Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FjkN8feGqqsvUjt-sZtX4NiIF2U.roa
File: FjkN8feGqqsvUjt-sZtX4NiIF2U.roa (raw, json)
Hash identifier: c0kijBKdU3aEUgUhVveI28N46afamCagXirzu32N+/c=
Subject key identifier: 16:39:0D:F1:F7:86:AA:AB:2F:52:3B:7E:B1:9B:57:E0:D8:88:17:65
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189BAD724A1911899D0C43A4D6EA6394385
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FjkN8feGqqsvUjt-sZtX4NiIF2U.roa
Signing time: Thu 03 Aug 2023 10:00:08 +0000
ROA not before: Thu 03 Aug 2023 10:00:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 185.222.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 09:40:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:d7:24:a1:91:18:99:d0:c4:3a:4d:6e:a6:39:43:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 3 10:00:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16390df1f786aaab2f523b7eb19b57e0d8881765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bd:3e:fc:99:2d:27:fa:09:9f:ab:ec:3a:88:
c0:97:74:24:27:d7:21:4d:8b:00:d9:4e:46:d6:11:
07:fe:ea:ed:3d:f7:94:3d:d9:9d:d2:40:a2:19:6c:
89:94:56:f7:67:dc:52:be:b9:d6:b3:ee:5c:9c:00:
3b:af:a8:b1:7e:f1:bf:27:07:4b:52:35:d4:5b:bd:
d6:60:51:64:fe:c9:81:45:88:16:8d:18:ff:26:04:
d9:5f:53:c3:f8:11:17:89:3e:59:fd:47:9f:ec:2a:
18:41:7b:e2:13:b2:58:73:58:44:73:98:89:9d:a6:
b3:65:f3:82:6e:71:2a:99:81:44:d3:c2:61:66:18:
a3:36:99:f0:c9:c9:3e:2f:18:60:d6:28:74:17:24:
1a:f6:bc:0a:80:19:f0:88:71:70:01:20:82:5a:dd:
9d:50:7c:e6:f6:ab:96:92:cb:fc:40:3f:58:a6:e8:
37:9e:46:d9:f8:1a:2e:d5:0d:37:7d:87:d6:5e:61:
b2:7b:58:01:76:8d:64:f2:55:7f:c0:df:bb:01:cd:
06:c0:8f:97:66:ae:d4:84:94:14:d7:11:1d:bd:ee:
a0:6f:37:51:fe:40:ca:db:65:b2:03:bd:6c:5f:6f:
53:e6:09:a1:34:b1:23:70:55:6d:0c:f1:06:1c:57:
5a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:39:0D:F1:F7:86:AA:AB:2F:52:3B:7E:B1:9B:57:E0:D8:88:17:65
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FjkN8feGqqsvUjt-sZtX4NiIF2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.28.0/24
Signature Algorithm: sha256WithRSAEncryption
11:bf:e3:57:64:e2:16:3d:e1:d4:ee:09:8b:9a:8c:6f:e4:40:
96:ae:61:28:b3:3f:3d:c7:79:f5:b3:60:13:6e:2b:b5:59:6f:
d2:e0:e5:51:67:1f:26:08:d9:33:ee:c1:29:41:29:fc:03:91:
31:20:63:d4:27:74:d5:89:4b:4b:58:ff:4c:43:8b:4a:fa:27:
52:3d:32:49:50:4e:87:65:0a:ed:1b:eb:dc:f2:5a:45:82:3c:
b2:e5:a3:63:e3:bd:d2:07:d9:43:44:b9:ed:3e:39:06:0c:f0:
9c:df:2c:66:37:a3:57:a8:2f:14:a6:ad:b8:52:0d:93:7c:da:
3a:a9:23:23:dd:da:93:91:73:f4:a0:bc:d5:06:8a:11:74:ae:
3a:1c:61:11:49:39:c6:d9:3d:c1:29:2f:b3:e0:fc:da:58:31:
ce:a1:a9:40:93:8d:68:4a:c4:de:f9:80:3b:a6:7f:b7:31:1f:
9e:18:38:4d:ba:bd:f4:11:a0:07:d1:74:45:26:16:a1:91:a5:
ef:2d:f8:1a:3a:86:0e:64:3a:10:39:c7:20:6b:24:4f:2a:b6:
61:a3:4f:cc:c8:9f:a8:5e:2a:d6:45:4c:5b:8f:32:76:70:bc:
2e:b7:71:06:15:50:be:0a:6e:e7:91:3e:2b:8e:3c:18:3c:f0:
50:23:2c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org