c:f5:44:a7:
66:ef:e3:85:87:90:eb:a7:67:6d:96:0b:c0:73:d9:1c:6c:46:
98:0e:5f:9b:d7:2a:a7:e4:49:03:2a:61:28:04:27:8b:dd:6b:
ad:d2:e5:43:31:79:2c:0c:be:2e:81:3e:23:4d:2d:80:8d:3a:
26:a1:13:6e:14:ad:48:d1:ba:b4:ca:78:84:7b:ba:52:f3:a4:
6b:cf:db:b3:e4:8d:eb:07:e6:dc:2c:60:ab:27:56:45:29:b8:
0a:d5:52:9c:26:87:b8:cb:e4:64:c4:9b:56:34:27:b7:37:1c:
f6:9d:ad:eb:6e:85:13:11:42:e5:ac:18:86:77:c2:e0:cc:6c:
87:99:00:e7:a0:45:81:f2:00:58:e6:f7:77:1b:d4:dd:e5:c2:
9e:df:3e:dd:e9:03:70:8f:2c:59:7b:31:ee:2a:3a:af:8e:11:
75:1e:5f:34:eb:67:b9:01:0b:57:d2:98:f5:6e:a7:c6:ab:51:
cd:7c:f0:8c:53:b4:3d:33:5f:a9:ad:ac:17:5e:80:a2:38:a9:
e9:04:8f:39:79:5a:16:c4:c7:85:48:95:fc:12:0a:2a:6d:39:
6a:b5:ac:21:73:da:f9:3a:5f:33:20:25:04:3e:8b:3c:7c:ca:
c3:33:f0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org