Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/FMfxBTa1PhXxzkr1vUR99vXqMEw.roa
File: FMfxBTa1PhXxzkr1vUR99vXqMEw.roa (raw, json)
Hash identifier: sXrO9wFJ/6M+ARB9FW22VwuAZnzyi384qTomoHFtmiY=
Subject key identifier: 14:C7:F1:05:36:B5:3E:15:F1:CE:4A:F5:BD:44:7D:F6:F5:EA:30:4C
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0188295FA5BF2CDD72C4B0DDFEE3A582A60B
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/FMfxBTa1PhXxzkr1vUR99vXqMEw.roa
Signing time: Wed 17 May 2023 11:01:54 +0000
ROA not before: Wed 17 May 2023 11:01:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:202::/32 maxlen: 32
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 02 Jun 2023 08:21:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:5f:a5:bf:2c:dd:72:c4:b0:dd:fe:e3:a5:82:a6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: May 17 11:01:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14c7f10536b53e15f1ce4af5bd447df6f5ea304c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1f:90:5a:bd:cc:e0:20:85:0d:20:33:61:13:
b8:94:14:c1:aa:08:b8:4d:1a:be:0b:f7:ab:98:ff:
5c:a8:04:35:59:b4:6a:2f:4b:cc:8a:c2:29:8c:4e:
47:9c:40:c0:d7:b1:e0:e0:9d:ba:41:49:dd:8a:0a:
da:36:8b:d0:0e:2e:c9:e6:b5:4e:43:0b:1b:7a:e6:
0e:61:da:76:3a:2d:a7:4f:43:c5:e0:10:5d:d6:f7:
83:b4:6c:c4:a1:29:98:b6:9f:2b:e2:d2:6b:85:06:
44:a8:00:51:25:c8:2f:27:01:66:f3:d0:3f:d0:dc:
23:a2:6a:93:0a:16:29:2a:ff:70:b5:89:c0:a0:3b:
44:9f:20:7b:ea:34:6a:36:9d:56:98:b2:ae:6a:34:
4c:b2:ad:ac:a7:d9:29:cb:9e:32:16:88:c6:e0:4a:
09:8f:e8:96:9b:d7:80:a6:55:64:9f:61:41:a0:7f:
c5:7b:a8:95:f6:40:26:93:fc:2b:96:49:59:41:cf:
06:2e:6d:d9:57:a3:a8:e5:59:58:d9:cb:d7:55:c3:
31:27:c0:11:c3:ef:0d:06:d3:16:d7:ea:9e:f4:19:
a0:af:64:ef:d5:87:c2:fd:41:23:24:6e:4a:bd:fa:
7a:bc:7b:35:c9:65:3c:05:e2:69:5f:05:c7:3a:2c:
b3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C7:F1:05:36:B5:3E:15:F1:CE:4A:F5:BD:44:7D:F6:F5:EA:30:4C
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/FMfxBTa1PhXxzkr1vUR99vXqMEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
71:b1:0a:43:0f:e9:71:94:e8:af:5f:4a:c6:0c:92:a3:49:da:
86:87:ec:64:a9:76:56:2c:9e:5f:96:54:2a:86:81:37:86:51:
83:00:40:f1:41:9b:80:d6:1a:1e:6f:b4:0e:e6:83:69:cc:dd:
c5:cd:50:87:8c:e7:50:4f:9e:dc:91:12:67:d9:70:ce:5e:e6:
45:39:77:a9:e7:7d:1b:3a:d7:28:2d:3a:bd:66:81:a2:72:92:
8d:c0:20:2c:19:79:ec:7a:89:8c:74:d6:73:f8:07:7e:b7:33:
f2:f3:81:7f:84:c8:26:06:1a:a6:7d:33:48:1f:63:24:8b:16:
2f:67:f7:d7:b3:22:93:10:b1:7b:f0:ef:f1:34:d4:f5:e7:be:
00:59:e6:78:48:72:37:31:eb:a2:36:17:fc:96:18:1f:d1:dd:
4a:7a:7e:30:df:36:39:a5:db:f1:a4:f1:ad:38:34:ae:e5:89:
90:76:00:ba:63:a5:a2:44:30:9f:52:1a:05:47:21:23:a8:7d:
e7:e8:12:2c:98:ca:1f:b4:81:65:95:e5:37:d7:fa:98:ea:f0:
6a:6f:e7:f3:26:0d:81:52:d7:cd:6c:c7:dc:ba:95:fb:76:2a:
76:7e:f5:79:09:1f:49:66:9e:91:54:72:ac:cb:93:9c:6e:98:
4b:07:67:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org