Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/F5plGPCY9lgoUV4yv3L11nUdx_8.roa
File: F5plGPCY9lgoUV4yv3L11nUdx_8.roa (raw, json)
Hash identifier: lhRjbfjh86YRtfMUbZYXggrZmUnyrajA2NMHJBBasgw=
Subject key identifier: 17:9A:65:18:F0:98:F6:58:28:51:5E:32:BF:72:F5:D6:75:1D:C7:FF
Certificate issuer: /CN=ac5eadc0032850236fee756eb58fbf05e1316b5e
Certificate serial: 018CC3B7130CFC3B209D1B7835FC81CB3EF7
Authority key identifier: AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/F5plGPCY9lgoUV4yv3L11nUdx_8.roa
Signing time: Mon 01 Jan 2024 06:30:04 +0000
ROA not before: Mon 01 Jan 2024 06:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201709
IP address blocks: 185.41.104.0/23 maxlen: 24
185.41.104.0/22 maxlen: 24
2a01:55e4::/30 maxlen: 48
Validation: Failed, certificate revoked on Thu 14 Mar 2024 13:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:13:0c:fc:3b:20:9d:1b:78:35:fc:81:cb:3e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5eadc0032850236fee756eb58fbf05e1316b5e
Validity
Not Before: Jan 1 06:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=179a6518f098f65828515e32bf72f5d6751dc7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:19:0c:a2:41:a5:dc:a1:22:24:51:d6:53:b9:
66:e4:a2:98:2c:2c:b1:0d:db:16:02:97:7a:9b:ad:
6c:b6:03:81:2f:ea:6e:bd:54:1b:07:ea:e0:1c:f5:
e7:64:05:db:24:94:51:e1:e5:8a:98:34:5a:32:03:
12:eb:f4:a7:99:e1:7a:5e:53:30:e1:67:4d:15:7e:
a4:83:37:c4:c9:77:19:9f:08:da:44:71:51:50:27:
e0:9d:e4:8e:cd:18:9a:75:69:7d:cb:20:71:3d:46:
8c:1c:79:2d:79:10:50:af:e9:8a:18:7f:bf:23:53:
c6:e4:e0:a5:42:6a:0e:93:d9:a8:de:b3:d3:09:a3:
3a:ff:e8:21:85:4a:27:2a:98:a3:df:1c:44:72:9f:
20:19:fd:b2:9a:65:85:d2:c9:99:2d:4f:94:c6:6b:
73:38:a7:2e:37:a1:aa:5f:32:23:1d:31:d5:74:34:
ce:12:4f:ca:39:8c:ae:7f:02:94:d6:51:75:82:dd:
19:ad:dc:ba:6e:17:fa:11:16:8c:13:9b:3f:f0:c1:
ed:b9:a4:01:67:ed:fd:89:70:9d:4e:a3:58:35:04:
81:ed:cf:d8:e2:7e:6f:0f:c8:d4:ed:a4:33:5a:59:
8b:38:d7:82:ea:d8:84:d4:bc:b7:b2:c8:2d:d0:2b:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9A:65:18:F0:98:F6:58:28:51:5E:32:BF:72:F5:D6:75:1D:C7:FF
X509v3 Authority Key Identifier:
keyid:AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/F5plGPCY9lgoUV4yv3L11nUdx_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/rF6twAMoUCNv7nVutY-_BeExa14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.104.0/22
IPv6:
2a01:55e4::/30
Signature Algorithm: sha256WithRSAEncryption
b6:56:39:96:54:67:13:0f:f5:64:37:10:5d:fa:c6:37:49:8a:
c3:fb:f7:0d:10:ec:f1:a5:a7:e1:48:97:58:95:e7:4f:99:33:
43:55:87:43:09:ab:c4:d9:ea:54:d7:67:56:5c:41:31:36:a6:
ca:be:c6:ec:98:0b:4f:db:ac:1b:ef:75:b4:6c:58:9f:79:a6:
b3:6a:95:f1:33:3c:e0:69:bf:e0:cb:70:68:f3:d5:4d:d7:1c:
33:dd:e9:56:64:2b:e3:5c:d2:c9:0e:fc:15:fd:8a:0a:f4:31:
f0:27:79:b9:ac:21:e8:01:eb:76:c3:31:43:40:26:40:0e:90:
a2:50:2b:9a:e9:a8:c0:26:a3:1d:6a:37:83:f0:ba:f3:80:2a:
f6:38:5d:22:11:5f:b5:9d:13:c7:a9:2b:9c:7f:03:db:7e:21:
75:77:90:74:88:2a:45:26:f3:56:1e:36:fd:4f:02:fd:d0:d7:
ef:cb:42:66:88:37:ce:4a:4c:02:2c:46:cd:0f:4a:33:e9:f4:
42:78:47:42:e4:a9:ee:76:76:2a:80:16:dd:27:51:e1:af:c5:
ce:99:67:3e:a6:65:f9:2f:e7:6d:ff:42:d6:3e:fc:0f:c6:94:
fc:44:6b:0c:b3:28:d3:14:76:57:5d:0a:18:e7:ab:c9:ff:e5:
8e:b0:e2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 17:54:47 2024 by rpki-client on console-ams.rpki-client.org