Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/z7fUoL78DBT3KfyXcyTVecjcI10.roa
File: z7fUoL78DBT3KfyXcyTVecjcI10.roa (raw, json)
Hash identifier: FXerFQ1nYcKUFlncaTHLAuwRxaRjyDPCXkEX7cxzwng=
Subject key identifier: CF:B7:D4:A0:BE:FC:0C:14:F7:29:FC:97:73:24:D5:79:C8:DC:23:5D
Certificate issuer: /CN=fbbe33c8d18e53bfd24822098dc748640550c504
Certificate serial: 01856F42ADDCFF050F4897E7A7D5CDB4B134
Authority key identifier: FB:BE:33:C8:D1:8E:53:BF:D2:48:22:09:8D:C7:48:64:05:50:C5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/z7fUoL78DBT3KfyXcyTVecjcI10.roa
Signing time: Sun 01 Jan 2023 21:35:18 +0000
ROA not before: Sun 01 Jan 2023 21:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.118.105.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ad:dc:ff:05:0f:48:97:e7:a7:d5:cd:b4:b1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbbe33c8d18e53bfd24822098dc748640550c504
Validity
Not Before: Jan 1 21:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfb7d4a0befc0c14f729fc977324d579c8dc235d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:44:9b:a4:7b:2f:75:2e:fb:d0:59:ce:2c:d3:
d7:cc:c1:64:45:42:80:db:56:67:5e:59:52:d5:2e:
75:69:94:f0:ed:e5:bf:27:cc:2c:d6:71:91:d3:24:
23:36:aa:20:94:8b:07:11:89:69:90:aa:02:c3:36:
bb:30:22:91:98:56:44:76:a2:65:77:fd:c8:21:88:
44:3d:cf:e8:70:05:c6:2d:ab:0c:63:ff:96:d5:e5:
57:b6:5a:91:b9:6a:0e:e2:15:ff:ed:4e:c1:00:4e:
90:af:9c:e0:65:ad:14:c3:f7:d0:4c:d1:01:11:d1:
dc:14:39:9c:2f:f3:0d:8d:46:ae:0e:b6:c6:50:81:
b5:40:07:eb:64:f6:d8:0d:b1:9d:d6:c4:a2:0a:55:
26:18:0c:9c:cb:1c:f4:a9:f8:58:9c:73:dc:87:80:
6a:b8:98:37:bd:1b:25:37:76:aa:95:20:68:9d:af:
ae:f1:3f:ad:9a:96:05:e1:95:1d:70:6a:57:5a:98:
7c:74:0e:7e:d0:ad:93:da:5b:8c:05:68:de:5c:c5:
ac:dd:f3:a1:11:bc:b6:74:21:5c:50:50:9a:e0:89:
1d:b8:1c:11:4b:a2:e7:8f:02:0f:5d:30:d7:50:59:
c2:82:a2:bd:b0:6c:76:e7:0b:15:6c:32:68:f2:ad:
c9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B7:D4:A0:BE:FC:0C:14:F7:29:FC:97:73:24:D5:79:C8:DC:23:5D
X509v3 Authority Key Identifier:
keyid:FB:BE:33:C8:D1:8E:53:BF:D2:48:22:09:8D:C7:48:64:05:50:C5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/z7fUoL78DBT3KfyXcyTVecjcI10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.105.0/24
Signature Algorithm: sha256WithRSAEncryption
06:06:35:d3:d8:48:6d:75:cd:a3:3c:6f:1b:08:c2:e4:c2:11:
ac:fd:2a:83:e9:a3:04:d5:1f:27:80:a4:b6:ba:b9:08:33:d9:
11:c9:00:a6:51:7a:81:74:5f:53:0c:35:b9:99:12:33:a6:9a:
6d:a0:78:ff:1c:f9:86:9c:49:dd:0f:89:e3:84:b7:cd:88:f3:
71:aa:42:9f:c7:75:ea:f6:44:f9:42:c0:b1:93:ee:ba:f3:87:
4c:8b:94:d9:62:21:ee:b7:f2:8d:75:bc:07:6a:e3:76:f9:04:
b9:97:6d:7b:fa:20:2a:e6:a5:8f:82:b9:19:9a:72:ae:87:63:
1c:dc:7c:66:01:05:e2:e2:59:0c:41:40:68:85:0f:14:f2:be:
42:f8:58:25:2b:c0:2d:26:18:51:07:c3:ac:c2:81:36:98:a5:
d7:73:c8:7a:ff:33:8f:f4:56:d6:da:2d:cd:07:4e:ee:3f:94:
9a:3f:25:e3:3e:d9:d7:2e:16:bd:fc:ab:c1:7c:97:36:80:56:
6c:f3:1e:73:2f:eb:69:ef:9b:79:67:02:74:35:68:2a:9a:b9:
1f:88:86:a9:11:92:12:f5:f6:55:02:36:a2:5b:e8:22:a6:df:
62:66:6c:0f:22:35:31:1f:a1:be:af:e2:f4:12:f8:c3:f7:85:
0b:bc:98:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:25 2024 by rpki-client on console-ams.rpki-client.org