Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/FjbwQ26908hiCBRb92f5ZwJAbvA.roa
File: FjbwQ26908hiCBRb92f5ZwJAbvA.roa (raw, json)
Hash identifier: IU5FAzSrWyEGrlbBq1FVFMZGDonfwB7e32Y/Dx7/tSA=
Subject key identifier: 16:36:F0:43:6E:BD:D3:C8:62:08:14:5B:F7:67:F9:67:02:40:6E:F0
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 019407E9EF43079B6509FB3F914400EB416E
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/FjbwQ26908hiCBRb92f5ZwJAbvA.roa
Signing time: Fri 27 Dec 2024 11:39:19 +0000
ROA not before: Fri 27 Dec 2024 11:39:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205299
IP address blocks: 185.16.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:07:e9:ef:43:07:9b:65:09:fb:3f:91:44:00:eb:41:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Dec 27 11:39:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1636f0436ebdd3c86208145bf767f96702406ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b1:31:56:c5:e8:d8:d7:d5:df:ab:fa:b6:a9:
a4:94:f9:f6:d7:1a:da:92:1d:c8:5c:19:bc:40:ff:
19:41:39:45:43:d7:a4:9f:b1:b0:ab:47:b9:5f:5b:
60:b2:4a:00:a0:74:c1:ba:bd:5f:3e:e4:b3:40:34:
24:e5:12:d9:11:38:1a:7b:da:0e:6d:ef:59:49:01:
9b:83:20:e7:f8:9b:b6:63:c3:87:25:7a:0d:7f:5d:
04:70:05:b5:d2:ea:ff:96:93:df:16:6e:0a:b9:da:
56:51:e3:88:de:88:d3:dc:ff:c2:28:05:43:93:6d:
6a:0a:7a:f0:c8:48:f0:b6:6d:64:5e:48:27:37:1f:
cb:db:47:2c:82:5d:0f:11:8d:1a:d6:e0:3a:1a:5f:
38:86:03:ab:54:e5:7f:39:91:19:06:c4:f4:d6:7b:
03:95:ae:3c:32:5b:6d:93:10:2a:8e:d6:c5:e5:f4:
f6:e6:72:91:81:27:37:99:ab:fa:e4:89:53:f7:3b:
e3:02:72:22:f2:5c:92:74:54:5e:2b:b6:6d:64:4d:
6d:66:5c:bc:02:57:cf:39:26:79:ea:ec:5f:f7:65:
e3:49:22:8a:29:16:a7:f1:ca:b7:ac:61:06:2a:08:
3e:33:30:9e:78:af:5e:63:f0:49:ab:87:ef:94:f8:
a7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:36:F0:43:6E:BD:D3:C8:62:08:14:5B:F7:67:F9:67:02:40:6E:F0
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/FjbwQ26908hiCBRb92f5ZwJAbvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.37.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a8:78:f2:dd:e2:c9:f5:e7:1f:12:f6:05:b4:c9:f0:d0:a8:
93:91:2c:14:a8:f6:c7:9a:8b:bb:99:8e:d7:71:a7:5f:16:4a:
2b:e0:3d:65:95:9d:0c:4f:a7:5a:ee:f9:15:28:aa:11:ff:57:
50:4b:5c:f4:8a:24:bc:2b:8e:6e:7d:68:ca:85:39:62:e1:25:
e1:3c:6f:ef:fe:bc:1d:f3:88:6a:18:3e:53:7d:a7:de:13:da:
e0:aa:5c:79:87:63:b7:70:5e:1d:d4:cc:6c:61:21:6a:9f:40:
63:97:c4:d8:bc:4e:99:c5:13:f7:03:33:e1:5c:d6:3d:1c:7b:
15:18:b7:77:8b:86:ff:a3:7b:48:97:dc:a1:8b:29:ec:61:9b:
7d:24:e7:1a:44:95:3c:d3:8e:1c:fc:92:7a:ea:18:21:d0:bb:
1c:6e:fe:68:18:6f:2c:5e:3e:48:4b:14:5a:06:d5:59:d5:78:
9e:65:36:79:10:db:45:05:a4:f4:79:78:bc:2c:21:bd:e0:b5:
dc:c8:3a:b2:9a:fe:22:f7:e7:2e:e7:9c:2b:ee:51:72:6f:58:
0a:e3:2a:49:fe:7a:5e:18:76:03:fd:e3:c0:14:c2:a5:83:cf:
a2:11:2d:30:83:3b:ff:f9:80:3a:24:fd:00:06:a3:ed:65:c3:
79:d8:9a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:27:06 2025 by rpki-client