Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/F_xqbYhweKhJZQ4v-DW3renzK9Y.roa
File: F_xqbYhweKhJZQ4v-DW3renzK9Y.roa (raw, json)
Hash identifier: Nppv7yHFtPDmP65Agr96GHDH2KfAjBvQNbibGt/+XIU=
Subject key identifier: 17:FC:6A:6D:88:70:78:A8:49:65:0E:2F:F8:35:B7:AD:E9:F3:2B:D6
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 01856E2FD03F22564A74E958594B2B8B6DA3
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/F_xqbYhweKhJZQ4v-DW3renzK9Y.roa
Signing time: Sun 01 Jan 2023 16:35:05 +0000
ROA not before: Sun 01 Jan 2023 16:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213198
IP address blocks: 195.64.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:d0:3f:22:56:4a:74:e9:58:59:4b:2b:8b:6d:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 16:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17fc6a6d887078a849650e2ff835b7ade9f32bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:35:a4:49:fa:89:d5:cd:c9:16:33:e0:95:53:
f4:32:00:aa:fc:29:d3:f1:b5:91:0d:41:ee:0d:2a:
ed:99:e8:f9:96:67:a1:c3:92:ec:90:3b:68:62:cd:
8a:f6:e8:53:10:89:06:e3:fb:ba:c7:bf:f4:e2:70:
4d:5c:6f:78:d7:00:cb:7d:5d:97:09:94:76:ba:bc:
ea:ba:c7:a4:b6:95:ff:63:a2:d5:3d:10:ee:1c:43:
6d:55:d7:b9:46:20:ad:b1:81:57:ff:a7:b1:0d:ae:
e0:ca:4d:18:1a:b8:1a:23:aa:9f:7e:fa:59:0b:e5:
ea:bc:5f:26:ab:9a:c1:06:bc:97:d3:e2:c3:24:bc:
0c:a8:a7:65:44:89:21:1c:e8:7e:9b:c4:1e:56:66:
55:82:28:43:e9:8a:19:f1:8d:00:06:b4:52:bc:0b:
75:28:63:9b:46:de:fa:38:e5:df:26:4a:b2:d8:48:
6d:e5:5a:c4:6e:6c:5d:69:b2:c7:93:e7:7f:87:bf:
d3:67:93:51:ab:30:a0:28:0e:39:22:d8:03:07:64:
8f:a1:6b:9e:2e:41:9a:76:11:d9:d1:50:f4:a9:d8:
5e:fc:9e:9e:78:70:88:87:99:ad:85:4d:1e:27:9a:
c2:59:5c:1c:b5:ac:56:e0:c5:f3:90:97:62:06:32:
81:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FC:6A:6D:88:70:78:A8:49:65:0E:2F:F8:35:B7:AD:E9:F3:2B:D6
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/F_xqbYhweKhJZQ4v-DW3renzK9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.238.0/24
Signature Algorithm: sha256WithRSAEncryption
21:5c:ae:48:2c:ed:d6:08:60:3e:8f:ad:ba:b6:8e:4f:be:87:
b6:09:47:63:6f:49:9d:f2:44:17:32:c5:60:88:f5:3f:b7:e7:
25:93:be:81:37:33:19:1b:e1:56:25:fb:d7:ba:c7:14:5a:32:
ba:f1:35:3f:83:df:5a:3c:c4:be:fd:4d:4e:97:44:5e:b7:62:
eb:97:42:d9:5c:65:9e:34:a2:bf:a6:24:f8:23:0e:de:c1:f7:
fe:dd:d2:74:10:b0:20:d3:04:d8:d9:08:71:e4:c2:4d:b0:b7:
41:6a:a2:11:39:ba:cf:66:82:3b:ab:f0:e2:a0:7a:ed:3c:2f:
bd:b2:21:a3:32:59:74:95:a9:9e:62:cd:8a:26:4b:f8:ca:f7:
b8:1b:ee:46:8c:45:3e:c7:6d:83:3a:32:2f:dc:6e:a1:d1:c2:
f1:d6:5c:03:0c:58:99:06:71:bd:5b:48:15:b3:80:c2:7e:6d:
da:63:39:40:08:57:6c:f7:29:97:26:4a:af:d1:4e:d0:d3:b8:
9f:1c:7d:a9:5e:89:74:07:be:61:94:8c:97:f4:46:b9:fa:5e:
d1:87:3f:41:8f:65:5d:f6:b1:28:f0:83:46:72:9a:99:f0:2c:
6e:3e:86:bb:85:31:c6:f9:a1:5a:4d:0a:b2:bd:2e:de:0b:b2:
9f:88:49:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:15 2024 by rpki-client on console-fra.rpki-client.org