Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/Fk5qhgoKhU-S6GX97z_6igjaCUE.roa
File: Fk5qhgoKhU-S6GX97z_6igjaCUE.roa (raw, json)
Hash identifier: ABQ7sYMBCVPDjbcCBPvlfMyK061IIcetye8/oB212co=
Subject key identifier: 16:4E:6A:86:0A:0A:85:4F:92:E8:65:FD:EF:3F:FA:8A:08:DA:09:41
Certificate issuer: /CN=3a0429b5aecac8364544bf623f94f163afdce561
Certificate serial: 018CC94E34917FEBE6F286C6958FA1368284
Authority key identifier: 3A:04:29:B5:AE:CA:C8:36:45:44:BF:62:3F:94:F1:63:AF:DC:E5:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgQpta7KyDZFRL9iP5TxY6_c5WE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/Fk5qhgoKhU-S6GX97z_6igjaCUE.roa
Signing time: Tue 02 Jan 2024 08:33:14 +0000
ROA not before: Tue 02 Jan 2024 08:33:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197938
IP address blocks: 146.0.0.0/20 maxlen: 20
2a04:e540::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 22 Feb 2024 10:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:34:91:7f:eb:e6:f2:86:c6:95:8f:a1:36:82:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0429b5aecac8364544bf623f94f163afdce561
Validity
Not Before: Jan 2 08:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=164e6a860a0a854f92e865fdef3ffa8a08da0941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:88:40:93:f2:16:c8:80:0d:ee:65:de:95:a1:
ca:34:d8:a0:30:d5:54:36:5a:e0:e9:8f:8d:73:e4:
1c:5a:c1:ea:11:7d:c1:50:e6:7e:c9:e5:c6:69:2a:
1d:a5:cd:19:d5:50:2b:89:21:a2:fb:f1:b7:82:ec:
ab:e0:9d:39:bd:d7:42:09:9b:41:5d:09:6d:17:c5:
2e:70:3a:93:af:88:8b:8f:03:c4:69:3e:d3:89:d1:
e3:bb:90:63:27:e7:b4:b4:64:a1:71:ab:02:c7:75:
29:03:9a:65:29:80:31:e8:06:a9:c2:37:28:20:be:
43:dd:04:ad:b1:30:11:25:29:f6:bf:84:84:45:d9:
ce:3d:eb:03:65:c8:d5:26:7b:37:c4:6b:6e:64:2e:
ac:1d:96:84:30:79:ee:5f:eb:ac:b1:71:fa:f8:0a:
58:6d:d5:58:a0:64:c4:15:8a:24:37:bf:f9:bd:e6:
7d:f2:21:7f:04:c4:f9:47:c3:e6:b5:ca:7d:69:75:
9b:ef:a6:6c:f6:f1:7c:4f:21:1f:d1:e7:2b:67:08:
f1:69:90:c8:8d:d0:14:b3:62:c1:12:cb:f8:c4:1f:
73:73:c2:65:7d:46:ab:00:d3:b8:e8:40:7d:52:17:
a3:dc:49:bd:25:ef:11:6a:35:f1:cc:eb:57:e7:c1:
28:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4E:6A:86:0A:0A:85:4F:92:E8:65:FD:EF:3F:FA:8A:08:DA:09:41
X509v3 Authority Key Identifier:
keyid:3A:04:29:B5:AE:CA:C8:36:45:44:BF:62:3F:94:F1:63:AF:DC:E5:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgQpta7KyDZFRL9iP5TxY6_c5WE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/Fk5qhgoKhU-S6GX97z_6igjaCUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fb9215-d1d1-47c2-ac81-84712c9f3464/1/OgQpta7KyDZFRL9iP5TxY6_c5WE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.0.0.0/20
