Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/FCbZjeaWMgsv2XP6NtM4PAlwMdA.roa
File: FCbZjeaWMgsv2XP6NtM4PAlwMdA.roa (raw, json)
Hash identifier: ntrmJPsZ3T3GCfq1U52MtOsrqdse8RfzjdW5MKmtfYU=
Subject key identifier: 14:26:D9:8D:E6:96:32:0B:2F:D9:73:FA:36:D3:38:3C:09:70:31:D0
Certificate issuer: /CN=65d7f0fd622afd6bd4a2d6ce0f1cbcc07a9c41f1
Certificate serial: 018572557C142E79038FE1C2F61C67EEE668
Authority key identifier: 65:D7:F0:FD:62:2A:FD:6B:D4:A2:D6:CE:0F:1C:BC:C0:7A:9C:41:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zdfw_WIq_WvUotbODxy8wHqcQfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/FCbZjeaWMgsv2XP6NtM4PAlwMdA.roa
Signing time: Mon 02 Jan 2023 11:54:42 +0000
ROA not before: Mon 02 Jan 2023 11:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 194.59.96.0/19 maxlen: 19
194.59.121.0/24 maxlen: 24
194.59.119.0/24 maxlen: 24
194.59.120.0/24 maxlen: 24
2001:67c:67c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 25 Apr 2023 08:32:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:7c:14:2e:79:03:8f:e1:c2:f6:1c:67:ee:e6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d7f0fd622afd6bd4a2d6ce0f1cbcc07a9c41f1
Validity
Not Before: Jan 2 11:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1426d98de696320b2fd973fa36d3383c097031d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ef:42:98:2c:a3:87:be:2c:24:33:af:c4:b2:
6f:9f:1a:5e:f5:30:35:89:4e:b7:30:84:8f:f7:b8:
73:80:f2:15:48:ab:fb:47:14:21:fb:4a:c4:4e:fc:
aa:34:d4:1b:43:0f:99:8f:9a:d5:17:16:4b:eb:ee:
d1:1b:c3:09:2a:54:11:cb:94:2b:58:59:09:89:df:
d6:cc:93:9a:98:10:de:11:10:31:9d:08:30:47:c8:
df:d5:9e:bf:8b:8b:f2:48:a6:5a:42:c1:c2:0f:a3:
3e:89:ae:09:f2:de:0f:dc:5d:ad:0f:fc:c7:ea:07:
bb:a8:62:84:99:68:9e:b7:0e:da:ec:f9:ae:67:75:
bc:69:23:b7:9c:dc:3e:e5:7e:da:49:f2:ea:13:85:
36:02:44:0b:c3:ac:80:62:a1:8b:84:e3:79:22:ec:
e0:db:97:7d:6a:79:78:bb:1c:2a:24:ba:4e:c3:5a:
21:b2:e4:05:0e:c3:94:3d:ff:d9:4b:60:bb:6f:ca:
a0:26:3a:24:1b:65:7c:a8:2d:f0:ac:b1:b6:ac:3a:
24:b4:68:fa:2b:58:2e:c9:50:5f:50:d9:2b:97:28:
07:15:c6:7d:3c:b2:37:a7:5a:19:13:c3:a2:59:d4:
9f:aa:c8:78:06:1b:cc:2b:69:25:a0:9b:ef:91:4b:
57:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:26:D9:8D:E6:96:32:0B:2F:D9:73:FA:36:D3:38:3C:09:70:31:D0
X509v3 Authority Key Identifier:
keyid:65:D7:F0:FD:62:2A:FD:6B:D4:A2:D6:CE:0F:1C:BC:C0:7A:9C:41:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zdfw_WIq_WvUotbODxy8wHqcQfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/FCbZjeaWMgsv2XP6NtM4PAlwMdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/Zdfw_WIq_WvUotbODxy8wHqcQfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.96.0/19
IPv6:
2001:67c:67c::/48
Signature Algorithm: sha256WithRSAEncryption
46:35:ac:5e:37:46:3e:ca:72:5f:3e:be:77:71:f4:f7:00:66:
13:c0:9c:0f:ec:44:13:43:ec:e3:7f:9a:48:94:65:f6:73:c0:
53:f0:a5:08:af:a7:ae:cd:43:6d:d6:76:e0:b2:22:77:f7:5b:
8f:38:9f:30:42:66:17:29:e1:1a:29:48:2b:ca:09:bc:27:bb:
ac:ed:d7:85:e0:d2:e1:a7:bc:ff:59:5c:02:6b:34:cb:86:5c:
c5:ed:6a:86:ab:c7:fa:37:6e:b8:47:5f:2c:ba:37:0f:31:a9:
da:78:40:12:6f:47:f5:9d:32:d1:2f:4c:37:90:0e:33:6a:23:
30:16:93:b2:c1:db:2b:e0:e2:74:e3:4f:85:ca:80:83:6e:ff:
7e:ee:ac:0f:59:d9:a5:c3:3f:07:98:0a:8d:b7:45:ba:2f:5a:
c6:a9:83:cd:cd:db:64:e1:d1:38:fc:4e:94:35:36:6a:d6:8d:
1e:ea:53:c1:cf:d4:1f:61:e0:5b:90:53:5c:b6:0e:10:52:56:
18:a4:25:36:b2:5e:06:e3:cc:8f:b8:1e:88:cf:c6:86:b6:e3:
30:6b:49:51:ec:06:12:41:63:c8:2b:5a:b4:61:71:cd:2a:24:
5c:d6:11:c6:c7:9a:b2:57:a5:79:c0:5f:59:4c:1d:27:20:7c:
0f:8d:7d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:19 2024 by rpki-client on console-ams.rpki-client.org