Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/FrfmycllH7Cq5MoNwF7oHSyMK8o.roa
File: FrfmycllH7Cq5MoNwF7oHSyMK8o.roa (raw, json)
Hash identifier: P+X6Gik83rTqeb1BwinjFmEKKLrx5ZnaJjQTL+rqiU4=
Subject key identifier: 16:B7:E6:C9:C9:65:1F:B0:AA:E4:CA:0D:C0:5E:E8:1D:2C:8C:2B:CA
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 018CC7955EA57BA622D929DED2E1FD951577
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/FrfmycllH7Cq5MoNwF7oHSyMK8o.roa
Signing time: Tue 02 Jan 2024 00:31:44 +0000
ROA not before: Tue 02 Jan 2024 00:31:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35653
IP address blocks: 86.105.164.0/22 maxlen: 32
Validation: Failed, certificate revoked on Fri 08 Mar 2024 12:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:5e:a5:7b:a6:22:d9:29:de:d2:e1:fd:95:15:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: Jan 2 00:31:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16b7e6c9c9651fb0aae4ca0dc05ee81d2c8c2bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:06:99:ff:c4:26:54:cd:aa:2f:65:38:7d:2a:
7f:55:00:b6:a4:88:42:a3:a2:9f:02:4b:34:d8:aa:
f5:3d:c6:ff:57:9e:9e:c4:8e:e0:26:ca:61:d4:aa:
46:97:2a:94:c4:6d:93:02:b2:94:fe:ee:56:69:2b:
eb:ce:7d:ce:42:47:de:75:bb:b2:bc:81:f8:1f:87:
6b:5d:b8:77:d9:8f:03:9c:bb:4b:e7:ea:12:2e:d4:
a9:47:51:64:55:31:53:eb:80:08:02:01:ad:29:08:
16:5a:fd:6f:2d:34:fa:2a:bc:82:b5:5d:35:82:53:
df:9e:43:f1:31:d7:38:a3:9f:21:ec:d1:1c:4e:bf:
51:a9:3c:07:69:b2:c0:61:e7:c1:f5:61:b0:de:37:
9a:fc:97:6e:86:41:17:bb:af:f1:8a:45:84:7f:1f:
cf:ae:5f:7e:ad:7f:fd:4e:8f:f9:6a:95:c5:55:1e:
79:96:49:d0:44:1c:fc:13:e9:2b:54:12:84:7e:2c:
4d:bb:c3:6d:70:c4:5b:8c:01:e3:ea:2e:00:2d:b2:
3a:bb:08:61:5d:7f:3e:ff:27:ff:3d:5b:0c:e5:dc:
1c:ac:ef:20:0e:67:0e:53:6a:d5:ef:0f:89:cd:e5:
bc:06:91:fd:5d:75:05:06:cf:e2:57:d1:b2:0b:15:
f9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B7:E6:C9:C9:65:1F:B0:AA:E4:CA:0D:C0:5E:E8:1D:2C:8C:2B:CA
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/FrfmycllH7Cq5MoNwF7oHSyMK8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:67:75:17:48:a2:7f:f7:31:7c:ca:1c:54:23:20:75:c6:84:
8d:31:83:c3:75:ee:d6:a0:0b:c5:af:4d:66:74:3c:86:c3:59:
f5:14:4b:eb:e4:dc:2a:e4:81:78:ae:1d:fa:e7:b2:87:41:84:
ee:6c:05:f5:db:b4:8c:c1:d3:26:a0:ab:c9:b7:68:f0:a3:dc:
d6:ef:ef:29:41:ad:0a:93:ed:db:b9:2e:08:a8:17:ca:9c:5f:
db:bf:71:43:f0:a0:43:45:29:a9:ba:81:29:fb:34:f8:62:74:
36:da:a1:01:86:29:9e:d1:ac:49:2d:1d:e3:c4:81:e3:7e:d2:
12:22:f1:6d:f6:a7:38:8d:ef:14:80:d7:d7:f1:99:6b:00:aa:
ef:2d:29:6d:e5:72:43:6f:0d:68:a1:a8:77:b5:94:be:b5:4a:
24:45:91:f9:93:c4:8d:e3:d7:90:e4:ff:6c:1a:58:97:97:c6:
a9:6b:dd:91:f0:05:43:98:91:49:a2:51:c8:3d:be:c1:ec:fc:
90:19:37:8f:40:1e:7c:69:13:03:27:5b:60:60:75:50:8c:b1:
a7:be:29:fa:c7:e4:60:42:a1:5f:90:3f:3e:37:f7:68:05:cf:
42:82:40:90:bf:15:67:c5:03:ab:84:9e:b4:66:ed:60:a5:40:
1a:aa:61:42
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlV6le6Yi2Sne0uH9lRV3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkNzBhZjFhOTk4ODZjOTEwMWQxMzVmNTRiZDJiZGVmMzU4
YjI2NmUwHhcNMjQwMTAyMDAzMTQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmI3ZTZjOWM5NjUxZmIwYWFlNGNhMGRjMDVlZTgxZDJjOGMyYmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhwaZ/8QmVM2qL2U4fSp/VQC2pIhC
o6KfAks02Kr1Pcb/V56exI7gJsph1KpGlyqUxG2TArKU/u5WaSvrzn3OQkfedbuy
vIH4H4drXbh32Y8DnLtL5+oSLtSpR1FkVTFT64AIAgGtKQgWWv1vLTT6KryCtV01
glPfnkPxMdc4o58h7NEcTr9RqTwHabLAYefB9WGw3jea/JduhkEXu6/xikWEfx/P
rl9+rX/9To/5apXFVR55lknQRBz8E+krVBKEfixNu8NtcMRbjAHj6i4ALbI6uwhh
XX8+/yf/PVsM5dwcrO8gDmcOU2rV7w+JzeW8BpH9XXUFBs/iV9GyCxX5xQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBa35snJZR+wquTKDcBe6B0sjCvKMB8GA1UdIwQY
MBaAFE1wrxqZiGyRAdE19UvSve81iyZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFhDdkdwbUliSkVCMFRYMVM5Szk3eldMSm00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hOThmYzctNzkzNS00ZWFlLTk2MmEt
NDYxYWIwZWNlZTAxLzEvRnJmbXljbGxIN0NxNU1vTndGN29IU3lNSzhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9hOThmYzctNzkzNS00ZWFlLTk2MmEtNDYxYWIwZWNlZTAx
LzEvVFhDdkdwbUliSkVCMFRYMVM5Szk3eldMSm00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVmmkMA0G
CSqGSIb3DQEBCwUAA4IBAQCxZ3UXSKJ/9zF8yhxUIyB1xoSNMYPDde7WoAvFr01m
dDyGw1n1FEvr5Nwq5IF4rh3657KHQYTubAX127SMwdMmoKvJt2jwo9zW7+8pQa0K
k+3buS4IqBfKnF/bv3FD8KBDRSmpuoEp+zT4YnQ22qEBhime0axJLR3jxIHjftIS
IvFt9qc4je8UgNfX8ZlrAKrvLSlt5XJDbw1ooah3tZS+tUokRZH5k8SN49eQ5P9s
GliXl8apa92R8AVDmJFJolHIPb7B7PyQGTePQB58aRMDJ1tgYHVQjLGnvin6x+Rg
QqFfkD8+N/doBc9CgkCQvxVnxQOrhJ60Zu1gpUAaqmFC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:10 2024 by rpki-client on console-ams.rpki-client.org