Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/FvzWC4B85Hpu42pEB_6IzgeT4mU.roa
File: FvzWC4B85Hpu42pEB_6IzgeT4mU.roa (raw, json)
Hash identifier: Mo4XkmG1lpFCQdsVQrUKGK+H021ypHUK+gpBA9mm7PI=
Subject key identifier: 16:FC:D6:0B:80:7C:E4:7A:6E:E3:6A:44:07:FE:88:CE:07:93:E2:65
Certificate issuer: /CN=25bbed0bff7ffeab67f302b411a00701854a6c30
Certificate serial: 01856ECB8F0FE532394140150CFAD66D3029
Authority key identifier: 25:BB:ED:0B:FF:7F:FE:AB:67:F3:02:B4:11:A0:07:01:85:4A:6C:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbvtC_9__qtn8wK0EaAHAYVKbDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/FvzWC4B85Hpu42pEB_6IzgeT4mU.roa
Signing time: Sun 01 Jan 2023 19:25:12 +0000
ROA not before: Sun 01 Jan 2023 19:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208935
IP address blocks: 194.104.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jul 2023 07:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:8f:0f:e5:32:39:41:40:15:0c:fa:d6:6d:30:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25bbed0bff7ffeab67f302b411a00701854a6c30
Validity
Not Before: Jan 1 19:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16fcd60b807ce47a6ee36a4407fe88ce0793e265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0f:ee:5c:4c:0c:7a:26:62:dc:ad:f0:3d:aa:
9d:b2:fc:4f:aa:13:3a:27:f3:41:24:8d:c6:c2:94:
bc:41:d5:61:e1:2c:45:dc:c2:e0:b0:ff:72:10:b5:
f8:6e:56:1f:9d:ac:26:0f:ff:5a:4e:f2:85:9b:4c:
b1:20:ca:3e:a0:b5:91:d3:5c:5c:cf:77:fc:65:d8:
93:44:be:41:85:67:13:57:9c:81:22:28:0c:8b:a7:
a3:80:dc:51:7f:89:9e:69:31:11:c8:11:9c:3c:7b:
f9:14:9b:4b:39:8e:58:e7:2d:af:47:35:00:91:05:
88:71:9f:20:ea:03:4a:da:7d:90:fc:c7:cf:6b:18:
67:bc:34:36:f8:de:e8:c3:41:a4:64:2b:b0:a9:0f:
9a:30:7f:ea:c8:46:34:35:80:56:03:88:cd:46:f1:
76:15:c8:9a:63:74:e7:fe:2d:58:41:09:f1:a9:9e:
f5:7a:7f:0f:82:c8:95:f2:f7:be:a0:70:69:1e:8d:
37:92:f3:d3:17:a8:09:14:c6:af:86:b6:ff:8f:f9:
66:43:e1:58:b3:a1:1c:42:8e:b5:37:2c:fa:f3:c1:
4d:8c:f6:23:47:40:df:58:c7:f9:3c:70:2f:57:98:
7e:15:60:84:f4:e0:3e:1c:32:aa:ae:b8:47:ab:d6:
4f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FC:D6:0B:80:7C:E4:7A:6E:E3:6A:44:07:FE:88:CE:07:93:E2:65
X509v3 Authority Key Identifier:
keyid:25:BB:ED:0B:FF:7F:FE:AB:67:F3:02:B4:11:A0:07:01:85:4A:6C:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbvtC_9__qtn8wK0EaAHAYVKbDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/FvzWC4B85Hpu42pEB_6IzgeT4mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/JbvtC_9__qtn8wK0EaAHAYVKbDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:cf:b5:79:1f:57:e2:82:bd:d5:31:00:86:30:f4:62:95:fb:
ac:0c:2e:13:a5:d5:1a:c8:f3:39:7a:04:c0:e6:0c:1a:08:4f:
30:24:c7:68:92:eb:4d:78:b7:71:32:1c:d4:ec:04:96:3a:40:
ca:ac:5f:55:1b:e2:d7:da:0b:00:f9:04:7a:0c:bb:bf:e0:29:
f1:5b:b8:e4:cd:17:b5:f1:70:e9:fc:79:f0:7d:dc:72:0b:ed:
4e:a3:a7:4d:8d:df:4f:b9:7c:b9:08:d8:20:6e:be:ee:60:77:
62:a8:7c:bb:1f:e7:28:68:ee:eb:86:a7:a2:8c:4e:e6:95:e2:
a7:a8:81:4b:48:ec:8a:1f:ad:91:e8:00:7d:60:79:bc:1b:46:
7e:c9:54:de:a9:d3:8e:38:a3:79:94:00:1d:7a:04:2f:26:8f:
4f:62:bf:be:24:20:a5:cc:92:5d:0b:22:92:f5:48:e1:fb:a9:
94:69:14:e8:7e:2f:3c:bd:1d:52:32:38:4a:62:b0:49:d5:49:
f5:87:d9:14:35:9e:62:a9:d0:20:3b:77:b0:8e:c6:4b:44:38:
82:0c:34:33:a0:f4:3b:94:bf:70:0d:fe:d2:60:d5:a6:da:ec:
79:25:45:61:0a:01:4a:09:5e:fe:50:a1:d8:04:a0:05:18:64:
6d:55:b9:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:57 2024 by rpki-client on console-ams.rpki-client.org