Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/Fm9V2XjYip-cuQfAMdCDDxD1Dqo.roa
File: Fm9V2XjYip-cuQfAMdCDDxD1Dqo.roa (raw, json)
Hash identifier: /6kpU6sULxhyN1R0+qc2+iAmxwMgh+nqavcV7s4LU4s=
Subject key identifier: 16:6F:55:D9:78:D8:8A:9F:9C:B9:07:C0:31:D0:83:0F:10:F5:0E:AA
Certificate issuer: /CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Certificate serial: 01856D6F780DB4512408CBA08432FAAB87A4
Authority key identifier: 39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/Fm9V2XjYip-cuQfAMdCDDxD1Dqo.roa
Signing time: Sun 01 Jan 2023 13:04:59 +0000
ROA not before: Sun 01 Jan 2023 13:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210963
IP address blocks: 185.218.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:78:0d:b4:51:24:08:cb:a0:84:32:fa:ab:87:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397d9f3dbfc365332e282bd176a68075446d1d1b
Validity
Not Before: Jan 1 13:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=166f55d978d88a9f9cb907c031d0830f10f50eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:87:e8:47:f0:b4:95:92:51:2d:a1:62:6c:44:
7c:53:69:21:e5:fa:2f:ee:1f:f5:f2:bd:98:41:42:
4a:27:e9:8c:91:a4:14:97:52:89:a1:d0:8c:2b:3b:
db:89:a8:9e:24:09:c0:12:49:73:55:d0:0a:5c:83:
79:20:fd:2a:dc:f8:11:74:38:e8:0e:93:e3:90:78:
50:f2:50:14:de:fa:b3:48:37:11:c2:3d:e4:82:94:
af:92:2c:d5:07:dd:2d:54:f2:cd:c8:8b:61:27:45:
a2:ed:bc:22:e2:b9:68:b5:75:76:72:0f:e9:28:09:
00:32:2f:98:08:f8:2c:b8:f3:85:73:b0:13:6a:68:
f6:97:01:24:5d:17:f9:43:48:92:4d:1a:4e:88:a3:
e7:ce:05:1e:39:de:ef:98:dc:90:4d:9d:00:35:f5:
bf:e4:80:51:c9:21:0b:0c:75:85:47:b7:f3:42:6a:
1b:0b:80:b0:59:fa:1a:fd:c0:80:09:e9:56:dd:62:
d0:9f:f8:89:d7:9e:8a:6f:ec:27:7a:cc:31:78:d0:
42:a2:df:2c:55:7d:31:7a:18:8f:99:a4:88:b5:d7:
4f:53:0d:1f:2b:8f:b4:5a:93:3c:03:aa:3c:d6:12:
96:5d:ab:2a:0f:36:02:b7:22:9e:d5:c0:ba:44:9e:
64:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:6F:55:D9:78:D8:8A:9F:9C:B9:07:C0:31:D0:83:0F:10:F5:0E:AA
X509v3 Authority Key Identifier:
keyid:39:7D:9F:3D:BF:C3:65:33:2E:28:2B:D1:76:A6:80:75:44:6D:1D:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OX2fPb_DZTMuKCvRdqaAdURtHRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/Fm9V2XjYip-cuQfAMdCDDxD1Dqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/af2f8f-1212-4943-bd0c-d86ab2fe7648/1/OX2fPb_DZTMuKCvRdqaAdURtHRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.104.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a7:7c:f4:a4:a7:6c:37:82:d5:76:72:89:75:12:67:85:bc:
f4:4a:e4:43:c3:42:fe:d3:1e:4b:78:d5:05:5e:ec:82:21:c9:
c4:7b:9a:65:c2:c2:21:c1:12:78:88:13:f6:81:7d:59:09:a0:
68:a2:80:3a:5b:3c:68:3d:73:e5:0c:ec:e9:46:84:8b:da:dd:
fc:c3:61:69:66:03:b4:9a:a3:24:e4:6d:a6:05:4a:69:e2:ff:
3f:5b:10:e6:66:23:55:0a:05:f2:b8:9c:9c:5e:f2:ef:b7:b5:
fd:4f:4d:3c:5f:f8:bb:0b:ba:79:11:a6:42:a6:d8:0c:7b:e9:
ac:cd:39:e3:57:10:fd:23:09:05:db:1c:07:0f:45:b3:3f:97:
8e:24:24:15:8b:0e:b2:85:ab:be:1e:f7:48:28:f1:84:95:0b:
1b:be:10:e0:ab:32:52:0f:e3:b1:2e:ae:98:bf:2b:ff:06:4a:
2e:08:38:02:14:09:1b:a5:b0:55:c2:87:da:cb:76:3a:4c:c2:
38:33:54:a4:49:09:98:eb:45:23:f1:7f:81:00:de:12:3b:ef:
c1:83:8c:4d:7e:5f:a3:9c:f2:0d:0c:60:b6:33:e4:34:52:87:
5e:72:ce:86:32:10:b4:0c:6a:f6:c6:d2:f4:e6:3e:2c:5b:22:
ba:cc:a0:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-fra.rpki-client.org