Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/FeTTTHUT402vPOYvBNLffiLqDgY.roa
File: FeTTTHUT402vPOYvBNLffiLqDgY.roa (raw, json)
Hash identifier: LHfy6ocMj1f1uQoJ8J0cuHlHJkg1Q1BB4aE6nViFdvY=
Subject key identifier: 15:E4:D3:4C:75:13:E3:4D:AF:3C:E6:2F:04:D2:DF:7E:22:EA:0E:06
Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial: 019362B7C17D086C8EC20B402F81142EC847
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/FeTTTHUT402vPOYvBNLffiLqDgY.roa
Signing time: Mon 25 Nov 2024 09:47:09 +0000
ROA not before: Mon 25 Nov 2024 09:47:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15965
IP address blocks: 80.64.144.0/20 maxlen: 20
193.91.32.0/20 maxlen: 20
194.48.193.0/24 maxlen: 24
194.48.252.0/23 maxlen: 24
195.43.96.0/19 maxlen: 19
217.31.64.0/20 maxlen: 20
2a02:3a8::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:62:b7:c1:7d:08:6c:8e:c2:0b:40:2f:81:14:2e:c8:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Validity
Not Before: Nov 25 09:47:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15e4d34c7513e34daf3ce62f04d2df7e22ea0e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:62:48:a1:b5:16:e8:c7:74:54:ab:17:c3:2c:
f3:97:8b:b5:dd:44:87:cf:5d:a8:28:7e:00:c8:83:
59:a6:ed:a3:ac:e5:85:77:fa:bb:ad:bb:f0:0b:59:
5e:60:89:96:2e:b9:4c:da:b8:12:02:a6:1e:40:b9:
bc:b2:a4:85:0a:a0:a5:d1:8a:6b:52:06:53:1b:f1:
82:e0:fe:78:7d:41:bb:45:d2:dd:5e:84:4d:7e:e2:
cc:de:8b:23:60:f2:1f:d4:3d:03:e2:dd:62:3f:40:
a5:a2:dd:37:6c:57:26:f9:cb:de:27:18:4f:d9:9d:
7f:1e:7b:45:3b:5e:d3:eb:05:1c:00:e3:cf:63:25:
ad:9c:79:39:13:68:92:91:f0:6d:4a:97:f9:46:dd:
61:92:81:c5:ec:81:99:88:66:75:25:c9:97:ef:bc:
c9:2c:7e:93:37:8b:1d:bd:86:a0:ae:c1:fa:a4:81:
02:9c:f8:1e:4e:ba:51:b2:d9:e4:85:fb:96:f6:5e:
f0:70:27:fa:22:fe:ae:ef:09:68:65:cf:69:33:20:
5b:8a:5f:6a:20:71:3c:0d:43:60:cc:cb:f4:61:c0:
a2:8d:da:8e:36:e5:d5:c1:3c:48:88:d9:2d:6c:df:
3a:db:93:10:5c:bf:0f:e8:43:0f:29:6e:f9:1b:d9:
2a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E4:D3:4C:75:13:E3:4D:AF:3C:E6:2F:04:D2:DF:7E:22:EA:0E:06
X509v3 Authority Key Identifier:
keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/FeTTTHUT402vPOYvBNLffiLqDgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.144.0/20
193.91.32.0/20
194.48.193.0/24
194.48.252.0/23
195.43.96.0/19
217.31.64.0/20
IPv6:
2a02:3a8::/32
Signature Algorithm: sha256WithRSAEncryption
32:00:f0:4f:5a:2a:c2:4f:7f:e2:46:57:09:54:41:2d:63:27:
9e:d6:18:55:11:aa:2a:50:fe:00:d2:5a:9a:40:27:94:c6:f8:
ae:41:50:36:8d:3a:cd:66:bf:4f:8d:cc:a0:39:4a:dc:a9:17:
b5:31:00:62:3d:e2:04:0b:20:1e:a3:90:cd:68:57:0e:a2:e0:
c8:70:80:74:41:73:8b:f2:f1:24:32:33:2f:b4:8a:c2:00:f3:
da:46:e8:a0:f7:eb:5a:85:8e:52:23:c2:3d:1f:51:68:03:17:
34:7a:84:0a:2a:ab:72:dd:05:a1:bb:3b:65:36:cb:c6:ae:9e:
7b:f4:e8:f6:2c:ba:f3:4b:71:1e:d6:13:e5:c6:69:ae:f7:04:
a4:ae:0e:59:ed:97:0a:5a:17:56:e2:bf:c7:e2:ba:64:58:e3:
d7:f1:46:45:97:9c:57:23:cc:14:c3:40:c7:85:77:0c:e6:84:
fc:d7:b0:b9:53:3a:07:4d:14:c6:9a:23:ef:bd:43:76:38:89:
1d:18:0f:ae:48:85:ad:a4:f7:61:6d:0b:81:dd:3e:73:2a:d7:
4a:c3:e7:b8:84:eb:af:3a:7a:00:2c:69:5b:f3:06:51:85:ca:
f7:db:10:d2:f3:da:60:50:4f:2f:b4:88:84:7c:a2:8c:ae:c5:
39:eb:61:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 23:59:10 2025 by rpki-client