Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/FWjkCRGOB4M2tYj5O98gM7i6Yfc.roa
File: FWjkCRGOB4M2tYj5O98gM7i6Yfc.roa (raw, json)
Hash identifier: vbAqbgUlp1rww07vezobI6cnusBKRZOIiiId+wguouU=
Subject key identifier: 15:68:E4:09:11:8E:07:83:36:B5:88:F9:3B:DF:20:33:B8:BA:61:F7
Certificate issuer: /CN=c359390b2174aae22961a0f3c29fc402f1fe23c8
Certificate serial: 01939BB8D7EA062879ED292CD58612496994
Authority key identifier: C3:59:39:0B:21:74:AA:E2:29:61:A0:F3:C2:9F:C4:02:F1:FE:23:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w1k5CyF0quIpYaDzwp_EAvH-I8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/FWjkCRGOB4M2tYj5O98gM7i6Yfc.roa
Signing time: Fri 06 Dec 2024 11:26:42 +0000
ROA not before: Fri 06 Dec 2024 11:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44486
IP address blocks: 185.229.248.0/24 maxlen: 24
2a10:b680::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9b:b8:d7:ea:06:28:79:ed:29:2c:d5:86:12:49:69:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c359390b2174aae22961a0f3c29fc402f1fe23c8
Validity
Not Before: Dec 6 11:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1568e409118e078336b588f93bdf2033b8ba61f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f3:97:45:65:a6:9f:1e:62:5f:b7:8e:71:29:
17:65:58:ad:09:03:c0:de:88:79:81:36:3a:92:15:
cc:d7:45:03:1a:6d:a9:31:10:c6:23:89:53:48:23:
7b:db:92:73:8f:b4:73:c5:b9:8e:bc:ca:3b:a5:6d:
ae:ab:f8:dc:03:92:eb:a3:90:5c:6c:83:03:36:28:
b0:65:4b:6f:7d:c9:0f:58:2f:8c:ae:fd:bd:58:7e:
5f:a7:1f:01:d8:e5:5e:b2:7a:6d:f5:da:de:5a:f3:
d5:f0:86:bd:7f:88:4a:86:30:73:b8:82:e4:d3:6c:
71:a1:40:db:69:54:64:e6:67:05:8e:9b:1d:49:02:
56:57:d2:26:77:20:88:8c:8b:1c:e2:95:58:18:6c:
5f:3d:34:86:74:7b:72:12:ea:c3:31:dc:ac:c7:80:
2d:c5:ea:18:c7:56:2c:4d:be:d6:17:dd:09:8f:e4:
3a:76:5a:78:f6:9a:78:90:77:20:11:0d:00:57:21:
7d:47:ab:b0:59:e7:57:1e:03:54:8c:82:b3:be:b0:
7f:e2:4e:35:65:f7:e1:08:f8:ec:b4:3c:b4:3b:d4:
ed:3f:94:d8:73:c4:f1:2b:1c:a3:d9:ba:99:96:fc:
de:8b:98:80:f0:14:0b:88:cf:5e:30:29:4f:b4:f5:
ff:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:68:E4:09:11:8E:07:83:36:B5:88:F9:3B:DF:20:33:B8:BA:61:F7
X509v3 Authority Key Identifier:
keyid:C3:59:39:0B:21:74:AA:E2:29:61:A0:F3:C2:9F:C4:02:F1:FE:23:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w1k5CyF0quIpYaDzwp_EAvH-I8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/FWjkCRGOB4M2tYj5O98gM7i6Yfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/5bba7b-daa7-4432-9270-ec5c7de7aae1/1/w1k5CyF0quIpYaDzwp_EAvH-I8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.248.0/24
IPv6:
2a10:b680::/32
Signature Algorithm: sha256WithRSAEncryption
69:40:ea:64:e4:a1:09:e4:d0:d0:1d:28:08:9b:5c:62:fd:85:
74:5c:fc:59:10:21:bd:13:c5:6c:22:db:2a:4b:7a:03:d3:ae:
ef:00:02:4f:f4:b0:18:61:06:c2:10:f2:c2:c7:82:3d:b9:7e:
06:18:8b:14:da:4f:ff:ea:81:fc:68:b4:06:ef:72:0f:1f:89:
f7:a7:55:ff:ba:62:9b:bf:e8:af:83:9d:19:30:49:fa:45:15:
c9:e9:71:17:e5:7b:0b:74:b9:c7:71:39:28:52:88:6d:78:c4:
47:b7:52:14:4e:37:ac:90:ff:74:ef:6a:68:d4:bd:13:fd:b1:
9d:02:2e:57:de:ae:2c:0a:fc:15:5d:ab:73:cc:fd:6b:d0:5a:
bf:70:2f:98:11:0f:92:1f:d3:63:e4:8d:71:6e:af:b6:e4:35:
0f:24:bc:50:94:74:62:32:be:96:ef:eb:ce:da:42:79:b7:0c:
5e:ec:b7:d3:55:94:6e:56:0d:79:0c:2c:f2:c9:33:ac:e5:e9:
95:3f:02:ec:7f:d5:0e:83:54:27:e2:18:db:40:79:e3:f3:4c:
85:eb:ff:6b:72:f8:cf:37:5c:09:3b:ce:ba:4b:0c:2d:ff:03:
96:01:bc:2d:5f:19:ac:3c:04:78:44:ef:88:3c:e8:ce:ce:43:
fe:31:29:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:31 2025 by rpki-client