Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/FugAl9exY3kyTpdw5zeaX5BsfAI.roa
File: FugAl9exY3kyTpdw5zeaX5BsfAI.roa (raw, json)
Hash identifier: B1OFJDxiNEvG3P7XI0egqo79VgTF73Ip+1FWruRZU6c=
Subject key identifier: 16:E8:00:97:D7:B1:63:79:32:4E:97:70:E7:37:9A:5F:90:6C:7C:02
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01856C65F7EA60C357CA0680E5572F2ED4B3
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/FugAl9exY3kyTpdw5zeaX5BsfAI.roa
Signing time: Sun 01 Jan 2023 08:15:00 +0000
ROA not before: Sun 01 Jan 2023 08:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208604
IP address blocks: 188.68.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:f7:ea:60:c3:57:ca:06:80:e5:57:2f:2e:d4:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 08:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16e80097d7b16379324e9770e7379a5f906c7c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fd:59:cc:ca:e4:6c:aa:6a:b1:6a:4f:00:26:
87:df:3c:81:32:22:ee:3f:8e:42:76:d8:93:e1:05:
74:3f:ee:ae:22:8b:bf:8d:b7:69:b3:f4:c5:d6:af:
60:b4:66:04:ff:6c:ba:8f:9b:c6:b1:32:86:67:05:
30:fc:2b:ed:3e:d5:45:11:be:de:05:90:8a:2b:7f:
0a:8f:ae:62:6c:09:00:3f:f8:82:61:b8:00:62:06:
07:08:46:9d:ff:fc:9f:62:16:2a:bf:29:41:f5:b2:
2f:77:1f:7d:09:df:51:22:e3:06:d0:58:58:c1:96:
ca:f0:da:70:fa:4f:cb:07:25:c7:1e:85:18:68:d8:
ea:f4:57:65:2e:17:a0:f8:42:24:e5:08:17:5b:d4:
d4:85:ac:eb:5f:a9:aa:60:3b:c4:1e:c3:a7:5c:e8:
cd:a3:5a:cc:4f:c2:f4:f4:b6:76:0b:cf:22:07:d3:
ac:d3:18:5f:4d:5e:b7:53:27:71:0b:c5:ce:8e:99:
60:10:cf:dc:3b:9d:8a:71:58:4e:59:57:8e:82:24:
e3:3a:a6:d6:2d:cc:b2:b7:11:4f:1c:ea:70:2c:d3:
6b:18:63:28:26:4a:1f:07:6f:1d:04:74:a5:67:b3:
1f:f0:ae:47:59:bc:f5:a2:57:58:1b:a0:16:1f:06:
d4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E8:00:97:D7:B1:63:79:32:4E:97:70:E7:37:9A:5F:90:6C:7C:02
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/FugAl9exY3kyTpdw5zeaX5BsfAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.68.6.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:ad:29:36:4b:87:a7:5f:28:94:33:a0:30:07:4c:84:5a:94:
2c:9f:9e:f7:0c:b8:d1:1c:63:0b:5d:b1:b2:9d:15:90:5b:82:
ac:68:a3:d7:bc:0f:2e:f7:1b:2b:b1:80:c1:e5:20:60:a2:67:
0f:d3:d6:79:e6:14:0f:3c:68:e4:c5:5f:9b:88:5b:1e:f2:96:
90:61:fc:0d:b1:b5:61:0f:c6:35:92:24:d5:c7:77:2c:35:1c:
e4:55:02:22:87:7e:51:41:1a:f3:ce:39:ad:1a:6c:4a:5d:d5:
f3:d9:8c:32:2d:7c:65:b9:e2:d5:71:04:09:c0:de:b3:06:05:
eb:de:1e:ce:5d:01:2e:9e:ce:22:62:ca:0d:48:3a:5e:90:bb:
35:24:4a:b9:17:bc:bf:5d:c0:0e:7c:06:1c:95:0b:ef:82:42:
49:c9:0b:f0:aa:ce:e5:1d:9b:95:24:a6:b8:b6:51:2d:a2:d4:
07:ee:c4:20:2c:55:a4:99:c1:0b:69:66:bd:91:0f:85:be:9a:
d6:12:ce:9a:05:04:61:6d:3b:f1:f6:84:71:24:b8:be:46:d4:
a4:a1:40:a2:b6:f7:3e:15:71:19:7a:7b:2c:bf:1a:2d:6a:1e:
1c:13:14:7b:4f:0a:f2:f9:e4:22:97:2c:64:28:b8:2d:0f:d8:
b9:87:40:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:21 2024 by rpki-client on console-ams.rpki-client.org