Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/fb_AwULHOgyN-iAwr6KX9Nf6UXA.roa
File: fb_AwULHOgyN-iAwr6KX9Nf6UXA.roa (raw, json)
Hash identifier: SewyBxEHTGy+q31ykqDoY2srrrL8FdeN2EEIQMuMgt8=
Subject key identifier: 7D:BF:C0:C1:42:C7:3A:0C:8D:FA:20:30:AF:A2:97:F4:D7:FA:51:70
Certificate issuer: /CN=f7822d4597e5493d15178bfb10e6841dd17e5897
Certificate serial: 018E51DD64E662686648B70A6AE9A9C3F18E
Authority key identifier: F7:82:2D:45:97:E5:49:3D:15:17:8B:FB:10:E6:84:1D:D1:7E:58:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/94ItRZflST0VF4v7EOaEHdF-WJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/fb_AwULHOgyN-iAwr6KX9Nf6UXA.roa
Signing time: Mon 18 Mar 2024 14:00:47 +0000
ROA not before: Mon 18 Mar 2024 14:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202098
IP address blocks: 158.47.224.0/19 maxlen: 20
Validation: Failed, certificate revoked on Tue 09 Apr 2024 14:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:51:dd:64:e6:62:68:66:48:b7:0a:6a:e9:a9:c3:f1:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7822d4597e5493d15178bfb10e6841dd17e5897
Validity
Not Before: Mar 18 14:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7dbfc0c142c73a0c8dfa2030afa297f4d7fa5170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:11:e5:21:72:ac:ad:cc:3f:85:4d:f6:bc:c9:
f3:d3:6e:fb:02:25:d2:a2:7a:d5:b4:b2:60:48:d7:
89:76:7f:0e:48:76:94:57:0e:89:e6:31:66:2f:af:
0c:65:a2:7a:c0:13:af:5d:ca:4f:42:64:89:21:0b:
49:0d:2f:95:51:31:4b:4b:db:cb:fe:9a:e6:50:be:
14:1e:b4:9a:33:ea:a3:44:98:cc:83:4a:30:58:8f:
a1:50:66:64:91:7d:43:10:d1:39:a9:d6:d2:18:e3:
93:10:9c:c3:b6:29:87:5d:b8:4f:21:cc:1f:31:6c:
c0:65:2e:2d:18:ad:91:b8:f2:6a:66:a0:e2:78:61:
e3:f6:94:9b:ab:36:00:7b:a1:f1:35:52:f7:f0:28:
01:0c:cd:8b:28:f6:ef:c0:66:f5:d1:9e:72:3a:ed:
54:30:e4:4d:0b:4f:9d:ec:5d:3b:6d:d8:74:92:7b:
75:52:ba:e8:ce:b4:d2:2e:ec:ce:6d:1e:77:42:e4:
c8:a0:e1:62:75:ea:a2:cb:b3:5a:38:60:a4:6d:62:
c7:38:72:a0:64:80:c9:f1:55:37:6f:e7:00:ea:ab:
9d:9b:b8:0c:2e:1d:5c:57:3d:8c:f5:36:64:f1:9a:
8e:a5:e4:74:cb:94:09:79:ca:a5:6e:8b:45:fb:d9:
3e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BF:C0:C1:42:C7:3A:0C:8D:FA:20:30:AF:A2:97:F4:D7:FA:51:70
X509v3 Authority Key Identifier:
keyid:F7:82:2D:45:97:E5:49:3D:15:17:8B:FB:10:E6:84:1D:D1:7E:58:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/94ItRZflST0VF4v7EOaEHdF-WJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/fb_AwULHOgyN-iAwr6KX9Nf6UXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/94ItRZflST0VF4v7EOaEHdF-WJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.47.224.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:2d:c2:e4:ee:16:1d:5d:ef:a2:7a:8a:b5:a7:8a:b0:84:1c:
