Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/27fab8-0d25-4dbe-9f8a-426a8cdc8e49/1/5F9A-R6VBtTceLfylE2V6SUESyc.roa
File: 5F9A-R6VBtTceLfylE2V6SUESyc.roa (raw, json)
Hash identifier: 5bTVAMYte+JtMZET3U5XniiFjcvqFH7rafjw6G66VFw=
Subject key identifier: E4:5F:40:F9:1E:95:06:D4:DC:78:B7:F2:94:4D:95:E9:25:04:4B:27
Certificate issuer: /CN=fa0804a0eb795b8682c27da29e9fa228f1728306
Certificate serial: 018DB1671EEA07F7F6FAB49C6D853875FFDA
Authority key identifier: FA:08:04:A0:EB:79:5B:86:82:C2:7D:A2:9E:9F:A2:28:F1:72:83:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ggEoOt5W4aCwn2inp-iKPFygwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/27fab8-0d25-4dbe-9f8a-426a8cdc8e49/1/5F9A-R6VBtTceLfylE2V6SUESyc.roa
Signing time: Fri 16 Feb 2024 10:12:21 +0000
ROA not before: Fri 16 Feb 2024 10:12:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8447
IP address blocks: 185.202.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 09:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b1:67:1e:ea:07:f7:f6:fa:b4:9c:6d:85:38:75:ff:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa0804a0eb795b8682c27da29e9fa228f1728306
Validity
Not Before: Feb 16 10:12:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e45f40f91e9506d4dc78b7f2944d95e925044b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:90:a8:07:af:36:10:19:64:6d:95:c4:a9:c5:
42:97:87:ad:49:86:3f:78:45:d2:7e:51:bf:90:16:
9a:f9:e8:05:49:95:5b:59:8d:e5:50:e3:43:a1:d4:
6b:15:a1:c5:3e:9f:1e:d0:59:77:25:ef:c0:db:9d:
84:1a:20:69:67:ed:22:08:56:a4:f7:6a:69:03:5e:
a3:b8:1f:1f:3d:c5:b9:68:47:6e:e0:00:68:d6:e1:
8a:f6:e0:7c:8c:42:17:50:b0:54:1c:04:c9:60:83:
6f:94:70:db:c2:ea:be:c8:9d:20:9b:5b:e2:e6:4c:
4d:dd:09:6f:bf:c2:98:a1:f4:30:3b:5d:12:9e:fe:
47:14:72:1f:75:e7:4e:3e:b3:ba:20:8a:4e:e8:36:
6e:e7:41:33:4f:db:28:70:ed:ea:9c:e1:db:ea:75:
0c:65:af:15:7e:b6:4a:11:d9:17:41:b0:44:4c:a6:
ac:58:0b:0f:e1:28:fa:bf:ba:40:99:3a:72:b5:95:
53:dd:a1:4c:b9:20:aa:56:d5:7c:9f:e5:8b:dd:b7:
d7:9a:d0:a2:4e:2b:f9:f8:5f:e2:60:2c:41:a5:5e:
c3:96:9a:d4:2b:94:3f:e9:74:5d:b2:e2:f7:1f:0d:
d4:ea:c6:cb:c9:32:7d:f2:fb:32:88:dc:86:1d:b2:
5a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5F:40:F9:1E:95:06:D4:DC:78:B7:F2:94:4D:95:E9:25:04:4B:27
X509v3 Authority Key Identifier:
keyid:FA:08:04:A0:EB:79:5B:86:82:C2:7D:A2:9E:9F:A2:28:F1:72:83:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ggEoOt5W4aCwn2inp-iKPFygwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/27fab8-0d25-4dbe-9f8a-426a8cdc8e49/1/5F9A-R6VBtTceLfylE2V6SUESyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/27fab8-0d25-4dbe-9f8a-426a8cdc8e49/1/1-ggEoOt5W4aCwn2inp-iKPFygwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.151.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:23:99:30:8f:38:de:21:d0:ee:84:0c:87:4b:fd:e5:a1:d1:
bd:30:ca:9d:34:b7:71:71:4f:e6:07:77:0c:89:f4:3b:42:58:
1d:bb:2e:5a:c4:76:49:e0:37:52:f6:0e:e5:e5:66:76:54:a0:
d1:08:93:c6:e5:06:54:1b:cc:9d:90:e4:e9:cc:9c:39:a9:ac:
77:c2:fa:16:c6:d1:f3:e2:00:22:2f:01:e5:34:d1:4b:5a:4a:
64:9d:dc:42:f2:1f:46:c2:6b:c5:56:a6:5c:28:8a:1d:51:86:
39:3f:23:7b:95:b5:1a:48:23:be:cc:0d:40:d7:69:19:cc:da:
75:33:82:e7:16:36:4b:a9:95:20:0d:0f:51:14:38:08:cc:c9:
69:c6:d3:4e:c1:8e:1a:f5:21:ab:e0:94:16:5a:dd:dc:47:5a:
68:3c:ce:a8:09:26:9c:fe:ae:78:98:b9:b0:c3:37:d5:1f:87:
56:d7:59:1f:e8:b4:06:f8:8e:31:d6:1f:b6:3f:f9:53:7f:c1:
a5:9a:07:66:90:a2:8f:5f:66:d4:1f:60:a9:58:6c:12:56:0b:
c1:c2:31:96:18:02:0c:82:7f:5e:c5:aa:c0:56:e1:62:0b:8e:
94:b8:8e:7c:04:80:29:77:51:a2:6d:89:e3:e1:a5:66:8f:53:
3f:83:74:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:42 2024 by rpki-client on console-ams.rpki-client.org