Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/fa5nc-7Lb6sG4AZuS2MGx-ViEVE.roa
File: fa5nc-7Lb6sG4AZuS2MGx-ViEVE.roa (raw, json)
Hash identifier: 05SX6tHDYcLZctHyvrHtrL+f0yMcW+j3ezh4hrdPzXE=
Subject key identifier: 7D:AE:67:73:EE:CB:6F:AB:06:E0:06:6E:4B:63:06:C7:E5:62:11:51
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 018DB776069A04ED38D63EB426562E506434
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/fa5nc-7Lb6sG4AZuS2MGx-ViEVE.roa
Signing time: Sat 17 Feb 2024 14:26:21 +0000
ROA not before: Sat 17 Feb 2024 14:26:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 178.236.224.0/23 maxlen: 24
178.236.226.0/24 maxlen: 24
178.236.235.0/24 maxlen: 24
178.236.238.0/23 maxlen: 24
185.2.49.0/24 maxlen: 24
185.2.50.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 06:42:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b7:76:06:9a:04:ed:38:d6:3e:b4:26:56:2e:50:64:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Feb 17 14:26:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7dae6773eecb6fab06e0066e4b6306c7e5621151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:eb:46:49:27:dc:b6:8f:6a:ab:cc:95:4a:58:
47:a3:68:f3:2d:54:7d:72:2e:89:da:bf:44:be:e2:
37:50:2b:14:53:29:4e:be:e6:af:53:3b:92:3e:7a:
8a:1a:c1:6c:56:64:8e:d6:0a:ab:a9:60:f0:8d:c7:
05:2f:7b:f3:33:60:49:a6:86:82:f3:b3:b6:b8:25:
26:6b:5c:64:c4:ec:9f:cb:64:4f:76:9f:72:99:1c:
83:9e:7c:f0:d0:79:be:87:e5:5d:05:34:9a:c3:09:
13:3b:43:3b:30:42:52:2f:b9:94:96:4d:79:33:28:
af:91:51:d8:1c:93:e9:d2:39:7d:96:61:1b:56:4f:
bb:de:53:aa:12:3e:47:dd:ca:60:ec:d1:1e:3c:70:
93:68:14:81:76:a0:8b:a9:99:d9:76:c0:78:0d:b9:
a9:05:6e:fa:db:36:61:3e:a5:f4:9a:d9:eb:d8:94:
37:33:2a:72:ca:12:92:3e:44:34:a8:20:31:a9:26:
94:b2:42:3f:1b:da:5b:dc:2e:8e:de:3d:7f:62:20:
6b:9c:9e:58:09:e2:ce:93:0a:19:67:b2:75:b4:01:
04:d1:a3:f4:c2:6b:3d:a5:55:90:8c:57:9b:76:bc:
0a:83:22:df:9e:9a:cd:98:f1:86:e5:45:38:a3:6e:
b8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AE:67:73:EE:CB:6F:AB:06:E0:06:6E:4B:63:06:C7:E5:62:11:51
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/fa5nc-7Lb6sG4AZuS2MGx-ViEVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.224.0-178.236.226.255
178.236.235.0/24
178.236.238.0/23
185.2.49.0-185.2.51.255
Signature Algorithm: sha256WithRSAEncryption
5a:b1:c4:a3:4f:14:a8:23:69:33:db:cd:c6:2f:36:b5:bd:d8:
95:31:07:12:48:56:e0:9e:49:8c:49:ff:40:2c:06:71:32:43:
fb:0f:2c:2f:de:f0:1c:33:6b:1a:19:ef:ce:5d:c5:ac:fa:c9:
bb:26:61:96:6d:aa:d7:1b:6e:ad:17:48:00:68:16:dc:3c:8c:
61:be:13:40:53:8e:ba:97:a0:43:14:69:c4:34:20:02:cd:ee:
85:53:9e:e9:f7:86:6a:90:bf:ef:41:55:ef:de:fd:64:6a:a4:
e0:86:f4:c2:73:76:79:f4:0c:d6:10:d6:33:64:71:87:69:42:
7c:68:30:df:25:c7:b0:c7:b9:20:5c:90:ef:80:07:bf:a4:03:
62:2b:0c:e6:01:73:a0:d5:bc:ab:a8:be:06:0c:f8:be:e5:c5:
7a:06:d2:fd:ba:06:ea:92:37:03:ab:ed:46:fe:76:bf:49:65:
49:6e:71:53:a5:1c:07:0e:b3:b2:e8:00:0c:87:21:1b:c0:bd:
ee:40:9d:1c:36:73:74:38:ea:f8:91:fc:8d:9d:bc:c4:79:8d:
78:19:15:cd:d9:24:ad:4e:90:fa:4b:86:af:dd:38:2c:40:55:
b2:db:f8:ff:07:23:5d:4d:13:e3:13:35:53:13:7b:83:5c:6e:
da:37:ff:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:13 2024 by rpki-client on console-ams.rpki-client.org