Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ftmsJDdADYcad6JaBzmuNaQbOUc.roa
File: ftmsJDdADYcad6JaBzmuNaQbOUc.roa (raw, json)
Hash identifier: wqgXG7Qi9JjObh02Aa9iw4QM8/KpHlZm7mKJRZ6je4k=
Subject key identifier: 7E:D9:AC:24:37:40:0D:87:1A:77:A2:5A:07:39:AE:35:A4:1B:39:47
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C6D45E51C85A506951689B9B0BD2AF967
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ftmsJDdADYcad6JaBzmuNaQbOUc.roa
Signing time: Fri 15 Dec 2023 11:39:06 +0000
ROA not before: Fri 15 Dec 2023 11:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400529
IP address blocks: 185.222.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:45:e5:1c:85:a5:06:95:16:89:b9:b0:bd:2a:f9:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 15 11:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ed9ac2437400d871a77a25a0739ae35a41b3947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0f:2a:3c:8c:a5:5a:de:c7:ac:a2:4b:98:cb:
b0:10:44:58:22:e2:7c:15:c9:f9:2c:fe:63:03:9a:
e8:ea:b0:10:02:6b:41:72:e9:b7:19:c3:1f:d4:56:
40:7e:fa:a2:18:e3:f5:7e:3b:c2:bf:14:36:0b:48:
90:68:ec:ea:41:0f:28:84:bf:cb:c7:78:89:93:b4:
84:4f:a0:1c:1d:58:12:51:f5:ff:30:1a:25:bf:33:
41:98:63:43:20:c8:98:a2:35:b7:f0:23:bd:37:f2:
d2:5d:da:fe:2c:7b:ff:ca:f2:24:8a:87:cc:35:8f:
2b:7e:b2:28:2b:f0:de:0a:99:67:2d:f1:6b:50:8f:
5c:10:8f:a4:69:cf:47:39:d1:0b:59:70:33:b4:90:
42:99:65:63:4f:a6:20:33:3b:e7:95:3b:6f:c2:79:
fc:6b:be:8d:f2:cc:7c:e9:73:92:d4:81:ea:71:d6:
60:ec:b1:d6:bc:44:da:d4:d4:41:4c:b6:a2:3c:b8:
cd:2e:bf:06:da:25:95:24:ea:82:32:5d:ca:6d:9d:
90:ff:49:bb:b1:24:5b:54:df:86:c9:c9:e1:73:c2:
6f:4e:24:a8:66:7a:dd:b5:3d:71:04:38:7c:27:c2:
3e:6c:fc:5c:67:d5:35:ab:a9:fc:4f:0b:2a:2e:4e:
43:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D9:AC:24:37:40:0D:87:1A:77:A2:5A:07:39:AE:35:A4:1B:39:47
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ftmsJDdADYcad6JaBzmuNaQbOUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.31.0/24
Signature Algorithm: sha256WithRSAEncryption
45:4f:b9:20:1d:42:a1:a6:d4:99:a5:f4:86:0b:36:f4:bb:ca:
d4:a7:ab:66:e6:05:f7:6d:98:62:8d:59:03:8f:58:30:8c:5d:
01:f5:de:6c:c6:88:5b:8c:30:e4:95:99:f5:7e:3a:c3:6b:2a:
19:88:78:98:74:2e:7d:01:8e:45:e9:a4:d4:36:5b:4a:47:a3:
05:0a:85:0c:71:81:2d:61:1d:aa:b7:53:72:0c:63:3f:80:03:
5b:7c:fe:87:b1:fc:48:a4:2e:a4:70:0d:09:da:56:aa:b8:8f:
40:c1:38:d3:7a:be:1f:09:20:10:44:20:d6:a9:6f:72:34:ac:
cc:03:f5:e7:3f:a0:6c:b5:28:04:1d:7a:e0:68:14:3e:2d:cf:
0b:4a:9c:14:98:15:4f:c3:cb:64:5f:d8:82:38:f8:64:fe:ec:
52:b5:34:86:22:e7:e6:82:d4:73:4a:56:f5:a3:ed:4d:87:3a:
85:ac:c1:68:ee:be:27:9a:70:4c:55:47:05:59:90:16:b7:71:
93:99:8f:ef:49:fd:2b:6a:44:5d:3c:89:20:37:3e:40:ca:0e:
d5:57:ae:e3:6b:82:07:8a:53:20:c0:0a:3b:09:a6:97:c2:9e:
06:6e:09:0d:3f:fe:48:34:f8:37:04:53:92:fd:18:c3:b7:e0:
f1:7c:c0:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org