Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/FJQSvLjjLSLITtEenW_RXkyk9SY.roa
File: FJQSvLjjLSLITtEenW_RXkyk9SY.roa (raw, json)
Hash identifier: rctOyxzNjdxtVm4RXwsqmIRP+fUt68o7GlmBK4UCXYs=
Subject key identifier: 14:94:12:BC:B8:E3:2D:22:C8:4E:D1:1E:9D:6F:D1:5E:4C:A4:F5:26
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 01856D940BE2854368ABD9B6D01B89D9B3BC
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/FJQSvLjjLSLITtEenW_RXkyk9SY.roa
Signing time: Sun 01 Jan 2023 13:44:56 +0000
ROA not before: Sun 01 Jan 2023 13:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203214
IP address blocks: 185.118.96.0/24 maxlen: 24
185.118.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 20 Feb 2023 08:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:0b:e2:85:43:68:ab:d9:b6:d0:1b:89:d9:b3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: Jan 1 13:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=149412bcb8e32d22c84ed11e9d6fd15e4ca4f526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cd:03:7d:7e:b7:d1:1f:30:55:fa:18:eb:3e:
03:c4:1e:8a:64:e9:7c:39:1c:06:fd:fa:a1:61:c8:
06:8c:5a:79:26:f0:62:13:cd:7f:d7:4b:69:e4:09:
1e:89:a6:8b:20:6d:a3:75:c2:79:3b:79:a2:d8:02:
14:c5:17:a5:66:b9:24:d5:33:4c:c4:3b:dc:fc:95:
91:6b:d6:04:8c:11:9b:98:83:ed:ac:14:d5:9f:6e:
57:48:a5:d8:c0:50:b1:4c:8a:a1:ae:1d:6c:3a:10:
83:19:7e:71:92:f9:3d:6a:93:13:99:4f:32:83:2f:
ee:f2:ca:9d:45:45:6f:a1:88:ee:0c:4b:9a:a5:36:
d8:67:c0:74:b3:42:5a:26:fd:f1:fd:86:a0:6b:b3:
cf:6c:e8:a5:ca:bb:6c:71:96:a4:19:ca:4b:36:5d:
3e:84:22:f0:1d:42:a4:51:c3:73:e9:c8:6a:30:84:
fa:78:14:33:c4:ed:d7:68:69:3f:37:56:58:c2:f1:
64:03:01:6b:c4:5e:b8:5d:fa:ea:e3:b5:16:75:20:
b7:d8:99:bf:04:f3:7a:8b:fc:46:5c:7e:92:de:5a:
9d:f1:b5:9f:1a:60:a6:8c:2b:b0:9b:f9:41:4c:38:
a1:82:c3:28:73:50:ee:55:d1:a6:c3:6d:a9:5c:2c:
4e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:94:12:BC:B8:E3:2D:22:C8:4E:D1:1E:9D:6F:D1:5E:4C:A4:F5:26
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/FJQSvLjjLSLITtEenW_RXkyk9SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.96.0/22
Signature Algorithm: sha256WithRSAEncryption
64:91:d8:dd:24:20:9e:e0:69:86:44:19:ee:27:04:37:41:48:
d4:da:ac:cf:2a:ab:18:b2:4a:17:60:ab:9d:bc:09:b4:af:5f:
05:18:f1:c9:41:c2:05:db:f3:38:80:84:de:d7:af:9d:02:6c:
a0:b5:0c:ee:bb:27:96:a9:3f:c8:0d:05:e3:f9:93:69:a4:39:
f1:4c:58:e0:4e:7a:76:10:c0:b0:84:f8:f0:61:83:cc:a9:06:
25:d9:e5:54:89:ef:bb:2c:a6:5e:f3:f6:ce:7a:9c:56:d3:53:
ec:32:7d:4c:72:01:a5:69:70:74:df:cd:af:50:f9:af:e7:b5:
26:8c:15:fb:52:20:2b:0f:f7:4e:b4:a4:1a:8e:f7:b3:c0:07:
86:10:00:67:b0:ae:66:f3:d0:dc:29:f4:6f:04:69:5f:f9:0c:
24:b8:cb:3d:6d:f9:fc:ad:f2:80:21:66:09:42:07:93:ee:ce:
1b:35:4a:1e:4b:b2:4b:5e:e2:a9:c1:35:72:da:ae:3f:92:fb:
70:8f:06:ca:4b:90:a3:64:dc:6e:b4:be:5a:6a:5e:0f:2f:88:
48:52:d4:01:ef:49:8a:30:8c:cf:eb:b7:08:3c:3c:5a:24:77:
98:00:73:37:d6:1f:b0:e5:7f:2d:8c:9f:2e:0f:d7:65:f7:13:
71:8d:85:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:11 2024 by rpki-client on console-fra.rpki-client.org