Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/fWFjpe7C2ck8S2JjXnqP4DNE-_o.roa
File: fWFjpe7C2ck8S2JjXnqP4DNE-_o.roa (raw, json)
Hash identifier: fUNrTHlVlXR9n5T9k/GM4sgHb4VMvHvkmRdEP6tYnhg=
Subject key identifier: 7D:61:63:A5:EE:C2:D9:C9:3C:4B:62:63:5E:7A:8F:E0:33:44:FB:FA
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 01867B2524684BC9435599A1BC2C87B63E95
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/fWFjpe7C2ck8S2JjXnqP4DNE-_o.roa
Signing time: Wed 22 Feb 2023 22:01:17 +0000
ROA not before: Wed 22 Feb 2023 22:01:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30738
IP address blocks: 195.211.53.0/24 maxlen: 24
185.17.65.0/24 maxlen: 24
188.130.254.0/24 maxlen: 24
188.130.182.0/24 maxlen: 24
2001:1468:8000::/36 maxlen: 36
2001:1468::/32 maxlen: 33
Validation: Failed, certificate revoked on Wed 01 Mar 2023 02:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7b:25:24:68:4b:c9:43:55:99:a1:bc:2c:87:b6:3e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Feb 22 22:01:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d6163a5eec2d9c93c4b62635e7a8fe03344fbfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fc:bb:e0:0b:f4:3f:aa:98:09:b8:54:b6:5b:
e1:40:df:28:3d:cd:29:e3:41:d3:3c:ab:f6:91:f3:
1d:a9:96:f5:4f:6a:15:d5:da:5e:01:2b:11:0e:cd:
84:92:83:30:ad:84:4a:48:69:51:6b:eb:e4:c4:a7:
52:47:71:af:80:b4:81:e1:0a:f3:c7:45:41:c5:b8:
0b:e1:c1:0e:4e:82:4c:f2:5a:4a:77:a4:0b:3b:bd:
f3:2a:09:8e:52:ae:5f:79:ed:3f:24:54:77:a8:0f:
f7:15:20:dd:8f:08:f8:58:bb:49:d4:0e:63:8d:e6:
25:10:d5:d7:75:8e:52:04:c5:83:1a:cc:c9:71:40:
55:36:c5:4f:07:59:79:6f:59:1b:1a:51:19:60:8d:
a0:7d:5b:13:91:60:41:b2:b0:64:76:72:35:e5:de:
1d:3d:f0:a0:f9:7a:ba:f5:d4:3f:e9:df:57:1d:e5:
89:cf:a5:de:f9:4b:b0:b9:35:c2:85:88:d6:d5:0f:
f0:61:eb:d1:2a:0d:2e:bd:d1:f9:1d:55:8d:a7:66:
5d:31:77:8e:e0:dd:d5:2c:88:f0:0e:1e:3b:c0:13:
4b:d5:a2:ce:ed:b0:fe:cf:22:b7:23:d4:03:3a:dd:
bd:48:a5:ad:83:e7:45:26:c5:21:8e:9f:0b:c6:b0:
dd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:61:63:A5:EE:C2:D9:C9:3C:4B:62:63:5E:7A:8F:E0:33:44:FB:FA
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/fWFjpe7C2ck8S2JjXnqP4DNE-_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.65.0/24
188.130.182.0/24
188.130.254.0/24
195.211.53.0/24
IPv6:
2001:1468::/32
Signature Algorithm: sha256WithRSAEncryption
39:9a:e6:05:34:70:cb:07:c9:3a:14:27:5f:8c:0a:9e:25:a7:
99:20:57:bd:5d:4d:41:ab:57:bf:5b:c9:14:4f:cf:1b:ae:ac:
9d:ff:e1:ef:49:b0:8b:e3:6d:ca:c9:9c:2e:29:39:43:9c:7a:
36:9c:a8:ec:85:63:a7:ac:2c:08:ea:41:b6:26:4a:94:2c:44:
71:17:e3:9c:42:9d:04:bd:e3:9d:93:25:2e:31:a8:95:12:99:
26:d2:0b:0a:24:90:a3:28:37:8d:50:43:5c:3a:e7:df:8c:cd:
6e:1d:44:d8:e4:dd:fb:e7:b8:8a:74:0a:2c:03:ef:a4:cb:4a:
57:46:fe:f2:11:d8:8d:aa:f6:c3:5b:eb:6c:3b:6d:2a:a6:ae:
9a:95:e7:8d:68:76:a4:13:25:00:96:f7:d4:04:7c:74:5e:9d:
17:27:bc:dc:cb:19:40:81:df:ad:b9:30:b5:ec:8d:e8:af:d4:
71:b5:fd:60:3e:3c:b6:d2:13:0a:97:b3:7e:9d:cb:25:7a:a9:
48:65:5c:7d:aa:d5:e3:79:4e:3d:73:bb:9e:7c:d2:b6:41:dc:
ef:64:8b:2e:7f:20:68:fb:a6:ea:f2:b2:fb:1c:c4:b7:3e:11:
48:97:b4:54:21:53:88:b8:4a:63:6f:c3:ff:b6:c4:ff:48:87:
a3:47:24:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org