Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/ftd1o-WcSZfHyT3E8d7CodniCm4.roa
File: ftd1o-WcSZfHyT3E8d7CodniCm4.roa (raw, json)
Hash identifier: 4JaemmFux3TVFvOTJgokhmtjTs6B+YRvEV1tTxte+Dw=
Subject key identifier: 7E:D7:75:A3:E5:9C:49:97:C7:C9:3D:C4:F1:DE:C2:A1:D9:E2:0A:6E
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018A8DB6EC990FCE5B52C556BCF0356FE9E1
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/ftd1o-WcSZfHyT3E8d7CodniCm4.roa
Signing time: Wed 13 Sep 2023 08:44:50 +0000
ROA not before: Wed 13 Sep 2023 08:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3316
IP address blocks: 194.85.105.0/24 maxlen: 24
194.85.106.0/24 maxlen: 24
194.85.117.0/24 maxlen: 24
194.85.118.0/24 maxlen: 24
194.85.31.0/24 maxlen: 24
195.208.22.0/23 maxlen: 23
86.62.49.0/24 maxlen: 24
193.232.85.0/24 maxlen: 24
194.85.119.0/24 maxlen: 24
212.193.118.0/24 maxlen: 24
194.190.138.0/24 maxlen: 24
194.190.134.0/24 maxlen: 24
194.190.141.0/24 maxlen: 24
194.190.142.0/24 maxlen: 24
194.190.145.0/24 maxlen: 24
194.190.148.0/24 maxlen: 24
193.232.131.0/24 maxlen: 24
195.209.4.0/24 maxlen: 24
195.209.8.0/24 maxlen: 24
194.190.132.0/24 maxlen: 24
194.190.132.0/22 maxlen: 22
195.209.146.0/24 maxlen: 24
194.226.29.0/24 maxlen: 24
194.226.44.0/24 maxlen: 24
194.226.46.0/23 maxlen: 23
195.19.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:b6:ec:99:0f:ce:5b:52:c5:56:bc:f0:35:6f:e9:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Sep 13 08:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ed775a3e59c4997c7c93dc4f1dec2a1d9e20a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f6:fb:35:81:9d:12:b5:78:c7:6a:d5:7d:0e:
e3:7e:0b:2f:2a:8e:8b:34:4a:a5:21:02:33:93:06:
1e:cd:bf:4f:a0:1b:7a:0f:c9:b5:9a:94:a5:c2:f4:
30:e6:d1:b4:6e:b2:eb:5c:fd:72:a7:2b:1f:df:66:
36:cd:8e:04:fb:8e:cd:ab:fd:71:80:85:3a:f5:5c:
9d:41:f5:65:40:af:55:42:e4:b9:f3:1b:90:24:d9:
ef:57:ae:d6:3f:84:19:cc:ae:2f:06:da:9a:36:9a:
49:a3:ce:5e:50:e3:52:29:70:a6:f4:cd:a4:08:dc:
8a:be:3b:66:8b:ad:04:f0:a6:77:79:e6:0b:f1:ff:
d1:5e:a3:da:6a:ca:30:0b:0d:7c:8c:97:19:70:31:
ac:6e:2e:a3:78:57:54:99:fa:e5:38:57:ae:ec:9f:
c0:2f:0a:c6:d7:49:c3:91:f8:a4:17:dc:29:d1:49:
c1:55:a7:a4:ae:7d:cb:de:88:58:c5:30:8a:59:9b:
65:dc:ed:ae:71:68:91:36:66:a1:3e:d5:79:47:60:
4b:4a:55:b3:d6:49:d5:69:20:d0:99:79:65:f7:0a:
72:2f:dd:5b:6d:2e:b4:90:e2:5a:cb:bb:e1:6c:ce:
32:f7:bd:af:3e:2a:9e:e6:ab:6a:9e:38:aa:bd:53:
35:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D7:75:A3:E5:9C:49:97:C7:C9:3D:C4:F1:DE:C2:A1:D9:E2:0A:6E
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/ftd1o-WcSZfHyT3E8d7CodniCm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.49.0/24
193.232.85.0/24
193.232.131.0/24
194.85.31.0/24
194.85.105.0-194.85.106.255
194.85.117.0-194.85.119.255
194.190.132.0/22
194.190.138.0/24
194.190.141.0-194.190.142.255
194.190.145.0/24
194.190.148.0/24
194.226.29.0/24
194.226.44.0/24
194.226.46.0/23
195.19.26.0/24
195.208.22.0/23
195.209.4.0/24
195.209.8.0/24
195.209.146.0/24
212.193.118.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:f5:bc:70:43:7b:08:cf:9b:47:e7:27:61:42:c3:06:7f:b6:
59:fb:69:9e:b1:72:ac:8c:c0:c2:b6:51:f1:19:7f:16:87:f2:
2f:cd:e2:f3:8f:dd:1a:fa:52:04:dc:12:9e:17:ce:cc:ff:ad:
ed:4e:fd:3d:db:53:29:3f:50:fe:0e:c7:f8:03:a1:4a:50:7f:
ce:76:2e:b6:0f:9d:50:94:9c:41:5b:c7:c9:52:e3:10:cf:d1:
32:7a:b6:e4:55:34:44:60:43:6d:bf:3d:1a:61:cc:86:cd:04:
3e:6e:e8:92:65:63:03:cd:7a:07:f1:3c:96:be:e4:03:f1:ee:
ba:2d:25:31:79:9b:c1:77:fc:28:9a:8e:ad:42:9f:77:e3:a5:
14:c0:d5:56:11:3e:9b:e1:ce:56:ba:2c:24:5d:75:8b:30:b0:
c9:94:af:b6:ab:55:75:44:4c:3e:d0:cf:52:28:8e:c4:18:ea:
31:aa:10:08:11:d4:b5:53:e9:e6:b8:b5:cc:c0:c3:1d:32:00:
40:61:24:28:d4:3e:69:78:c2:29:53:36:22:d4:d7:3a:8a:03:
cf:90:fa:c0:81:61:9b:f2:68:cb:6a:9c:5c:db:9d:2f:1e:f2:
75:38:ba:44:a3:b6:ca:f8:9d:59:b0:d4:b0:b5:d5:bc:9a:3c:
4c:f8:a1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 14:35:24 2023 by rpki-client on console-ams.rpki-client.org