Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/FJqgnVZAx6BV3-NSb5NDUZAVfp4.roa
File: FJqgnVZAx6BV3-NSb5NDUZAVfp4.roa (raw, json)
Hash identifier: lDSn3/UiCMgNTbZORntV7XGLtfDuzgGwJCJWPTaQ8Kg=
Subject key identifier: 14:9A:A0:9D:56:40:C7:A0:55:DF:E3:52:6F:93:43:51:90:15:7E:9E
Certificate issuer: /CN=08759158de234b754b7150f21933096c1094aac4
Certificate serial: 0185720C3F64C09B100CA3D8448A43D1FEF7
Authority key identifier: 08:75:91:58:DE:23:4B:75:4B:71:50:F2:19:33:09:6C:10:94:AA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/FJqgnVZAx6BV3-NSb5NDUZAVfp4.roa
Signing time: Mon 02 Jan 2023 10:34:43 +0000
ROA not before: Mon 02 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12906
IP address blocks: 188.65.0.0/21 maxlen: 24
2a00:eea0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:3f:64:c0:9b:10:0c:a3:d8:44:8a:43:d1:fe:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08759158de234b754b7150f21933096c1094aac4
Validity
Not Before: Jan 2 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=149aa09d5640c7a055dfe3526f93435190157e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f6:42:4f:b8:75:8c:10:8d:08:83:62:82:16:
64:23:e3:fb:27:aa:55:c7:55:f2:ee:d7:bb:25:ca:
ee:81:e1:b4:51:13:a8:4b:79:0f:33:55:70:27:10:
b3:0a:ed:65:b8:9b:75:44:ed:f4:23:33:01:ea:cf:
44:07:dd:4d:38:60:cd:4e:05:45:42:78:52:ad:04:
3a:76:de:83:c5:09:30:c5:f1:0e:28:94:cf:59:c6:
ec:f7:6c:37:09:d6:a1:a1:b8:32:33:2b:a4:e6:95:
97:be:fb:98:61:75:f3:cc:9a:85:29:ae:f7:19:d7:
7a:da:1e:5b:d9:96:64:50:cf:cd:59:30:66:a0:ef:
7e:96:be:7e:d2:df:bc:0d:a9:07:72:07:e1:d2:13:
1f:e3:60:67:5a:bd:9a:f4:9a:74:7d:b8:53:30:93:
28:a0:1c:d6:2f:91:96:70:42:5a:f5:77:c2:f4:60:
4e:c4:00:88:02:81:18:6f:e0:04:91:2f:5b:fc:23:
0d:c8:d0:ef:da:c1:65:0f:33:f4:3e:08:e0:11:4a:
92:a8:bc:4d:09:f8:b0:33:01:15:76:ec:c6:e9:28:
f4:68:ca:e6:95:3d:65:3e:36:b3:f3:1e:0e:c0:a5:
25:39:46:07:dc:9c:91:ea:97:b6:a6:8d:52:86:c3:
e1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9A:A0:9D:56:40:C7:A0:55:DF:E3:52:6F:93:43:51:90:15:7E:9E
X509v3 Authority Key Identifier:
keyid:08:75:91:58:DE:23:4B:75:4B:71:50:F2:19:33:09:6C:10:94:AA:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/FJqgnVZAx6BV3-NSb5NDUZAVfp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6a7032-e80e-4ba7-b724-cd9eccf93b31/1/CHWRWN4jS3VLcVDyGTMJbBCUqsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.65.0.0/21
IPv6:
2a00:eea0::/29
Signature Algorithm: sha256WithRSAEncryption
5f:3b:3a:61:0f:84:bd:56:c5:b5:8c:af:28:9b:66:8a:47:31:
94:36:dc:7d:5c:3f:aa:15:12:34:57:5b:f4:ff:b3:1c:c5:ce:
1c:3b:3a:79:d8:0a:9e:99:8d:b9:04:ce:56:7f:86:0e:6b:56:
d2:ad:66:59:2c:e4:62:e3:57:80:22:10:a7:14:83:51:d8:7c:
62:dd:44:99:f1:ec:d2:7c:3f:6a:c0:8e:97:44:07:ab:ce:d3:
b1:c9:11:0e:55:8c:b6:49:23:2c:14:db:54:c8:35:42:cb:3b:
ec:70:7f:e2:65:b2:7f:dc:76:1d:86:f2:f3:10:7a:c3:aa:49:
fc:43:5f:27:39:25:37:07:d0:26:72:cf:bd:5a:2e:a0:aa:26:
c6:0f:5e:5d:7e:03:9e:6b:67:5d:49:b5:8f:a3:48:1e:5a:5c:
bd:c5:2c:b9:88:94:7f:20:b3:72:72:b8:40:a1:73:af:f2:cb:
9e:31:6e:ea:e8:02:57:26:3c:78:44:8a:df:12:b6:fd:81:60:
95:7b:e9:15:8a:ac:ba:c9:47:70:6b:5a:5d:53:89:af:d0:bc:
60:b6:29:b7:00:5b:a6:e0:df:c8:fd:17:67:5e:3b:8e:8b:d0:
8a:97:63:c8:5f:e7:ee:9f:fc:ed:69:49:fc:e5:83:d9:2c:f5:
1d:fe:a0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:06 2024 by rpki-client on console-ams.rpki-client.org