Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/FKZl70UDjUsHEHXnfUuioDoUfxs.roa
File: FKZl70UDjUsHEHXnfUuioDoUfxs.roa (raw, json)
Hash identifier: GYAnfBDMzQCIw2V4BmzIT/5UY3Jqfkv/mSPXXOrzWlc=
Subject key identifier: 14:A6:65:EF:45:03:8D:4B:07:10:75:E7:7D:4B:A2:A0:3A:14:7F:1B
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 018E3C8492F0C70D3C87F9A1B67875450609
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/FKZl70UDjUsHEHXnfUuioDoUfxs.roa
Signing time: Thu 14 Mar 2024 10:31:45 +0000
ROA not before: Thu 14 Mar 2024 10:31:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8311
IP address blocks: 185.251.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 09:38:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3c:84:92:f0:c7:0d:3c:87:f9:a1:b6:78:75:45:06:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Mar 14 10:31:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14a665ef45038d4b071075e77d4ba2a03a147f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:86:ba:fa:2a:21:61:7e:33:b5:9b:53:31:7e:
c7:3f:18:b3:10:fb:b4:71:c2:7f:12:f9:a6:6c:92:
8c:16:a5:62:ac:70:0e:ad:5f:74:43:b1:59:f8:19:
0a:62:c2:9b:95:a4:71:70:00:e8:d3:de:1b:7f:67:
cc:1c:fe:be:c6:a8:fa:6e:25:7c:a1:aa:2b:d8:d5:
2d:6e:33:08:4d:a5:ce:b1:c6:60:f9:35:e4:e0:f6:
82:b6:1c:30:99:4d:e5:5c:45:da:d6:5d:ef:1d:d2:
79:d9:2c:f9:b9:f3:9c:20:93:1e:bb:73:f6:a5:35:
39:94:75:32:d4:31:3f:d0:08:39:83:25:a0:da:41:
19:94:e2:ad:b4:e3:bd:71:ce:b5:40:00:e5:7f:0d:
bf:07:5f:42:0c:af:a8:6f:6f:cc:e0:bc:b8:07:43:
84:9b:e0:26:9c:a5:38:8c:c7:81:43:97:84:4f:9e:
35:02:59:ab:a6:49:40:13:2f:61:22:1f:f7:84:cf:
77:63:33:0d:3c:05:24:cb:8d:df:65:fa:cb:a5:6b:
95:63:5a:a1:6f:10:a1:d2:64:03:bc:36:8f:ba:d5:
00:00:5d:ea:43:8f:b4:63:8a:5a:10:6c:30:50:14:
4a:f7:f8:1e:da:c9:41:c8:71:88:03:7b:54:eb:92:
27:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A6:65:EF:45:03:8D:4B:07:10:75:E7:7D:4B:A2:A0:3A:14:7F:1B
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/FKZl70UDjUsHEHXnfUuioDoUfxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.80.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:af:d6:84:db:03:40:ae:5b:4d:b0:68:c5:c0:d6:c7:34:bd:
d1:b2:7a:0f:86:99:f5:da:32:a8:04:b6:c0:5f:7a:85:03:71:
4e:a9:14:18:09:52:88:32:ee:ad:5c:3d:51:f2:1f:ce:bc:9a:
17:f0:40:66:b1:1b:9b:79:76:14:5c:a6:58:88:65:d2:1b:ab:
75:d0:d0:13:12:f7:f7:43:7b:cc:7e:ca:74:81:b9:aa:aa:66:
54:05:d8:2d:42:3f:c9:5d:e8:85:eb:30:0c:59:00:44:32:72:
60:c8:ba:2c:37:b4:b6:e5:a0:1d:3f:c2:c2:ab:b8:8f:00:d0:
c6:85:d1:62:97:30:35:aa:04:93:7e:db:bd:5c:b4:36:e5:70:
b3:f3:1f:5f:65:37:2a:1f:04:20:1a:45:13:cf:39:91:aa:00:
c2:09:d2:d1:c6:13:ea:3a:ec:67:7b:78:b2:72:cf:b1:4f:38:
25:05:84:ad:fa:ba:b9:5e:58:04:52:39:33:ed:f9:7d:32:ce:
45:5e:8a:7e:d4:26:93:d9:76:87:d7:ac:a2:93:36:b2:a7:71:
20:84:cb:8d:49:0e:ef:f9:5f:8d:c9:7d:89:dc:4d:31:b3:c7:
22:94:f4:a0:38:3b:84:64:f6:61:e7:53:fc:06:8b:56:07:d6:
0c:ce:f9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:21 2024 by rpki-client on console-fra.rpki-client.org