Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/FQeMBWQ-ktCdIiOrwTxLzevYXEA.roa
File: FQeMBWQ-ktCdIiOrwTxLzevYXEA.roa (raw, json)
Hash identifier: I31ot1xBMAA6a3n0GMhGKVYy1ZPBGaqJGLa7vLMBUws=
Subject key identifier: 15:07:8C:05:64:3E:92:D0:9D:22:23:AB:C1:3C:4B:CD:EB:D8:5C:40
Certificate issuer: /CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Certificate serial: 01939C78309C3F8DDCBE172DAC51311C8923
Authority key identifier: 13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/FQeMBWQ-ktCdIiOrwTxLzevYXEA.roa
Signing time: Fri 06 Dec 2024 14:55:42 +0000
ROA not before: Fri 06 Dec 2024 14:55:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 194.150.220.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:49:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9c:78:30:9c:3f:8d:dc:be:17:2d:ac:51:31:1c:89:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Validity
Not Before: Dec 6 14:55:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15078c05643e92d09d2223abc13c4bcdebd85c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:47:82:7e:78:de:1c:8c:c1:15:24:95:0c:d1:
73:b0:b9:44:51:2e:54:1b:7c:9c:8d:6b:1a:19:7a:
7d:3b:31:54:c7:c5:bf:29:45:f0:48:65:9b:11:1e:
67:56:13:1a:d7:db:42:15:08:88:8f:d6:75:ed:b3:
0c:e3:d3:f0:1f:b9:ed:2c:82:93:6d:9f:ac:2c:b3:
4d:56:1c:1c:80:ad:61:3c:43:fb:ad:9d:75:a4:05:
1f:6b:7a:8e:3a:5f:43:a7:42:c9:80:e7:83:80:69:
05:b4:24:cb:9d:6a:ae:a1:88:c0:2f:36:d5:57:a7:
91:2e:86:82:19:80:5b:40:26:cd:3f:90:74:0d:03:
ce:06:27:5d:7e:5c:3b:bc:c8:8e:ea:47:85:f1:12:
3e:6d:7f:f8:36:cb:fa:48:67:38:8a:3a:e4:80:4a:
f5:97:6c:75:12:dc:71:87:43:b1:e0:dc:97:84:2d:
f6:fb:31:7e:98:c4:02:f3:93:43:f3:9b:70:3a:73:
b7:5b:97:61:4b:55:85:c7:a8:71:d7:32:e5:74:e2:
44:fa:0a:c9:23:26:67:1c:90:e7:ec:6a:28:76:a6:
41:96:e3:9d:60:fd:ae:46:44:f1:ef:81:15:12:38:
c9:c7:6c:33:de:12:12:96:b3:79:bb:a2:db:53:fa:
02:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:07:8C:05:64:3E:92:D0:9D:22:23:AB:C1:3C:4B:CD:EB:D8:5C:40
X509v3 Authority Key Identifier:
keyid:13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/FQeMBWQ-ktCdIiOrwTxLzevYXEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/E2a5YKbx8EQ58JGG-ez1ManOJkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.220.0/23
Signature Algorithm: sha256WithRSAEncryption
54:56:a0:57:0c:af:31:16:be:32:8c:c7:62:e0:b0:bf:12:e0:
7b:05:0a:5a:e5:1b:4d:9a:84:c1:2c:e8:9b:e3:b3:83:d0:bb:
bd:9d:28:c7:90:6c:a0:d9:42:a7:90:f7:e0:04:c7:e3:01:c4:
de:e0:2c:9c:5e:0d:92:5c:85:0a:67:a4:3c:01:20:ca:ef:4b:
60:d3:9a:1d:5d:04:99:2b:a8:84:3f:a6:89:75:f9:04:87:f2:
84:dc:e1:ea:c3:0e:39:c6:ca:44:41:20:50:09:49:c6:59:50:
63:3f:8c:f7:11:b3:ce:b7:97:84:2d:51:7f:2a:6f:81:f0:30:
f0:ab:17:7a:7a:4c:24:a1:c4:fd:20:ed:d5:07:08:76:f5:19:
ad:cb:43:f9:7d:34:43:37:3d:38:96:b3:57:0a:a2:ec:ca:6c:
02:8c:38:21:f6:52:9c:71:f3:ee:e5:50:86:5c:d9:ce:a6:fc:
af:3e:4d:04:b8:88:e9:46:f0:cd:40:fe:da:1c:a6:f4:1a:ad:
e4:b3:7d:c5:44:fe:43:20:2a:ed:54:51:47:44:fe:b2:66:74:
8c:60:af:bf:df:5f:db:4d:67:d4:24:c7:90:8e:39:f5:01:40:
80:0e:c9:32:f4:ec:3f:53:fa:43:b0:a0:73:a3:c3:3f:05:1a:
b7:4d:2f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:05:11 2025 by rpki-client