Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/fggRwuqenmyoYuz33ZNWdevpqYc.roa
File: fggRwuqenmyoYuz33ZNWdevpqYc.roa (raw, json)
Hash identifier: 4a8CQRHC4HeuHmv8j1UhcBIDqqQvr2LasYjMFHlPb/Q=
Subject key identifier: 7E:08:11:C2:EA:9E:9E:6C:A8:62:EC:F7:DD:93:56:75:EB:E9:A9:87
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01856CAF22F24268454D5EED375CDAC24E20
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/fggRwuqenmyoYuz33ZNWdevpqYc.roa
Signing time: Sun 01 Jan 2023 09:34:55 +0000
ROA not before: Sun 01 Jan 2023 09:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2118
IP address blocks: 91.216.185.0/24 maxlen: 24
86.107.168.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
62.192.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jan 2023 14:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:22:f2:42:68:45:4d:5e:ed:37:5c:da:c2:4e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 09:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e0811c2ea9e9e6ca862ecf7dd935675ebe9a987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:62:19:df:bc:e8:55:0b:74:b5:47:2b:ea:71:
26:69:f2:a7:ac:08:77:b9:47:18:ad:70:0a:61:68:
c6:28:e9:59:44:8b:81:5c:58:dd:61:c4:f5:c4:c8:
4d:15:7b:77:d7:e2:33:cf:ed:e8:e3:61:40:83:50:
39:9f:2f:92:45:dd:67:ce:b2:a5:28:6f:18:a9:9c:
31:d4:71:72:0c:7d:b6:0e:f7:32:ab:06:70:da:69:
16:ce:8d:42:bb:aa:c4:d4:53:48:4e:55:59:78:0b:
6c:34:03:20:86:cc:bb:fb:95:0d:06:ef:87:7b:70:
68:8a:02:d3:5a:34:ca:83:a0:f4:d4:3c:7e:e3:c6:
48:da:6c:fb:2a:47:7c:b3:b1:86:57:a8:1a:72:63:
89:8c:a9:71:63:19:06:91:0e:f7:d3:59:f4:57:0f:
f0:b5:03:55:5c:3b:89:70:91:c8:62:25:0f:08:11:
4f:dd:c3:18:f3:1b:a6:5f:60:12:85:5b:7f:c6:5e:
c6:06:38:68:d3:60:a2:e1:04:2e:9c:38:73:de:cd:
99:fc:c8:bd:e1:3c:82:d6:7f:69:63:bb:19:58:d8:
5e:92:48:79:ab:28:b6:09:f3:a4:ab:83:41:cf:b1:
2d:63:4f:58:d7:7a:d2:3c:50:42:da:e5:df:20:8d:
2b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:08:11:C2:EA:9E:9E:6C:A8:62:EC:F7:DD:93:56:75:EB:E9:A9:87
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/fggRwuqenmyoYuz33ZNWdevpqYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.152.0/24
86.107.168.0/24
91.216.185.0/24
93.114.244.0/24
195.88.89.0/24
Signature Algorithm: sha256WithRSAEncryption
98:4a:02:96:a7:71:e8:b3:c4:ad:25:71:92:16:64:c3:06:eb:
d0:68:7c:62:55:9c:42:bd:93:c2:61:22:c1:d6:eb:10:cd:b6:
8a:c5:9e:68:8e:6e:d2:4e:04:72:4a:ec:71:8c:b2:8e:d9:c6:
05:a2:36:1b:bf:d0:57:4e:2a:e6:25:39:02:bd:ea:e4:8d:34:
bf:37:97:b5:f1:fa:5e:a4:97:b3:b0:47:ff:03:84:0b:73:dc:
4b:7a:0b:d6:d6:3c:b2:50:ec:2d:9a:10:05:b0:7f:39:07:ac:
d8:78:30:d8:bf:57:28:ee:3f:d5:29:c2:e6:a9:53:d9:f0:52:
16:31:0a:a1:2a:7e:85:9a:c5:38:e5:a5:53:96:1e:9a:31:54:
3f:4f:8d:dc:27:44:98:74:de:71:d0:92:d3:26:34:8d:08:d3:
a3:4e:fa:15:95:da:a9:35:e1:0a:09:1f:96:d8:dd:14:bb:f4:
85:58:26:1a:08:3d:91:64:c7:10:aa:85:38:2d:c7:7b:ed:f1:
c4:e5:b4:0f:64:94:f6:f5:36:04:a5:ff:dc:69:9d:2b:75:85:
a9:08:2b:60:1e:c7:32:5a:31:42:5a:ab:94:36:07:95:c5:91:
97:88:89:c7:36:21:2c:70:30:6d:50:9c:4e:2c:84:04:dc:a0:
34:aa:ed:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org