Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/0396ad-dda7-4600-8f66-f56c779b142f/1/FIHhR0PL1Y-p8-o2AzcFHgYUnbg.roa
File: FIHhR0PL1Y-p8-o2AzcFHgYUnbg.roa (raw, json)
Hash identifier: xtnkdnIHUclecLrZGgXDOIwflRRvddhmv8whcQpmAoY=
Subject key identifier: 14:81:E1:47:43:CB:D5:8F:A9:F3:EA:36:03:37:05:1E:06:14:9D:B8
Certificate issuer: /CN=a621186413bbdfde20e592fbe5553de7f94e5987
Certificate serial: 018F06AFB204A060F52B475B91D82C9ABAD0
Authority key identifier: A6:21:18:64:13:BB:DF:DE:20:E5:92:FB:E5:55:3D:E7:F9:4E:59:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/piEYZBO7394g5ZL75VU95_lOWYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/0396ad-dda7-4600-8f66-f56c779b142f/1/FIHhR0PL1Y-p8-o2AzcFHgYUnbg.roa
Signing time: Mon 22 Apr 2024 16:42:08 +0000
ROA not before: Mon 22 Apr 2024 16:42:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.131.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 May 2024 16:45:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:06:af:b2:04:a0:60:f5:2b:47:5b:91:d8:2c:9a:ba:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a621186413bbdfde20e592fbe5553de7f94e5987
Validity
Not Before: Apr 22 16:42:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1481e14743cbd58fa9f3ea360337051e06149db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:c4:3e:8b:31:9b:97:9d:c2:18:d4:d5:38:
6b:d7:2d:a2:76:af:8e:b6:cb:2f:ba:ae:fd:76:c3:
44:64:82:6f:64:3d:49:68:3b:ac:ac:a0:22:b9:5b:
69:b3:aa:6b:8e:95:6a:b0:08:8d:3f:c4:9e:c7:a2:
c5:a5:e4:d6:ed:7c:67:b0:e0:8f:8d:fe:5b:a4:a9:
d4:f9:9e:4c:d7:8f:08:e4:1a:e0:2f:61:68:43:70:
ac:c1:e2:40:67:dc:fc:b7:e5:b3:57:4e:6e:8b:e8:
7a:1b:83:c7:94:c9:fb:65:8e:df:38:84:b9:2c:da:
03:06:c7:04:b9:ff:bb:3b:7e:05:fa:f6:0e:02:c8:
1c:1f:e5:cc:ce:ff:f0:28:d9:b8:cb:0b:49:03:c6:
76:ed:40:9a:d7:dc:b9:03:4c:ea:87:9f:93:41:3d:
4c:49:dd:75:d6:bd:a2:7d:15:d9:c9:a0:b6:f8:54:
f5:03:dd:16:2b:ec:6e:ff:bc:f4:5e:d7:16:e8:f5:
8c:ef:1c:4c:14:35:fb:e3:c0:f5:40:66:50:62:fb:
d5:15:cd:03:05:3e:af:18:30:65:b2:67:a8:0b:13:
14:0e:38:fa:d7:25:40:30:a4:3a:8e:a6:1d:3f:82:
1a:a6:da:a3:e1:86:44:10:a9:0c:a3:a9:bf:de:9f:
8b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:81:E1:47:43:CB:D5:8F:A9:F3:EA:36:03:37:05:1E:06:14:9D:B8
X509v3 Authority Key Identifier:
keyid:A6:21:18:64:13:BB:DF:DE:20:E5:92:FB:E5:55:3D:E7:F9:4E:59:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/piEYZBO7394g5ZL75VU95_lOWYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/0396ad-dda7-4600-8f66-f56c779b142f/1/FIHhR0PL1Y-p8-o2AzcFHgYUnbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/0396ad-dda7-4600-8f66-f56c779b142f/1/piEYZBO7394g5ZL75VU95_lOWYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.230.0/24
Signature Algorithm: sha256WithRSAEncryption
72:c6:d6:d4:66:1b:fe:80:f6:29:42:22:37:38:1c:c6:e3:0f:
4d:3f:cb:39:65:7a:a7:b7:3d:c7:33:46:f3:ca:09:b7:22:33:
b3:96:96:34:64:55:56:f7:48:59:66:36:03:78:af:47:52:82:
ca:98:98:27:d5:f1:b6:66:8d:9c:8f:1d:8c:60:6b:93:cf:b7:
9c:d8:3c:26:43:62:d1:9d:4b:5b:b3:63:01:17:23:57:6d:b1:
4f:fa:1c:51:ba:13:f4:bd:12:6d:ec:5a:80:ba:2d:e1:d8:76:
3e:dd:b8:60:16:d5:12:95:71:d7:b8:74:b9:a3:87:55:4e:6b:
b9:64:a6:a5:a7:75:15:36:6d:f6:b6:5f:44:fd:64:c3:0a:c4:
85:1c:86:5c:c4:a2:80:bf:6f:b8:70:82:74:0d:c1:84:4d:77:
85:bb:09:01:b3:e1:b8:ab:8a:fd:49:22:ae:1d:eb:ba:a7:29:
ed:ca:12:e8:ab:5b:4f:00:0c:d6:0c:80:ce:d2:c6:51:4a:a8:
cc:4a:fd:2f:5f:70:00:66:9b:c4:12:66:c1:bd:8a:50:f3:b9:
39:84:96:23:2f:32:0e:cd:3d:4a:3c:3f:d6:88:4e:a8:ac:83:
3f:71:d8:ac:4c:c9:3c:db:7e:0d:46:14:57:17:55:65:7e:bd:
31:5f:d6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:40 2025 by rpki-client