Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Fv_uYrq0f0agsJVNtC6R9wI0WhQ.roa
File: Fv_uYrq0f0agsJVNtC6R9wI0WhQ.roa (raw, json)
Hash identifier: /5MAjQ6QxomLzAEhmkDH5ea0/hzjOoFj6jBoRrBEVow=
Subject key identifier: 16:FF:EE:62:BA:B4:7F:46:A0:B0:95:4D:B4:2E:91:F7:02:34:5A:14
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01893F63CDAC847F481A83D9B6F89035034C
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Fv_uYrq0f0agsJVNtC6R9wI0WhQ.roa
Signing time: Mon 10 Jul 2023 10:40:52 +0000
ROA not before: Mon 10 Jul 2023 10:40:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.186.216.0/22 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.40.0/22 maxlen: 24
83.147.240.0/22 maxlen: 24
178.253.55.0/24 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 11:55:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3f:63:cd:ac:84:7f:48:1a:83:d9:b6:f8:90:35:03:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 10 10:40:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16ffee62bab47f46a0b0954db42e91f702345a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:dc:a7:b3:dd:86:05:95:dc:3c:af:bf:1c:46:
f0:0b:24:69:db:6e:a5:a4:98:9e:3b:18:94:39:8a:
74:f4:4a:01:3f:05:49:79:13:62:da:46:2f:69:42:
d3:a6:d5:d4:31:39:32:eb:69:c9:70:4d:b5:f0:4f:
88:1b:4d:a1:e8:b7:a4:19:e1:eb:56:04:d4:03:00:
f0:8d:f3:5f:12:a8:5f:6b:85:68:a5:37:86:52:a3:
42:dd:af:00:e9:8f:f5:71:f5:09:94:d8:3b:38:d0:
2d:be:07:a0:c5:cb:34:bc:26:33:3e:81:70:da:46:
99:ab:b6:b3:4e:47:06:4a:50:49:97:be:19:34:e0:
f2:68:be:aa:4a:66:4b:08:d8:f6:f4:fa:1a:42:f8:
c9:8f:87:1e:ea:7d:84:53:f5:6d:ec:b2:eb:93:63:
c3:e5:c9:cc:95:9e:5c:e9:31:52:6b:fe:49:17:d5:
59:45:4c:0d:58:e6:c3:fc:1a:22:b1:85:a5:f7:f2:
ff:19:3f:0a:58:f0:da:c6:52:16:52:5b:3c:67:28:
a8:2a:8e:ed:0c:d7:ea:08:1c:8d:d3:54:a8:01:2d:
89:ab:ed:13:c2:20:66:57:10:7e:85:42:de:53:3d:
4b:4c:79:07:72:3e:1b:a1:41:04:c5:5e:9d:1a:56:
60:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FF:EE:62:BA:B4:7F:46:A0:B0:95:4D:B4:2E:91:F7:02:34:5A:14
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/Fv_uYrq0f0agsJVNtC6R9wI0WhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.240.0/21
83.147.252.0/22
91.186.216.0/22
94.241.168.0/21
178.253.40.0/22
178.253.55.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b5:ec:13:40:a5:3c:34:23:95:5f:fb:60:37:49:6b:f7:fb:
a1:36:5c:9a:5f:38:69:5b:32:9d:cf:97:1e:0a:ed:f9:7b:d3:
ff:d5:85:b7:fb:4b:51:d7:c0:47:b2:a1:67:54:b6:31:01:92:
fa:00:cf:cc:22:64:bb:f0:9a:e8:61:e7:45:c1:e3:dd:ff:32:
eb:fb:3f:68:f8:43:73:0e:4c:91:e9:12:69:b0:e2:37:00:dd:
1a:72:35:29:30:02:1f:c5:5c:b4:5d:ab:70:39:04:09:9a:76:
2e:ec:5d:2b:5a:e2:36:bc:15:2e:45:5a:5b:70:b4:c3:92:56:
f0:d4:70:b1:0d:fc:02:9f:0a:46:ba:22:29:0d:90:5f:86:24:
bc:55:22:18:27:a9:ca:2e:b3:79:50:45:35:71:ab:8a:7a:f7:
9e:d3:83:d9:50:10:33:c7:d2:86:1d:d8:d3:2c:8b:3e:e7:c5:
fc:70:f7:90:e8:90:4c:c5:21:7e:4d:ab:5d:ea:e6:bd:ea:53:
2d:a2:d1:61:4b:76:96:1d:3e:71:6d:1e:28:ab:3d:c5:8d:57:
6b:31:7e:a4:b2:da:ec:6a:0b:94:9a:f1:6a:12:b9:fe:04:cc:
79:08:04:28:25:03:5c:0e:ac:f5:b8:2f:5d:97:ef:09:f6:41:
fa:05:e1:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org