Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/FYIOF9buz6MOhqAIauhAksmL03Q.roa
File: FYIOF9buz6MOhqAIauhAksmL03Q.roa (raw, json)
Hash identifier: SRbn+ly7Qe7oCml80qBQNnl4HUu8i71gHXvbOD84rR8=
Subject key identifier: 15:82:0E:17:D6:EE:CF:A3:0E:86:A0:08:6A:E8:40:92:C9:8B:D3:74
Certificate issuer: /CN=3ebd5f8bb5a594d67b5ce807a84c59dde569a775
Certificate serial: 018747503FF008B25B85FCB61F08F390B76C
Authority key identifier: 3E:BD:5F:8B:B5:A5:94:D6:7B:5C:E8:07:A8:4C:59:DD:E5:69:A7:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pr1fi7WllNZ7XOgHqExZ3eVpp3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/FYIOF9buz6MOhqAIauhAksmL03Q.roa
Signing time: Mon 03 Apr 2023 13:30:54 +0000
ROA not before: Mon 03 Apr 2023 13:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35542
IP address blocks: 185.128.0.0/22 maxlen: 22
185.128.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 10:27:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:47:50:3f:f0:08:b2:5b:85:fc:b6:1f:08:f3:90:b7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebd5f8bb5a594d67b5ce807a84c59dde569a775
Validity
Not Before: Apr 3 13:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15820e17d6eecfa30e86a0086ae84092c98bd374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:33:1a:22:65:a3:b6:a4:41:31:b8:f9:5f:6e:
07:41:8f:5b:5c:c6:0c:4f:45:b9:8a:2d:b0:fe:ba:
31:e1:4e:e3:f1:53:50:04:e1:61:9c:d9:44:4f:b9:
9f:04:e0:c2:66:81:47:96:90:45:98:aa:92:01:e1:
c6:3c:2a:66:3e:5e:85:73:5f:02:c9:3c:8d:9d:c1:
4a:03:9a:a1:13:a9:7d:9e:15:fd:dd:d8:5a:00:85:
5a:e9:df:18:4c:0f:56:bf:2e:42:a1:b0:80:59:8c:
78:d9:03:83:85:37:13:35:db:3c:12:4d:6a:87:02:
e2:78:fb:ca:7a:f9:05:65:b0:a0:fe:5c:4a:27:5f:
f9:d8:78:1e:0a:1d:a7:18:f7:0d:77:a6:6f:4c:3e:
bd:7b:de:a9:2a:92:50:c2:fb:56:2d:5f:41:4a:66:
56:1a:29:d5:c0:6b:13:e7:29:c4:2e:0b:4c:6a:af:
b9:e7:10:15:97:07:de:6e:1a:b7:b6:67:62:ed:2f:
b9:af:f6:26:ad:b4:aa:cc:66:7a:15:4c:9a:fb:de:
73:6e:a7:75:3f:39:05:17:b0:10:54:79:7a:d6:4f:
66:69:80:34:db:43:a9:79:0a:33:e9:0a:79:a8:c7:
d7:48:f1:00:80:56:d2:45:04:36:1a:23:ef:fe:b8:
32:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:82:0E:17:D6:EE:CF:A3:0E:86:A0:08:6A:E8:40:92:C9:8B:D3:74
X509v3 Authority Key Identifier:
keyid:3E:BD:5F:8B:B5:A5:94:D6:7B:5C:E8:07:A8:4C:59:DD:E5:69:A7:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pr1fi7WllNZ7XOgHqExZ3eVpp3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/FYIOF9buz6MOhqAIauhAksmL03Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/cea5cf-0782-40d1-8913-92712f95e336/1/Pr1fi7WllNZ7XOgHqExZ3eVpp3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.0.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:48:ce:96:75:ed:f5:53:03:ee:a0:d3:69:f7:30:f7:16:d1:
d2:4e:7f:bb:5e:f9:9a:8f:2e:82:e3:84:64:4f:70:72:01:69:
58:a0:99:f5:dd:9f:8d:ff:1e:24:d8:39:e6:44:41:e3:1f:22:
e6:5d:f3:20:2d:10:57:b6:a3:70:8b:53:cb:69:02:8f:c4:79:
8b:d1:e7:8d:cc:de:14:5c:c5:56:91:f8:5c:a5:db:cb:b8:39:
74:15:63:28:c1:59:3e:c5:ff:bf:9a:cf:05:3f:50:6d:38:28:
c7:ce:1f:30:e2:4c:94:d1:92:1c:31:c0:99:37:67:50:e9:6f:
d4:9e:8f:2f:41:36:94:45:4e:7f:fd:e4:98:e3:d6:55:73:22:
d8:a8:f2:5a:97:ed:d6:c9:68:82:0a:a0:60:0b:4e:50:28:93:
f3:2d:08:6d:a1:57:a4:87:20:7a:85:b4:09:f4:1a:0a:6f:ba:
22:ad:3f:f2:2a:74:d2:28:d1:6c:5e:80:02:d4:78:13:ce:d0:
4c:d0:ef:19:e6:7d:a1:3c:60:2a:c4:6d:c3:a8:a9:aa:4f:c1:
19:e7:f7:2e:25:a2:12:41:ee:c8:6e:75:16:52:e0:20:c2:70:
b3:47:3a:a4:23:dd:80:b8:68:7d:37:38:68:07:fd:71:6e:1e:
cf:4a:81:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org