Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/FObB-5BTvH5Q1B49GU-SVswQNzw.roa
File: FObB-5BTvH5Q1B49GU-SVswQNzw.roa (raw, json)
Hash identifier: tGdjXA24GzWk6kO+SVzk9ZGpk0YkJpf1iA718C+XAF4=
Subject key identifier: 14:E6:C1:FB:90:53:BC:7E:50:D4:1E:3D:19:4F:92:56:CC:10:37:3C
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191A208F945A93F7B2D43BC17A86A360733
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/FObB-5BTvH5Q1B49GU-SVswQNzw.roa
Signing time: Fri 30 Aug 2024 06:46:22 +0000
ROA not before: Fri 30 Aug 2024 06:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12722
IP address blocks: 5.182.116.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.90.44.0/24 maxlen: 24
45.90.47.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
46.149.174.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
83.171.212.0/22 maxlen: 22
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
212.115.48.0/24 maxlen: 24
212.115.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 10:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:08:f9:45:a9:3f:7b:2d:43:bc:17:a8:6a:36:07:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 30 06:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14e6c1fb9053bc7e50d41e3d194f9256cc10373c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1c:ba:00:60:85:4f:59:fd:66:64:08:33:f0:
e1:58:6c:73:5a:8c:06:d0:35:0e:5a:04:77:9d:83:
a5:3d:03:f8:48:6f:cf:a5:41:a7:b3:7f:f1:b7:d7:
80:11:6b:e5:78:cb:1b:ee:a4:b7:42:d1:88:da:26:
57:46:0a:b9:02:94:8a:71:94:7e:66:e3:05:ca:97:
42:54:70:d5:c6:b4:7d:ba:3d:4b:f6:04:a1:ec:51:
e3:a9:fd:a0:70:6b:61:b6:95:ee:d3:56:24:6b:30:
e3:83:d4:b3:82:fc:99:4d:5c:ea:c2:e7:08:c4:81:
62:e6:be:83:a7:36:75:f0:9e:58:f6:86:6d:1a:12:
dc:2d:3f:1c:a2:2a:96:a5:b1:dd:91:2e:97:80:b5:
95:97:df:4a:44:49:00:de:30:6c:f8:4c:7d:10:32:
e2:bd:f6:24:36:66:37:ba:77:35:a2:1a:95:c2:56:
d4:1d:f7:fe:64:74:88:b8:49:d9:d7:5a:52:3a:74:
30:ac:9c:96:0e:9a:ff:4c:69:a9:f2:bd:cc:01:ef:
c1:8b:ab:00:ae:a9:89:a9:42:99:ed:a8:00:6f:ab:
9f:3a:08:96:59:a2:42:3b:28:19:39:2b:42:72:f8:
4e:54:ed:3a:d4:71:87:bb:5f:8e:e3:fe:d9:40:2a:
c9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E6:C1:FB:90:53:BC:7E:50:D4:1E:3D:19:4F:92:56:CC:10:37:3C
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/FObB-5BTvH5Q1B49GU-SVswQNzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.86.3.0/24
45.90.44.0/24
45.90.47.0/24
45.128.130.0/23
46.149.174.0/24
62.204.32.0/24
83.171.212.0/22
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
212.60.6.0/24
212.107.24.0/24
212.115.48.0/24
212.115.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:2b:3d:dc:3c:fd:ce:9a:a7:c9:c2:80:01:26:4c:c6:a0:8e:
26:9d:98:bb:76:2c:14:d1:09:09:65:f6:78:bc:ea:4f:6e:39:
f8:64:f6:c2:3e:01:cb:c4:7a:eb:5d:9a:08:d4:6f:72:0a:ed:
22:7e:8b:44:ae:6c:2b:cc:4b:aa:0f:4a:1f:f4:d1:ae:76:2b:
a8:68:2f:5d:c6:c5:97:d7:cc:db:f2:76:02:5a:52:17:cc:7f:
78:d8:97:ce:a7:80:b9:9e:37:35:52:43:08:a3:37:68:75:90:
71:ca:80:dd:ff:88:43:0e:6e:6c:52:80:29:31:fa:ac:1d:f7:
e2:c3:2a:e2:c9:b3:63:6d:f2:ca:3f:6e:64:7b:49:5f:a5:c0:
5f:6d:22:d3:d3:15:73:95:86:22:39:e6:f4:70:20:f9:9e:9b:
71:7a:36:58:9f:07:98:e6:a8:bc:99:97:b9:d5:78:32:ab:fd:
a0:97:85:46:71:34:bb:82:c4:81:d7:08:bb:3c:e7:36:64:1b:
43:7b:e2:7a:53:86:bc:a7:ec:e4:44:e7:90:48:48:33:e1:bb:
97:e0:55:43:56:d6:5a:df:83:49:f4:19:43:77:21:cc:d1:1f:
91:2b:be:f8:ed:f3:6e:bd:33:dc:fc:45:61:3a:b6:1b:cd:57:
72:93:9d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 12:52:54 2024 by rpki-client on console-ams.rpki-client.org