Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/FDwyQOrK4wBZIxSnehRAd3fUEAs.roa
File: FDwyQOrK4wBZIxSnehRAd3fUEAs.roa (raw, json)
Hash identifier: GnMtCzDSe/SugYBVaORrIugkJZD90Lmea1VAEnGlPWA=
Subject key identifier: 14:3C:32:40:EA:CA:E3:00:59:23:14:A7:7A:14:40:77:77:D4:10:0B
Certificate issuer: /CN=d513872512f1f2d037b401c2603ca8994e721e55
Certificate serial: 0185783A404FFF1048D099B6A967AFD7DBC1
Authority key identifier: D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/FDwyQOrK4wBZIxSnehRAd3fUEAs.roa
Signing time: Tue 03 Jan 2023 15:22:41 +0000
ROA not before: Tue 03 Jan 2023 15:22:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202613
IP address blocks: 185.8.196.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:78:3a:40:4f:ff:10:48:d0:99:b6:a9:67:af:d7:db:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d513872512f1f2d037b401c2603ca8994e721e55
Validity
Not Before: Jan 3 15:22:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=143c3240eacae300592314a77a14407777d4100b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:db:93:6c:ea:f0:62:c9:a3:9b:5d:80:46:35:
01:e7:56:01:7a:6a:64:8c:90:49:5c:13:32:9c:10:
52:73:a5:a6:75:0d:e8:c5:e8:0c:07:48:de:de:10:
4f:27:a3:1c:c6:08:ab:8d:73:55:27:7c:4d:17:8b:
f1:2d:0b:b3:19:25:f4:29:e9:47:b3:93:28:d3:c3:
ac:d2:dd:9b:e2:00:91:d4:7d:d4:c8:8e:d9:ee:0e:
8b:ac:27:00:82:ad:f9:ac:2f:d5:b1:b0:74:ac:20:
48:73:de:be:f9:9c:53:00:9d:f8:06:5d:87:5a:92:
db:8a:3e:49:b9:6b:be:2f:0f:2a:82:dc:62:db:7e:
c9:c4:ab:94:b1:6a:e0:e5:12:0f:c8:93:13:0e:e1:
4a:e4:bc:d2:1b:1f:79:8f:4b:81:ba:92:3a:c4:4a:
bd:73:5b:8a:fb:d5:8e:4b:56:ba:f0:ac:02:24:62:
2f:00:2c:c9:68:5d:1c:85:33:fd:0b:a6:c9:3b:8b:
e8:f5:30:95:3a:c5:d9:5a:80:10:1e:24:a4:07:00:
14:61:ae:b7:96:c0:b0:68:a7:e3:87:67:0d:9b:10:
f0:7f:f5:b2:42:24:f7:42:db:f1:4b:b1:32:30:ed:
52:a7:52:df:04:92:3f:2e:81:8d:93:24:19:b9:d7:
f9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3C:32:40:EA:CA:E3:00:59:23:14:A7:7A:14:40:77:77:D4:10:0B
X509v3 Authority Key Identifier:
keyid:D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/FDwyQOrK4wBZIxSnehRAd3fUEAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.196.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:74:b5:2e:08:6f:af:94:c0:e0:f9:70:e4:23:f0:dc:9a:a6:
52:55:e2:f1:0e:2f:d4:65:df:c6:ad:f7:eb:9d:c2:85:fb:4c:
57:5f:70:d9:58:63:da:f1:d4:b6:0a:83:83:7b:2b:66:e3:fd:
32:b5:6f:62:76:4f:57:61:f3:9f:32:0e:2a:96:99:f5:49:f5:
a2:f0:13:88:79:e4:43:71:c7:f9:0b:62:48:59:e3:74:7f:e9:
af:9e:e6:72:ba:73:00:e1:ec:6d:6a:25:1f:ab:80:ba:d9:a3:
d3:c0:ce:49:34:47:15:51:73:fe:0e:bf:3f:98:c9:b1:74:e6:
b8:af:3c:12:ac:6d:91:81:10:aa:b6:62:b7:6f:e3:f5:6b:96:
43:4a:36:37:35:9c:96:4e:8e:9d:34:b9:5a:97:ce:64:db:5e:
84:37:28:72:9f:77:71:c1:de:ca:51:2f:19:34:7f:1d:b7:3b:
77:7d:0b:66:5e:b6:51:6a:e3:77:e4:1a:8d:92:ae:1c:c1:09:
55:f5:d7:30:d0:22:e3:1c:87:93:13:c1:f2:cb:f8:95:28:30:
9c:92:b6:59:16:7f:8a:87:17:a6:c9:fc:1a:9c:36:20:49:58:
0a:31:4a:76:23:8a:82:c2:b1:85:f3:dc:9e:36:e6:b2:25:32:
b5:4c:63:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:48 2023 by rpki-client on console-fra.rpki-client.org