Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/FoT1XD7cIuFwj26OrRtS_fu2ecc.roa
File: FoT1XD7cIuFwj26OrRtS_fu2ecc.roa (raw, json)
Hash identifier: wHVXyI6E+itvcNremhWPkNK7E7eE1Rd7cCioHY7Wt7M=
Subject key identifier: 16:84:F5:5C:3E:DC:22:E1:70:8F:6E:8E:AD:1B:52:FD:FB:B6:79:C7
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 0189DF4F86FD801F66DEFDEDEE95C996FFDA
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/FoT1XD7cIuFwj26OrRtS_fu2ecc.roa
Signing time: Thu 10 Aug 2023 11:57:58 +0000
ROA not before: Thu 10 Aug 2023 11:57:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30738
IP address blocks: 109.248.61.0/24 maxlen: 24
195.211.53.0/24 maxlen: 24
46.8.219.0/24 maxlen: 24
188.130.182.0/24 maxlen: 24
2001:1468:8000::/36 maxlen: 36
2001:1468::/32 maxlen: 33
Validation: Failed, certificate revoked on Thu 10 Aug 2023 13:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:df:4f:86:fd:80:1f:66:de:fd:ed:ee:95:c9:96:ff:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Aug 10 11:57:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1684f55c3edc22e1708f6e8ead1b52fdfbb679c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:07:53:6d:27:de:08:a7:c7:d4:25:fa:09:59:
3a:06:11:f7:0e:7a:0f:11:40:fc:65:3e:91:ab:fc:
12:bf:11:0a:03:fc:f4:0c:5c:76:1c:79:ce:4a:5d:
46:28:18:a3:0c:28:fd:9e:f7:5e:5a:6e:6f:b1:9f:
54:03:70:f1:6d:c5:ba:58:f3:f6:6e:e8:55:de:72:
17:9b:57:4c:e4:a5:b3:a0:d0:55:a2:8b:29:80:f6:
48:84:8c:61:7b:ea:73:2b:42:54:4d:7c:35:9a:82:
00:72:e1:16:a3:a5:93:42:3b:69:bd:1c:5c:44:17:
99:77:5a:e5:5d:b3:a7:e9:a5:27:4c:1e:86:ad:9e:
5a:f5:d3:5b:68:8d:4b:ed:6a:f9:e3:37:ec:3a:2d:
af:6f:e4:fb:40:2e:e1:0b:84:e9:66:7e:cb:d7:73:
43:0d:f0:67:5d:d6:86:1c:c1:aa:7a:43:42:a4:d5:
28:75:f5:5d:8f:0c:16:4b:16:69:a0:7d:5e:a9:5e:
9c:b5:26:ee:9c:5f:37:61:e0:63:5f:c8:fc:ec:4a:
71:10:f8:c8:77:20:03:b4:16:89:4c:3e:42:13:7e:
7d:82:fc:09:f0:5b:fd:f9:26:f6:f0:9b:9f:80:2c:
37:6c:87:5f:74:b3:e3:51:24:75:43:14:17:34:05:
07:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:84:F5:5C:3E:DC:22:E1:70:8F:6E:8E:AD:1B:52:FD:FB:B6:79:C7
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/FoT1XD7cIuFwj26OrRtS_fu2ecc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.219.0/24
109.248.61.0/24
188.130.182.0/24
195.211.53.0/24
IPv6:
2001:1468::/32
Signature Algorithm: sha256WithRSAEncryption
00:5c:fb:7e:2f:8b:8b:9c:e3:78:a1:a9:1c:40:13:1d:af:eb:
17:98:5a:7d:76:8c:1f:84:f3:51:6b:3d:6a:3e:cf:f5:84:6b:
ac:be:15:77:ac:65:78:be:ed:01:d2:8c:44:6f:b1:74:dd:5b:
88:d2:0a:2c:03:66:7a:a7:06:23:6d:f8:1f:f5:f1:0d:29:02:
18:c1:5a:09:a8:6a:4e:80:a3:dd:eb:1d:c2:e6:85:33:1a:b8:
f3:2a:3c:1c:7c:79:83:b5:a3:2d:6f:63:38:de:a2:b3:ca:b8:
7f:23:d5:89:d6:2e:dc:af:9c:2f:d4:0e:99:56:45:ee:e0:2f:
8b:fc:0e:89:50:7a:97:c3:d1:29:11:8b:24:6b:b2:55:46:92:
f6:b2:37:4f:73:86:d7:23:fc:71:c4:f2:a3:9f:84:47:ee:74:
49:41:9e:8d:71:b7:16:ad:13:9c:fd:22:b1:0e:af:a7:97:ff:
36:1b:3c:dc:9d:6b:48:f9:6b:1b:5d:d0:e0:70:eb:36:80:c3:
9b:16:4a:ca:9a:af:19:c7:80:79:1b:76:60:be:b4:76:91:00:
7e:22:33:0b:16:21:0f:30:8f:70:10:f7:70:8d:f7:de:a0:48:
28:83:d2:cb:6d:b2:a4:28:b0:1d:6e:a7:cf:7f:e1:da:68:ec:
48:57:25:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org