Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FUC4ihRTJJlcFQ0lDJ25yemThIE.roa
File: FUC4ihRTJJlcFQ0lDJ25yemThIE.roa (raw, json)
Hash identifier: EaDm2nmAnZWMKsa22XlOz9XioNcDppqk2hHc4l/m/6Y=
Subject key identifier: 15:40:B8:8A:14:53:24:99:5C:15:0D:25:0C:9D:B9:C9:E9:93:84:81
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018CC5DCE3DEDCCFE6462CD38E38A3DD04AB
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FUC4ihRTJJlcFQ0lDJ25yemThIE.roa
Signing time: Mon 01 Jan 2024 16:30:36 +0000
ROA not before: Mon 01 Jan 2024 16:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 5.102.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 07:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:e3:de:dc:cf:e6:46:2c:d3:8e:38:a3:dd:04:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 1 16:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1540b88a145324995c150d250c9db9c9e9938481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:56:03:1e:db:7b:d7:de:d1:73:3d:b3:a8:cb:
79:41:7e:af:9e:e3:e8:d1:90:39:bc:80:3f:b7:90:
6e:f1:00:16:87:cb:a2:86:6d:2c:1e:b3:66:da:7d:
66:1b:c5:54:ca:65:81:ca:41:24:08:4d:fc:20:b5:
8e:e1:b1:63:72:b0:b1:d4:b3:74:db:20:a6:77:ed:
78:2a:3f:c2:12:ac:2f:c1:f6:14:61:63:e8:e4:69:
f5:71:74:37:17:9d:32:6e:07:ad:19:80:7e:56:09:
e5:7b:0f:5a:7a:88:31:d6:ce:a5:0f:b3:f1:c4:57:
fc:d6:a1:2c:3c:ee:2c:fe:91:48:61:c4:03:b5:38:
16:45:1f:7b:04:cb:30:85:67:48:5c:2a:e6:5a:b4:
11:d8:13:27:ba:49:eb:81:db:61:ff:48:f9:39:94:
7c:ba:d1:ff:6d:d1:85:9f:da:42:56:39:6d:f6:14:
c3:95:de:44:2e:27:c3:d1:3e:c6:63:17:96:50:07:
85:61:85:78:1f:16:79:0c:57:d6:a9:d1:0f:04:f7:
54:6f:52:9d:38:cd:87:c1:2d:bd:f9:94:86:2a:2f:
56:c4:54:82:2d:c5:b3:b3:3b:e0:41:9e:55:e1:41:
2d:51:01:3a:90:51:25:0f:c5:75:5f:a3:1a:29:38:
ba:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:40:B8:8A:14:53:24:99:5C:15:0D:25:0C:9D:B9:C9:E9:93:84:81
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FUC4ihRTJJlcFQ0lDJ25yemThIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.104.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:90:71:1a:5d:aa:69:9f:50:07:eb:39:b2:1f:5b:34:7c:c3:
91:c3:a9:af:a6:3b:e1:de:a8:0b:cf:20:27:a9:b2:58:5b:5e:
5a:da:78:00:5e:cd:79:58:f6:85:23:fd:19:a2:34:98:66:e6:
d5:90:fc:35:82:5a:47:4b:44:7e:cf:10:96:6b:27:4c:d1:2d:
22:04:5c:13:44:4a:66:ce:b2:0e:8b:8b:49:bc:52:3b:fa:fd:
a5:49:20:3e:5a:9a:5e:ef:79:70:25:92:f5:a4:64:50:fc:bb:
fc:20:e8:d6:ce:5a:b1:19:d8:20:12:a2:87:8d:5e:26:51:bb:
10:53:08:71:a3:39:e0:48:8c:37:df:65:12:e8:07:b1:9b:6a:
a5:ea:3e:ff:38:5f:fa:a8:c8:83:4d:e7:52:9d:86:27:01:da:
42:08:38:86:57:8d:f6:79:d8:34:ac:bd:60:7a:e9:3a:85:83:
dc:c6:c0:61:53:93:56:2d:90:47:85:a8:b0:57:35:4e:18:37:
fd:0c:73:e8:a5:e1:44:bc:1d:2d:d9:fd:cc:67:50:db:a9:f5:
d9:ff:23:8d:bd:e0:16:ba:67:18:32:a2:6c:c3:cf:a6:6a:49:
12:43:44:83:1c:96:58:7b:e5:1c:c0:64:78:5d:a3:36:7f:e2:
1d:d7:3c:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzF3OPe3M/mRizTjjij3QSrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjQwMTAxMTYzMDM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTQwYjg4YTE0NTMyNDk5NWMxNTBkMjUwYzlkYjljOWU5OTM4NDgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVYDHtt7197Rcz2zqMt5QX6vnuPo
0ZA5vIA/t5Bu8QAWh8uihm0sHrNm2n1mG8VUymWBykEkCE38ILWO4bFjcrCx1LN0
2yCmd+14Kj/CEqwvwfYUYWPo5Gn1cXQ3F50ybgetGYB+Vgnlew9aeogx1s6lD7Px
xFf81qEsPO4s/pFIYcQDtTgWRR97BMswhWdIXCrmWrQR2BMnuknrgdth/0j5OZR8
utH/bdGFn9pCVjlt9hTDld5ELifD0T7GYxeWUAeFYYV4HxZ5DFfWqdEPBPdUb1Kd
OM2HwS29+ZSGKi9WxFSCLcWzszvgQZ5V4UEtUQE6kFElD8V1X6MaKTi6kQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBVAuIoUUySZXBUNJQyducnpk4SBMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvRlVDNGloUlRKSmxjRlEwbERKMjV5ZW1UaElFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBWZoMA0G
CSqGSIb3DQEBCwUAA4IBAQAtkHEaXappn1AH6zmyH1s0fMORw6mvpjvh3qgLzyAn
qbJYW15a2ngAXs15WPaFI/0ZojSYZubVkPw1glpHS0R+zxCWaydM0S0iBFwTREpm
zrIOi4tJvFI7+v2lSSA+Wppe73lwJZL1pGRQ/Lv8IOjWzlqxGdggEqKHjV4mUbsQ
UwhxozngSIw332US6Aexm2ql6j7/OF/6qMiDTedSnYYnAdpCCDiGV432edg0rL1g
euk6hYPcxsBhU5NWLZBHhaiwVzVOGDf9DHPopeFEvB0t2f3MZ1DbqfXZ/yONveAW
umcYMqJsw8+makkSQ0SDHJZYe+UcwGR4XaM2f+Id1zwh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org