49:dc:62:6d:36:cc:2d:1d:8e:2f:c2:d7:45:05:50:33:7a:d0:
ff:4d:84:e5:08:b3:d7:66:a9:54:c9:a2:6e:b3:1d:4a:4f:8f:
57:2b:a0:4d:17:b9:df:dc:59:08:a8:13:78:82:d7:62:9d:a4:
28:a8:5b:28:04:f9:b7:ac:96:d8:56:98:73:7a:ae:b6:a3:46:
a3:4c:2d:cf:98:bb:5e:ae:ae:5d:15:a0:5d:29:30:82:02:e3:
04:20:a9:58:62:0b:a9:ea:c0:09:26:fd:d1:89:3d:c9:33:f6:
9f:7f:71:fd:61:43:ef:1d:55:36:b0:14:64:36:bf:16:83:77:
e0:cd:b7:df:55:13:65:78:03:f5:f2:fc:48:8d:2c:16:34:a5:
c5:b2:bd:57:4c:84:88:06:5b:3c:4b:db:3a:20:8c:03:35:a8:
a9:9f:37:f1:a6:ed:8e:61:e1:74:ad:fc:46:87:f6:af:d9:3b:
f1:88:9e:fb:1c:ea:52:6f:27:a9:28:92:39:31:9f:53:b8:d1:
c6:e6:8d:fc:89:0a:2e:7c:04:c6:51:f9:f4:f1:e4:7a:e5:ca:
5d:da:dd:70:5d:f8:59:77:8c:bb:63:ba:5e:35:44:77:a2:35:
79:7c:da:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY5R3WTmYmhmSLcKaumpw/GOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3ODIyZDQ1OTdlNTQ5M2QxNTE3OGJmYjEwZTY4NDFkZDE3
ZTU4OTcwHhcNMjQwMzE4MTQwMDQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGJmYzBjMTQyYzczYTBjOGRmYTIwMzBhZmEyOTdmNGQ3ZmE1MTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhhHlIXKsrcw/hU32vMnz0277AiXS
onrVtLJgSNeJdn8OSHaUVw6J5jFmL68MZaJ6wBOvXcpPQmSJIQtJDS+VUTFLS9vL
/prmUL4UHrSaM+qjRJjMg0owWI+hUGZkkX1DENE5qdbSGOOTEJzDtimHXbhPIcwf
MWzAZS4tGK2RuPJqZqDieGHj9pSbqzYAe6HxNVL38CgBDM2LKPbvwGb10Z5yOu1U
MORNC0+d7F07bdh0knt1UrrozrTSLuzObR53QuTIoOFideqiy7NaOGCkbWLHOHKg
ZIDJ8VU3b+cA6qudm7gMLh1cVz2M9TZk8ZqOpeR0y5QJecqlbotF+9k+KQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH2/wMFCxzoMjfogMK+il/TX+lFwMB8GA1UdIwQY
MBaAFPeCLUWX5Uk9FReL+xDmhB3RfliXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTRJdFJaZmxTVDBWRjR2N0VPYUVIZEYtV0pjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8zMTA4MWEtOGI1YS00OWVjLTkwMzYt
ODYyZTk5OTczZmMzLzEvZmJfQXdVTEhPZ3lOLWlBd3I2S1g5TmY2VVhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy8zMTA4MWEtOGI1YS00OWVjLTkwMzYtODYyZTk5OTczZmMz
LzEvOTRJdFJaZmxTVDBWRjR2N0VPYUVIZEYtV0pjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFni/gMA0G
CSqGSIb3DQEBCwUAA4IBAQAtLcLk7hYdXe+ieoq1p4qwhBxJ3GJtNswtHY4vwtdF
BVAzetD/TYTlCLPXZqlUyaJusx1KT49XK6BNF7nf3FkIqBN4gtdinaQoqFsoBPm3
rJbYVphzeq62o0ajTC3PmLterq5dFaBdKTCCAuMEIKlYYgup6sAJJv3RiT3JM/af
f3H9YUPvHVU2sBRkNr8Wg3fgzbffVRNleAP18vxIjSwWNKXFsr1XTISIBls8S9s6
IIwDNaipnzfxpu2OYeF0rfxGh/av2TvxiJ77HOpSbyepKJI5MZ9TuNHG5o38iQou
fATGUfn08eR65cpd2t1wXfhZd4y7Y7peNUR3ojV5fNoj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:29 2024 by rpki-client on console-fra.rpki-client.org