Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/FQ5OpmXe8JFU39ieWMYD0sBERGc.roa
File: FQ5OpmXe8JFU39ieWMYD0sBERGc.roa (raw, json)
Hash identifier: hVivnakVnFQ/bQCF7RvMk/e9rzAQ4ize6EkkmhqhGfU=
Subject key identifier: 15:0E:4E:A6:65:DE:F0:91:54:DF:D8:9E:58:C6:03:D2:C0:44:44:67
Certificate issuer: /CN=f3b2805d8776eedeb7aa4cbe5af568cdb2629fc2
Certificate serial: 018A9A5890D08BEC66A8E833F8DE748A3F67
Authority key identifier: F3:B2:80:5D:87:76:EE:DE:B7:AA:4C:BE:5A:F5:68:CD:B2:62:9F:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87KAXYd27t63qky-WvVozbJin8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/FQ5OpmXe8JFU39ieWMYD0sBERGc.roa
Signing time: Fri 15 Sep 2023 19:36:50 +0000
ROA not before: Fri 15 Sep 2023 19:36:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 178.255.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9a:58:90:d0:8b:ec:66:a8:e8:33:f8:de:74:8a:3f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b2805d8776eedeb7aa4cbe5af568cdb2629fc2
Validity
Not Before: Sep 15 19:36:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=150e4ea665def09154dfd89e58c603d2c0444467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d1:d8:6c:64:bf:56:92:03:7d:63:63:06:87:
88:38:fd:24:fe:6b:97:4c:b4:7b:ce:82:1c:c8:40:
87:ff:19:13:8e:43:a8:a6:9b:d6:75:d5:5f:30:4e:
3a:59:48:51:ab:28:7c:14:f6:f7:00:81:39:5b:b9:
48:2b:17:46:60:d1:ea:43:25:4d:9e:65:8f:51:d5:
63:29:9a:44:67:8a:7f:15:64:48:76:a7:11:8c:31:
60:1c:87:71:2a:ee:6a:37:39:c4:fc:d8:88:ca:70:
e2:67:33:27:4a:4b:48:dd:9a:4a:b2:36:8a:2a:54:
05:a1:ea:45:9a:35:a6:0f:0f:7c:eb:ee:e5:c4:8b:
b9:51:c6:20:ef:3a:c0:aa:3a:cc:60:b8:b9:b3:89:
2d:60:5e:32:69:16:5d:cc:c6:fd:9a:1b:4a:ca:6a:
19:be:50:6d:d3:d0:57:a4:e0:29:31:6a:a6:68:35:
c6:8e:fa:c8:a5:2c:08:9b:e6:48:4f:b0:68:71:76:
be:02:8f:00:5a:64:a9:a1:cb:a9:4f:dd:41:77:9a:
15:43:52:f2:cf:0a:67:30:f6:51:fd:04:24:e4:2e:
13:3c:c1:4d:cd:7f:8c:79:78:f4:17:23:52:65:c9:
af:5d:70:81:0e:3f:3f:bc:5b:d6:35:40:a7:d9:81:
fd:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0E:4E:A6:65:DE:F0:91:54:DF:D8:9E:58:C6:03:D2:C0:44:44:67
X509v3 Authority Key Identifier:
keyid:F3:B2:80:5D:87:76:EE:DE:B7:AA:4C:BE:5A:F5:68:CD:B2:62:9F:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87KAXYd27t63qky-WvVozbJin8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/FQ5OpmXe8JFU39ieWMYD0sBERGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b862d3-6844-46f7-bd98-83bc797278e2/1/87KAXYd27t63qky-WvVozbJin8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.219.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e6:a9:50:55:94:bb:af:9e:ab:b8:8d:87:a9:e6:24:f5:33:
c6:92:99:39:3b:6a:90:9d:31:10:2b:c0:c8:38:f4:54:9e:c3:
13:ef:a2:8b:6b:c4:55:75:1d:43:96:ec:5a:28:2d:93:b7:ff:
01:31:c7:31:95:44:bf:fc:91:3d:ba:1f:23:05:46:ec:a6:8e:
2c:7c:53:21:43:e6:99:a2:ea:e4:f8:5b:a3:11:15:16:83:e1:
88:3d:11:75:58:5a:5c:8d:98:b8:66:f0:98:c6:f7:6f:08:fd:
0a:71:a2:15:19:e7:da:b6:ae:1b:85:ab:02:56:d9:4a:9d:7f:
6f:3d:3f:db:e7:97:dc:5a:e7:84:3d:34:c9:c9:0b:9b:3b:db:
25:79:59:84:44:16:23:cf:e3:7b:c3:e9:b1:75:71:83:d2:8d:
3b:8e:f0:48:29:1b:95:63:b2:e6:26:0d:e6:de:8d:86:7d:a1:
8b:a4:ef:54:14:7c:11:ee:c4:74:37:f5:17:a4:5e:64:a2:9e:
21:ad:76:85:9c:66:10:78:a3:df:de:10:28:2c:47:3e:10:9d:
65:20:2e:1b:65:a8:8a:42:5f:05:3a:5d:e5:e7:9f:94:b0:5e:
6d:76:06:13:6f:fa:c4:6c:58:10:98:c2:f5:58:00:28:46:99:
cf:3e:0d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:46 2024 by rpki-client on console-ams.rpki-client.org