Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/Fi_BGnNTLiI8BUch8RGhh_FD3jc.roa
File: Fi_BGnNTLiI8BUch8RGhh_FD3jc.roa (raw, json)
Hash identifier: Mue52BzLfSCZgzAceQXdlgRZuFkV3h0lFwejkvDmztk=
Subject key identifier: 16:2F:C1:1A:73:53:2E:22:3C:05:47:21:F1:11:A1:87:F1:43:DE:37
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 018CC8DECF57F1BDED531390BA5F7F549FB0
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/Fi_BGnNTLiI8BUch8RGhh_FD3jc.roa
Signing time: Tue 02 Jan 2024 06:31:34 +0000
ROA not before: Tue 02 Jan 2024 06:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61002
IP address blocks: 188.211.166.0/24 maxlen: 24
185.170.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 14:53:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:cf:57:f1:bd:ed:53:13:90:ba:5f:7f:54:9f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Jan 2 06:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=162fc11a73532e223c054721f111a187f143de37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:11:3d:61:3e:5a:f0:7f:70:0d:e8:90:74:
70:fe:57:ca:59:f2:80:20:42:e4:03:9b:fa:32:fa:
eb:c3:55:ee:2d:49:34:41:24:ad:da:7d:a6:fa:91:
82:dc:58:27:4f:8e:a7:a2:04:7e:20:2f:80:86:a2:
06:04:44:0a:32:fc:2e:b1:06:88:45:1e:93:b0:de:
48:8d:d6:cd:13:56:43:cb:ce:d5:f7:7e:1d:ac:e9:
4f:79:89:fc:e5:d6:25:3f:e4:ad:e4:b3:5f:ed:0a:
ba:ac:b1:56:f1:a0:1f:9f:a4:03:3b:20:3a:ff:2c:
c3:ff:ed:2f:87:51:36:53:5e:4a:69:3e:aa:5b:24:
b5:b4:be:5a:62:2b:75:7c:aa:b0:f5:b1:44:3e:cd:
a9:3a:a8:18:43:f7:23:ae:c3:6c:58:af:a0:3a:16:
2a:08:54:c6:6d:86:89:dd:67:e1:e9:9a:44:08:b7:
35:3c:7c:6f:f6:e9:d2:85:6e:53:d8:56:3f:f3:7c:
f5:24:92:3e:ef:39:02:a3:67:0c:d1:66:3f:cf:8f:
93:b2:c9:de:7b:f3:e2:1e:ba:24:a4:35:b3:26:75:
c7:73:3a:ff:9a:6f:10:00:a2:31:97:59:63:04:1a:
c9:64:57:53:c8:b2:82:ef:34:fb:c6:da:89:79:53:
fd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2F:C1:1A:73:53:2E:22:3C:05:47:21:F1:11:A1:87:F1:43:DE:37
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/Fi_BGnNTLiI8BUch8RGhh_FD3jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.11.0/24
188.211.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:e8:ee:59:f8:b2:b4:b8:60:c0:22:c6:f3:b8:6f:09:7b:9b:
59:30:cb:20:ef:99:fa:70:77:a0:53:68:0b:07:ca:87:63:91:
7f:86:9d:c9:06:66:67:7d:6c:8c:f8:2d:65:76:1a:fd:08:3a:
1a:24:c0:b1:89:69:11:7a:88:03:32:97:1b:4b:d6:ce:46:56:
9c:a4:ef:62:53:b6:56:5a:32:b8:d5:60:51:94:18:d8:a1:7f:
0a:bd:82:88:fa:1e:aa:95:b0:7f:6d:cc:1b:2a:1c:a4:93:7d:
2c:59:de:fc:7c:95:11:6f:b3:dc:ea:30:2a:c8:2b:e7:84:05:
e5:4c:64:43:d5:c2:d1:b9:ca:c5:fd:12:d5:4a:83:f1:83:95:
11:d1:c5:18:7d:d9:2e:91:7e:51:3c:0b:51:7f:ff:f4:a6:bb:
b4:1d:a7:56:9e:2f:52:ca:8e:dc:f9:7a:f2:24:f7:a0:ff:2b:
92:f1:0c:9f:df:b8:b9:c0:a2:05:6c:13:74:16:16:4f:f7:81:
e2:6d:7e:9f:9b:84:1d:80:df:fc:9b:68:c3:a3:22:30:87:c5:
64:70:f7:0a:30:4b:a7:de:d5:56:1a:aa:58:2a:d3:44:56:b0:
2b:30:85:ab:fa:34:3c:50:bd:a5:24:4e:40:59:48:7d:1a:a2:
10:2c:79:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:32 2025 by rpki-client