Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/FKWaInP07UOKiJDbIoVop6P4s-4.roa
File: FKWaInP07UOKiJDbIoVop6P4s-4.roa (raw, json)
Hash identifier: FXFNmnxIUKURn9VMYk27T0Ia1zYW4vYPoSi+lz59fK8=
Subject key identifier: 14:A5:9A:22:73:F4:ED:43:8A:88:90:DB:22:85:68:A7:A3:F8:B3:EE
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01893F493E99D31FE3F7F4FD57DD0553FBB7
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/FKWaInP07UOKiJDbIoVop6P4s-4.roa
Signing time: Mon 10 Jul 2023 10:11:52 +0000
ROA not before: Mon 10 Jul 2023 10:11:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200554
IP address blocks: 185.41.0.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3f:49:3e:99:d3:1f:e3:f7:f4:fd:57:dd:05:53:fb:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jul 10 10:11:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14a59a2273f4ed438a8890db228568a7a3f8b3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2a:32:f9:aa:04:3b:61:a7:0a:5a:02:63:36:
f3:a4:e5:dc:aa:ba:9b:5a:05:3c:92:ad:67:4a:cb:
07:35:52:d2:56:c7:b2:b7:74:da:ee:25:e7:d0:10:
e5:c2:07:db:8f:d3:ac:6e:d8:08:9f:ce:f9:61:10:
a7:75:85:62:fe:11:d8:05:07:c4:6b:2b:0e:1a:52:
a4:08:e1:33:06:da:a3:e1:3d:48:56:d2:4a:bc:75:
04:c4:6c:a5:f5:77:b2:15:23:ed:b9:32:47:af:0b:
34:b5:fc:41:e4:f2:24:38:fc:38:63:f2:c7:ac:b9:
7f:7a:8c:b6:42:af:51:ce:a2:13:27:22:fd:8b:40:
33:29:b0:1b:49:a9:82:8c:85:c3:3b:b6:d2:a7:b8:
18:d2:21:50:59:31:78:89:41:1c:15:17:30:c0:48:
f7:4f:e2:2a:39:1b:64:40:e3:18:15:62:7f:b4:7e:
70:fa:0f:dc:63:cc:54:6e:d4:ff:d9:d8:1f:bb:b2:
f3:91:73:d3:bc:e2:07:86:c8:a3:13:6c:e1:b6:13:
44:d3:92:a0:41:c0:2a:17:7e:1f:6b:9e:77:f0:a8:
85:ec:c0:1e:03:12:be:7c:c2:07:6d:2c:a3:29:cb:
e2:f6:b4:64:db:ce:30:ae:d7:bd:39:c4:be:02:09:
88:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A5:9A:22:73:F4:ED:43:8A:88:90:DB:22:85:68:A7:A3:F8:B3:EE
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/FKWaInP07UOKiJDbIoVop6P4s-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.0.0/22
Signature Algorithm: sha256WithRSAEncryption
94:33:fd:eb:1d:c6:75:77:56:33:a8:b3:9a:40:f9:a4:1e:98:
7f:67:4b:99:b2:56:4f:d0:3a:b5:4f:23:a0:81:e8:d7:a7:10:
07:95:dc:3d:2e:24:c4:21:d7:d1:ea:bf:c3:6b:d2:35:81:d3:
a3:d9:ca:84:5c:07:ea:d7:a4:14:81:5c:f9:2b:d6:cb:63:5a:
04:5f:70:dd:b5:fe:50:77:e6:14:53:4b:ac:98:40:f2:aa:cd:
94:6f:87:5c:11:1d:45:22:bc:a8:b3:1a:31:83:b7:de:92:94:
27:8b:9d:bc:cd:24:ee:64:ba:01:19:86:07:29:f2:14:e3:ed:
b2:b8:f1:75:99:0e:be:aa:f1:f3:44:a6:30:97:7b:79:28:01:
60:e5:cc:c2:f9:85:ae:a2:9a:f5:96:e9:c0:65:22:5b:fc:fc:
c9:5d:ab:5a:22:ee:b0:ea:c2:d5:45:f0:dc:9d:af:ce:eb:9b:
29:6d:67:c7:47:5f:a9:de:1e:ef:d8:44:76:98:f6:48:c2:45:
84:cc:8f:9a:28:54:6f:25:6a:32:f4:bf:ae:bf:87:38:c2:89:
c5:f1:77:a9:07:12:19:ab:4a:0b:75:da:c3:42:bc:e8:51:30:
64:aa:11:85:fe:74:18:a0:1e:b4:8b:cb:26:65:b8:d6:16:23:
ec:b4:b1:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:45 2024 by rpki-client on console-fra.rpki-client.org