Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/_FtNd4qBApt5MpE318qMCmRjUmE.roa
File: _FtNd4qBApt5MpE318qMCmRjUmE.roa (raw, json)
Hash identifier: HRlvrkr1es1fBmkUz25F8u+ALaEOMZFwEIItnsgGdXc=
Subject key identifier: FC:5B:4D:77:8A:81:02:9B:79:32:91:37:D7:CA:8C:0A:64:63:52:61
Certificate issuer: /CN=7887a16965875f6f53bcc31f0e493a96154eb7b9
Certificate serial: 018603C7262841A89A7986E45AE515E36166
Authority key identifier: 78:87:A1:69:65:87:5F:6F:53:BC:C3:1F:0E:49:3A:96:15:4E:B7:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eIehaWWHX29TvMMfDkk6lhVOt7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/_FtNd4qBApt5MpE318qMCmRjUmE.roa
Signing time: Mon 30 Jan 2023 17:43:48 +0000
ROA not before: Mon 30 Jan 2023 17:43:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204720
IP address blocks: 185.141.226.0/24 maxlen: 24
185.141.225.0/24 maxlen: 24
185.141.224.0/24 maxlen: 24
185.141.227.0/24 maxlen: 24
2a0c:4481:9::/48 maxlen: 48
2a0c:4481:4::/48 maxlen: 48
2a0c:4480:c::/48 maxlen: 48
2a0c:4480:7::/48 maxlen: 48
2a0c:4480:2::/48 maxlen: 48
2a0c:4481:1::/48 maxlen: 48
2a0c:4481:6::/48 maxlen: 48
2a0c:4480:b::/48 maxlen: 48
2a0c:4480:6::/48 maxlen: 48
2a0c:4480:9::/48 maxlen: 48
2a0c:4481:3::/48 maxlen: 48
2a0c:4481:8::/48 maxlen: 48
2a0c:4480:d::/48 maxlen: 48
2a0c:4480:8::/48 maxlen: 48
2a0c:4480:3::/48 maxlen: 48
2a0c:4481:5::/48 maxlen: 48
2a0c:4480:1::/48 maxlen: 48
2a0c:4481::/48 maxlen: 48
2a0c:4481:7::/48 maxlen: 48
2a0c:4481:2::/48 maxlen: 48
2a0c:4480:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:c7:26:28:41:a8:9a:79:86:e4:5a:e5:15:e3:61:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7887a16965875f6f53bcc31f0e493a96154eb7b9
Validity
Not Before: Jan 30 17:43:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc5b4d778a81029b79329137d7ca8c0a64635261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:50:a2:f8:24:68:a0:50:31:b3:dd:04:bc:f6:
e2:c8:1a:84:13:51:49:5f:93:e5:24:02:80:69:bd:
6f:bb:f4:b8:9c:a1:1e:d9:a0:7d:51:cf:b0:31:47:
63:dd:4c:77:b8:3b:f4:50:8e:14:aa:4b:f3:c4:4c:
ed:cb:86:a2:90:2d:29:c4:27:ad:e0:0b:f6:25:14:
6c:83:ae:48:66:26:d2:18:ea:ba:7b:47:50:41:46:
ed:99:8c:be:cc:09:23:56:71:78:13:46:85:fa:dc:
7a:e5:05:12:51:69:f2:da:df:70:c3:46:4e:9e:9d:
25:cf:0a:91:03:cc:b6:dd:4a:29:6d:72:4e:8d:0b:
70:37:0c:f6:21:71:c5:22:5a:73:25:4c:b3:91:4d:
56:49:c1:c7:b2:e4:0f:e9:e9:97:59:72:10:a5:4a:
5e:34:e8:6d:fb:43:72:11:31:e5:78:61:71:70:24:
80:5c:1e:1a:d6:e8:35:11:60:d2:f1:3b:b4:58:21:
65:f7:95:26:32:77:aa:00:d9:f9:07:a4:16:da:6c:
a9:9a:91:ec:ac:88:49:23:90:a4:80:8f:74:c3:d1:
c9:08:15:90:a0:14:f9:68:a0:8c:5c:f5:e0:15:31:
e1:d8:d3:23:3d:99:47:20:b2:e6:60:79:58:60:05:
c6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5B:4D:77:8A:81:02:9B:79:32:91:37:D7:CA:8C:0A:64:63:52:61
X509v3 Authority Key Identifier:
keyid:78:87:A1:69:65:87:5F:6F:53:BC:C3:1F:0E:49:3A:96:15:4E:B7:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eIehaWWHX29TvMMfDkk6lhVOt7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/_FtNd4qBApt5MpE318qMCmRjUmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/eIehaWWHX29TvMMfDkk6lhVOt7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.224.0/22
IPv6:
2a0c:4480:1::-2a0c:4480:3:ffff:ffff:ffff:ffff:ffff
2a0c:4480:6::-2a0c:4480:d:ffff:ffff:ffff:ffff:ffff
2a0c:4481::-2a0c:4481:9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5a:45:66:6e:e7:bd:e3:41:2f:7e:a0:d7:b2:4c:9b:f4:c6:8e:
d3:80:ba:fc:b6:9e:a3:fa:bf:03:3d:1c:f2:a1:af:bf:60:61:
60:96:e6:19:bb:b9:45:34:23:16:4a:0c:a9:2c:11:77:d2:3c:
c4:c2:a1:46:49:3a:22:73:74:ee:c3:27:3b:88:34:4d:2e:93:
ff:27:79:f6:0e:b8:2a:c7:20:38:34:1a:0d:2c:2b:47:47:b8:
b0:42:d0:f3:30:68:e8:8a:78:dc:d8:24:ac:7d:0b:d0:6e:8c:
0b:6b:61:2b:0b:ef:b4:e8:4b:a4:12:85:9b:c5:3c:7a:f8:e1:
2c:b6:e0:dd:23:9a:36:b4:55:bc:f7:e2:25:25:93:62:da:3a:
39:da:a7:01:2f:c8:41:c2:6c:53:d7:38:31:b8:38:cb:0b:72:
9f:d8:fd:81:37:64:aa:ea:ab:5d:36:8c:7b:c3:ea:30:46:e9:
23:8d:d3:cb:16:68:fb:b9:d9:7f:eb:1c:af:7b:2a:e5:b7:c6:
f8:7c:90:f1:6f:a5:8b:ff:ec:a5:1b:0b:40:63:6e:4c:22:1b:
6c:b7:f7:c1:e5:cd:23:9c:9c:3f:4e:66:b0:0a:c5:00:55:6a:
b7:c9:39:70:95:7f:d3:c8:17:16:b0:1f:db:e5:31:20:4f:b6:
93:24:cd:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:54 2024 by rpki-client on console-ams.rpki-client.org