Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/FMBGB9p6mDaXqB1tYgDxBU6maMM.roa
File: FMBGB9p6mDaXqB1tYgDxBU6maMM.roa (raw, json)
Hash identifier: gaXd5C8OlOSHNfHMGVbJtblMnDNOruz9mWypzsavElE=
Subject key identifier: 14:C0:46:07:DA:7A:98:36:97:A8:1D:6D:62:00:F1:05:4E:A6:68:C3
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018572D5CC82D16F24BAD1A39A2AA8ADA28D
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/FMBGB9p6mDaXqB1tYgDxBU6maMM.roa
Signing time: Mon 02 Jan 2023 14:14:52 +0000
ROA not before: Mon 02 Jan 2023 14:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46844
IP address blocks: 185.77.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:cc:82:d1:6f:24:ba:d1:a3:9a:2a:a8:ad:a2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 14:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14c04607da7a983697a81d6d6200f1054ea668c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b3:79:9a:b2:56:20:1f:e0:e3:22:24:97:a4:
51:92:c8:82:a6:ba:8a:eb:82:04:86:d7:b5:cd:41:
d0:0f:13:95:99:18:8a:2f:3e:3a:ff:ff:70:2b:2a:
90:ed:71:f2:7e:24:cd:31:8f:32:6b:74:b8:d6:ab:
e8:f7:6a:03:95:a6:ca:9f:3e:c3:a0:a6:2d:8e:1c:
13:5c:e0:95:c0:d7:41:6b:2c:c4:73:f8:70:13:0a:
23:e8:b2:c5:3e:53:a8:27:20:b5:9e:c0:90:b0:e6:
84:7b:09:f4:39:b3:99:b4:3a:b8:62:a0:fb:49:7c:
2c:5f:eb:43:11:22:d1:61:cf:59:ba:e6:b7:2d:c2:
97:10:fd:49:6a:4c:b9:8a:c2:72:a6:a0:41:2c:01:
7d:c9:f3:22:08:7c:61:a6:0e:7c:23:52:3b:64:2e:
a7:17:ce:6b:e4:b5:be:87:bc:02:85:6a:b1:c2:cc:
98:dc:52:88:a5:73:ad:f2:a2:ed:54:ab:16:49:73:
74:e7:3b:76:7b:80:60:20:63:db:18:ec:72:8d:98:
e4:ab:25:a1:eb:ca:ad:1b:bf:1c:e3:81:9b:47:87:
2a:9a:a2:9a:c0:18:ad:5f:4d:75:9f:05:91:b6:49:
6e:f8:ea:e4:7f:69:f2:c2:31:d9:40:11:dd:d7:83:
fe:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C0:46:07:DA:7A:98:36:97:A8:1D:6D:62:00:F1:05:4E:A6:68:C3
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/FMBGB9p6mDaXqB1tYgDxBU6maMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.216.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:0e:c3:60:99:15:ec:20:e0:f6:67:5c:f8:ee:80:30:2c:f3:
ae:c1:c4:df:01:d5:3d:6c:81:7c:80:e3:95:da:15:c7:b1:cc:
d8:e8:19:4b:3b:c0:0c:85:04:e8:ed:40:66:a1:b3:3e:e9:c0:
d1:1a:14:05:0d:81:99:e8:5d:c0:b0:b8:b8:e5:34:6c:6b:a7:
ab:0c:fe:ac:d7:68:dc:65:53:a7:75:bf:76:5a:64:4d:70:c9:
dc:0f:73:9a:25:4b:e7:86:42:76:e2:29:e8:8a:d8:bb:d3:1e:
ba:bf:39:83:b4:2e:4c:91:55:f1:dc:01:2a:42:c1:3b:90:48:
5f:44:dc:95:8a:55:7b:b3:71:6f:1a:cd:c1:cf:b7:ce:09:b1:
31:63:dc:a6:3b:54:d2:68:44:98:b6:95:41:c8:a8:be:f4:aa:
65:d4:bb:e2:20:1e:51:89:79:78:1c:2c:96:8c:03:ca:4d:06:
07:87:ff:17:f8:59:b8:0f:96:60:77:d2:b5:82:3c:a2:f2:3c:
76:91:7a:d5:db:29:60:49:7b:61:07:ef:cd:f0:d0:e0:fe:a3:
77:29:5f:44:66:c3:95:26:75:98:49:22:52:ba:aa:9c:ab:51:
17:26:2f:99:67:31:1d:b6:a5:0b:57:66:65:5a:77:af:53:2a:
4d:5c:c0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:54 2024 by rpki-client on console-fra.rpki-client.org