Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fomTMtKJBYx4TK8gzBdxQ4ugHf8.roa
File: fomTMtKJBYx4TK8gzBdxQ4ugHf8.roa (raw, json)
Hash identifier: J73DOoyF5Si7l+2mN8RsTmlr+PYUEkJqoj4W3suUDQw=
Subject key identifier: 7E:89:93:32:D2:89:05:8C:78:4C:AF:20:CC:17:71:43:8B:A0:1D:FF
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBD1BD3193CF9979C233FDF1266BA2
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fomTMtKJBYx4TK8gzBdxQ4ugHf8.roa
Signing time: Mon 02 Jan 2023 05:37:09 +0000
ROA not before: Mon 02 Jan 2023 05:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212567
IP address blocks: 5.1.66.0/24 maxlen: 32
185.150.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:d1:bd:31:93:cf:99:79:c2:33:fd:f1:26:6b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e899332d289058c784caf20cc1771438ba01dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:19:6e:32:06:2a:fa:fd:a4:74:d2:ac:bd:27:
02:49:17:76:db:56:0f:32:a7:fa:d2:e9:6f:7b:0f:
89:48:6b:15:2d:1f:6c:93:a0:9b:72:97:05:72:3d:
b3:d7:22:f5:12:13:7a:68:15:33:ef:b5:13:2c:89:
9b:8a:3a:ed:69:42:47:80:88:9d:77:36:ff:fc:8e:
78:17:35:fa:b5:86:49:be:d6:60:2d:96:79:b0:b6:
0d:b2:d3:54:d9:fa:ea:ec:15:62:66:72:55:09:1c:
05:58:dc:4e:ab:ef:df:c4:17:c1:35:f7:89:7e:3d:
d5:da:2a:ce:bd:ca:55:8f:9e:9e:12:7b:3a:8a:ef:
2f:0a:7d:c9:12:71:29:2f:61:a4:d3:5a:c6:00:64:
c8:59:1f:3a:05:01:5b:ee:2e:71:9d:65:90:52:7d:
42:74:cc:f9:ef:a9:a9:f1:8d:7f:59:e8:a4:6c:49:
0e:25:15:50:0d:37:bf:24:fe:43:1e:25:ac:19:41:
e0:90:89:ef:bb:ca:fe:42:9b:e9:21:43:2d:e2:a7:
05:0c:74:06:9c:14:ea:37:b0:82:ba:97:4f:e9:28:
8b:53:3d:95:89:17:4c:55:c7:af:8b:a7:5e:11:9a:
c1:4c:7c:77:56:1c:a0:f8:c9:f3:36:d0:8a:9f:b4:
24:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:89:93:32:D2:89:05:8C:78:4C:AF:20:CC:17:71:43:8B:A0:1D:FF
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fomTMtKJBYx4TK8gzBdxQ4ugHf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.66.0/24
185.150.99.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:01:64:7d:2a:39:65:93:c5:35:2b:6f:a1:ed:a5:d3:3c:8d:
b1:d1:a4:87:19:2f:b4:b1:c3:c1:d6:4d:d0:a6:1d:0c:4c:3e:
8a:7f:e1:da:9b:26:58:15:92:74:c8:bd:fc:e9:95:65:b1:6c:
3f:ad:38:d9:f2:f2:2e:a1:ec:43:40:80:47:f5:84:b0:dd:73:
3a:04:d1:04:dd:41:52:d1:7d:a8:c1:5d:02:48:c5:45:b3:dc:
57:51:e5:37:b5:c2:fc:cb:a8:d2:20:37:60:95:94:eb:8c:78:
52:c9:b8:d0:79:d3:1a:df:e9:9c:08:0b:a9:0b:37:0b:e7:a7:
ec:a8:a5:af:4a:b3:d2:18:9f:c7:14:19:a8:9d:80:05:95:2b:
cc:fe:f1:56:4d:0f:97:f9:86:79:d8:d9:4f:cb:d4:00:38:78:
e0:a6:38:7e:1e:73:69:05:36:3a:23:0a:9b:ca:53:cc:3d:11:
cd:0a:56:7f:b8:41:dc:3f:3a:c1:b0:91:20:94:f9:97:77:13:
45:d1:c0:51:94:3e:cf:55:49:f1:54:fa:9d:e7:4e:72:d2:3d:
14:2b:77:3e:2e:34:92:c8:0f:03:34:b9:a1:14:43:1e:fc:2c:
3f:14:13:21:10:31:5c:0c:d9:71:5b:0d:88:ac:f1:80:79:49:
e8:3d:54:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org