Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/ftAmWtTohRrWnjnVKgGb0Lwncos.roa
File: ftAmWtTohRrWnjnVKgGb0Lwncos.roa (raw, json)
Hash identifier: ntGZaLnnOY2mTswDkdANxOwEY6s+Je1qhVXAB/ekKBs=
Subject key identifier: 7E:D0:26:5A:D4:E8:85:1A:D6:9E:39:D5:2A:01:9B:D0:BC:27:72:8B
Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Certificate serial: 01856E2667D59C4884743A7C3539AFC2EA8C
Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/ftAmWtTohRrWnjnVKgGb0Lwncos.roa
Signing time: Sun 01 Jan 2023 16:24:48 +0000
ROA not before: Sun 01 Jan 2023 16:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15600
IP address blocks: 185.167.8.0/22 maxlen: 22
2a0b:2e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:67:d5:9c:48:84:74:3a:7c:35:39:af:c2:ea:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8
Validity
Not Before: Jan 1 16:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ed0265ad4e8851ad69e39d52a019bd0bc27728b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:86:78:1d:7b:78:a4:c3:ce:8d:cf:ea:1d:de:
39:3c:f0:21:15:fa:b6:f1:44:08:03:3e:84:ad:ab:
28:65:f3:2b:42:8f:c9:9c:60:db:c3:a3:e5:16:5d:
da:cc:2e:49:02:65:f0:82:38:e9:c0:4d:a1:17:e1:
d3:82:a4:e8:d2:99:8a:70:45:67:51:87:cb:82:64:
96:ac:9b:31:74:eb:a2:74:d4:59:bd:e2:8e:54:37:
8b:06:ba:cc:3c:ba:70:c8:f2:b0:da:a6:1a:8b:96:
cc:e1:1e:4c:9a:85:fd:f7:68:1f:96:c6:c9:80:30:
4b:5f:91:66:1e:88:fb:b4:13:8b:66:a5:dd:e1:33:
b3:bd:d0:91:8a:1e:24:ef:78:3c:84:8e:4c:aa:f1:
66:0e:38:38:de:89:2c:50:c5:74:35:37:cd:0d:2d:
98:90:14:5f:0b:6b:8e:28:50:50:99:e0:ef:48:a6:
96:a7:66:96:62:80:cd:11:7d:7e:da:16:92:90:55:
6d:e4:88:89:60:1a:e2:23:33:71:37:ee:c1:ac:02:
8e:7b:8f:77:e5:2b:2e:ab:03:f1:f8:f3:19:d3:88:
0b:f6:76:57:00:da:f5:27:94:25:97:e3:92:61:cc:
7b:88:12:6e:ea:2f:31:91:83:67:72:5a:f0:f1:78:
15:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D0:26:5A:D4:E8:85:1A:D6:9E:39:D5:2A:01:9B:D0:BC:27:72:8B
X509v3 Authority Key Identifier:
keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/ftAmWtTohRrWnjnVKgGb0Lwncos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.8.0/22
IPv6:
2a0b:2e00::/29
Signature Algorithm: sha256WithRSAEncryption
b1:d8:c9:2b:7c:be:05:63:ce:70:83:34:d0:63:1f:64:cc:67:
a6:f0:b2:05:81:ac:dd:3b:f4:f5:7d:81:72:ae:72:fc:46:7e:
2a:1c:a1:42:44:14:84:23:12:5d:2a:6a:c2:9b:f3:ca:fb:69:
06:07:de:26:41:5d:97:f1:78:16:7c:94:57:46:23:41:a1:27:
9d:15:49:fb:69:c3:d9:67:e1:1d:07:0d:ee:cc:66:fd:a8:ff:
97:37:21:9c:ca:aa:08:05:d3:4a:e0:2d:0f:ff:08:fb:55:ad:
86:26:2d:cd:71:85:e2:b1:83:28:2b:fe:1a:c3:43:20:93:47:
c1:49:6f:50:d8:50:4e:00:34:2f:45:8f:5e:95:60:53:0b:29:
8b:21:b0:9c:63:de:d1:41:a1:3b:de:03:51:57:b8:ad:2a:d1:
f7:1a:2c:c6:87:15:4b:8f:f7:41:43:13:58:70:a0:26:7b:19:
09:9e:18:82:a7:a0:89:27:1a:06:13:99:56:b0:39:81:69:bf:
fa:00:f7:29:50:ec:2a:63:01:9b:26:11:be:28:e6:de:fb:23:
4f:cc:92:75:f1:74:bc:d5:67:f7:e1:8f:02:bd:c4:29:ce:e2:
1b:f3:4e:6a:15:00:75:c4:d2:81:1b:6e:45:08:e4:a7:12:cb:
2a:d4:ca:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org