IPv6:
2a04:e540::/32
Signature Algorithm: sha256WithRSAEncryption
7c:e1:1f:8f:67:5c:68:c7:70:b4:03:09:67:4a:e8:ff:21:af:
d9:c0:75:f1:bd:f7:a2:fe:1a:be:d2:6f:51:3a:81:34:6f:19:
e9:d6:36:d5:13:30:9d:bd:25:40:a8:5f:9a:eb:4e:81:a6:5c:
2f:af:4e:54:6a:51:5a:41:24:8b:91:71:44:03:15:e1:f2:eb:
98:75:85:12:ed:36:14:cc:e3:22:4c:c2:1c:8f:84:b3:d5:f0:
13:3c:9f:b4:7b:4b:d2:1b:2d:f8:df:e8:e5:01:0e:ff:81:35:
50:d6:68:1e:aa:4c:1e:1b:50:67:80:be:9d:3b:61:c7:7a:5c:
81:c2:99:91:be:6c:67:7b:e7:64:0f:7c:74:18:a4:d8:75:b2:
ca:45:69:9d:38:b5:0a:00:69:86:12:24:f3:f4:05:df:42:a5:
39:aa:16:41:aa:5d:8e:be:70:9f:83:32:da:af:d5:db:69:2c:
a5:63:37:68:27:24:44:a5:b3:cb:02:36:4a:7e:6b:d9:e0:d1:
81:aa:54:22:48:7f:15:e9:5f:b9:33:d9:69:22:c1:9c:dc:f1:
c8:f2:b7:a2:5b:58:43:f9:cc:94:15:08:51:60:a3:3f:e1:71:
ca:1f:fa:d1:e0:d6:00:33:f2:da:e6:94:a9:39:90:9a:0b:b0:
04:8b:a9:24
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzJTjSRf+vm8obGlY+hNoKEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMDQyOWI1YWVjYWM4MzY0NTQ0YmY2MjNmOTRmMTYzYWZk
Y2U1NjEwHhcNMjQwMTAyMDgzMzE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjRlNmE4NjBhMGE4NTRmOTJlODY1ZmRlZjNmZmE4YTA4ZGEwOTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4hAk/IWyIAN7mXelaHKNNigMNVU
Nlrg6Y+Nc+QcWsHqEX3BUOZ+yeXGaSodpc0Z1VAriSGi+/G3guyr4J05vddCCZtB
XQltF8UucDqTr4iLjwPEaT7TidHju5BjJ+e0tGShcasCx3UpA5plKYAx6Aapwjco
IL5D3QStsTARJSn2v4SERdnOPesDZcjVJns3xGtuZC6sHZaEMHnuX+ussXH6+ApY
bdVYoGTEFYokN7/5veZ98iF/BMT5R8Pmtcp9aXWb76Zs9vF8TyEf0ecrZwjxaZDI
jdAUs2LBEsv4xB9zc8JlfUarANO46EB9Uhej3Em9Je8RajXxzOtX58EoSwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBZOaoYKCoVPkuhl/e8/+ooI2glBMB8GA1UdIwQY
MBaAFDoEKbWuysg2RUS/Yj+U8WOv3OVhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2dRcHRhN0t5RFpGUkw5aVA1VHhZNl9jNVdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mYjkyMTUtZDFkMS00N2MyLWFjODEt
ODQ3MTJjOWYzNDY0LzEvRms1cWhnb0toVS1TNkdYOTd6XzZpZ2phQ1VFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9mYjkyMTUtZDFkMS00N2MyLWFjODEtODQ3MTJjOWYzNDY0
LzEvT2dRcHRhN0t5RFpGUkw5aVA1VHhZNl9jNVdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEkgAAMA0E
AgACMAcDBQAqBOVAMA0GCSqGSIb3DQEBCwUAA4IBAQB84R+PZ1xox3C0AwlnSuj/
Ia/ZwHXxvfei/hq+0m9ROoE0bxnp1jbVEzCdvSVAqF+a606Bplwvr05UalFaQSSL
kXFEAxXh8uuYdYUS7TYUzOMiTMIcj4Sz1fATPJ+0e0vSGy343+jlAQ7/gTVQ1mge
qkweG1BngL6dO2HHelyBwpmRvmxne+dkD3x0GKTYdbLKRWmdOLUKAGmGEiTz9AXf
QqU5qhZBql2OvnCfgzLar9XbaSylYzdoJyREpbPLAjZKfmvZ4NGBqlQiSH8V6V+5
M9lpIsGc3PHI8reiW1hD+cyUFQhRYKM/4XHKH/rR4NYAM/La5pSpOZCaC7AEi6kk
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:19 2025 by rpki-client