Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/FRcJs0rtPoYBBx0vaEatGQo2icM.roa
File: FRcJs0rtPoYBBx0vaEatGQo2icM.roa (raw, json)
Hash identifier: F7jrk0914AajUY9lgumIqlRDSLM8h79j9N7BNHaSAFU=
Subject key identifier: 15:17:09:B3:4A:ED:3E:86:01:07:1D:2F:68:46:AD:19:0A:36:89:C3
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 01879A7700EE23D028990018BE39B576E2C2
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/FRcJs0rtPoYBBx0vaEatGQo2icM.roa
Signing time: Wed 19 Apr 2023 17:01:42 +0000
ROA not before: Wed 19 Apr 2023 17:01:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42088
IP address blocks: 185.212.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:77:00:ee:23:d0:28:99:00:18:be:39:b5:76:e2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: Apr 19 17:01:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=151709b34aed3e8601071d2f6846ad190a3689c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c6:ef:6a:a0:7e:44:fe:61:81:15:fa:62:55:
f2:ad:b6:b5:6d:c7:91:64:31:bd:5d:a8:38:bb:f4:
2b:73:ad:9b:55:df:83:56:c0:13:38:a4:9f:1f:bb:
79:ce:5f:26:f9:3a:ec:e2:0b:68:a0:e5:1c:8f:68:
4c:ac:8a:e6:12:eb:55:80:56:2c:10:d1:30:f3:e2:
4b:73:b5:a0:9e:20:9f:85:f3:44:86:19:4c:36:85:
54:65:3c:dd:c0:b9:09:1a:37:44:46:e0:17:3e:12:
4d:28:1e:99:6d:35:ab:0c:5a:4a:fc:f9:97:7f:b8:
5b:b5:b2:cf:75:31:a7:e8:18:07:0c:79:e3:82:fc:
0d:59:da:86:c5:80:88:59:06:ec:03:1c:75:4f:f8:
66:e5:81:ba:4d:2a:71:1d:ce:69:cf:f4:f1:74:53:
05:6e:ec:61:16:d1:0e:6f:90:38:60:1b:03:63:97:
a7:b7:0f:6a:77:7c:ce:63:1e:11:04:2d:25:e6:93:
03:bc:a9:c3:53:94:7d:22:fc:1d:5c:f3:32:37:14:
29:db:8f:52:d0:5c:0a:28:73:61:ee:6e:58:f6:ae:
39:ac:49:4f:07:b1:c7:c3:79:4d:b5:07:c1:36:ca:
fc:e0:21:cf:f4:5b:bc:c8:c0:9d:31:8e:2a:5b:14:
b4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:17:09:B3:4A:ED:3E:86:01:07:1D:2F:68:46:AD:19:0A:36:89:C3
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/FRcJs0rtPoYBBx0vaEatGQo2icM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.249.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:80:24:77:c5:ec:cd:72:7e:12:48:c4:09:d1:c4:fc:e4:dd:
3a:7a:0b:28:61:f0:e8:2f:50:30:7b:08:a7:0d:d5:ab:d8:eb:
01:3f:93:63:60:84:5e:18:18:34:9c:96:69:8f:b1:8c:b1:36:
38:b7:ad:78:56:13:08:23:91:e3:ac:0d:9e:90:14:4d:b9:be:
dd:92:2a:af:c6:4d:e7:de:f3:e8:de:2d:65:09:4d:4b:4e:e2:
09:23:dc:2e:f4:ab:3a:be:af:41:c0:78:b8:3c:ff:92:dd:f0:
09:0d:a4:24:5e:29:cb:d8:9b:60:7d:d2:95:ba:47:25:b5:6a:
d4:11:46:ca:aa:6c:20:fc:5c:07:20:de:4a:e3:8d:15:71:d0:
18:c3:47:80:41:d9:80:a7:e9:60:f5:2f:d9:c2:2c:df:8a:d7:
41:84:c8:17:1a:b7:66:9d:94:1d:f1:64:a2:da:31:bb:32:99:
70:1d:c2:c0:40:4c:30:ad:b4:08:a1:ee:8d:1e:91:bc:40:18:
fb:6a:2a:4b:fb:ea:c8:03:73:1a:71:7a:aa:b4:28:07:03:20:
6b:bd:ee:a3:51:41:27:3a:04:85:a9:e1:f1:2f:4b:c7:a7:a9:
ca:3d:7e:29:dd:35:4c:6d:99:3c:52:f2:45:5f:d7:65:5f:ff:
f8:18:f9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:49 2024 by rpki-client on console-ams.rpki-client.org