Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/fNj-BpDq8WfCYJvwiIz9LqG-upY.roa
File: fNj-BpDq8WfCYJvwiIz9LqG-upY.roa (raw, json)
Hash identifier: JakPQv/bmc6An92YcWs80mmC4Lji6XAYr1gbi/IyRtc=
Subject key identifier: 7C:D8:FE:06:90:EA:F1:67:C2:60:9B:F0:88:8C:FD:2E:A1:BE:BA:96
Certificate issuer: /CN=bea7b67777b9a6832933576497b46a9b16304cd9
Certificate serial: 01856E01F590B4FA1F89B9E83C2DE1C8D48B
Authority key identifier: BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/fNj-BpDq8WfCYJvwiIz9LqG-upY.roa
Signing time: Sun 01 Jan 2023 15:45:00 +0000
ROA not before: Sun 01 Jan 2023 15:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197008
IP address blocks: 185.207.16.0/22 maxlen: 22
178.251.116.0/23 maxlen: 23
178.251.118.0/23 maxlen: 23
2a00:ee40:2::/48 maxlen: 48
2a00:ee40:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:f5:90:b4:fa:1f:89:b9:e8:3c:2d:e1:c8:d4:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea7b67777b9a6832933576497b46a9b16304cd9
Validity
Not Before: Jan 1 15:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cd8fe0690eaf167c2609bf0888cfd2ea1beba96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:36:8b:bf:82:0c:d0:22:a6:e9:d6:5e:91:04:
2b:70:e7:df:90:a7:6a:47:40:ce:5a:ac:e5:aa:d9:
a2:75:26:6b:69:55:16:e5:9c:65:89:63:fe:e4:ab:
29:18:77:cf:07:f5:48:0a:f0:25:1e:f0:d3:fd:a3:
b8:06:1c:b9:90:3b:0b:13:6a:6a:36:0b:92:e7:8c:
0d:63:78:01:18:8e:22:53:f6:17:a4:18:b1:8f:92:
ba:e2:0b:a0:27:e6:8b:f5:3e:d4:8e:8d:ea:90:ed:
54:ac:68:1b:c6:b3:27:55:7b:be:5b:10:08:98:98:
62:73:0c:f1:33:b9:8d:f0:f4:cf:e6:9e:2c:9d:c3:
42:f1:73:66:12:fb:e1:39:23:46:a8:55:58:52:cb:
69:22:97:de:4a:ea:15:eb:52:89:76:f1:21:ce:f4:
b5:02:e4:23:02:69:1c:58:5f:ab:b0:a1:3e:db:f7:
58:43:e4:e2:89:30:7b:bd:0c:b9:cc:5c:9c:99:02:
d8:fa:bb:de:62:53:15:ee:51:e0:b3:d7:a2:d0:c4:
01:d3:1a:99:76:04:fd:1f:fa:84:fe:3e:8a:6d:d7:
fe:2d:da:22:55:d0:a6:91:12:f0:49:3d:23:e6:dc:
93:52:7e:5d:84:62:78:bb:f9:66:bc:d6:8d:e5:81:
82:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D8:FE:06:90:EA:F1:67:C2:60:9B:F0:88:8C:FD:2E:A1:BE:BA:96
X509v3 Authority Key Identifier:
keyid:BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/fNj-BpDq8WfCYJvwiIz9LqG-upY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.116.0/22
185.207.16.0/22
IPv6:
2a00:ee40:2::/48
2a00:ee40:4::/48
Signature Algorithm: sha256WithRSAEncryption
b1:66:20:06:35:bf:7a:41:84:49:1b:88:52:5c:f5:80:e3:ef:
e0:69:25:0e:67:00:86:01:35:67:c9:63:1d:71:f4:88:90:49:
8c:0c:b5:db:b2:d2:c5:a7:3e:4f:39:cc:02:6c:6c:3a:fe:6f:
46:8e:40:17:10:f0:36:2c:88:c9:e5:55:8b:f9:98:18:85:31:
6c:57:4a:4f:d6:46:14:ae:8c:53:8e:13:2b:fb:26:1a:2c:8c:
54:e9:18:a2:26:67:43:85:c8:fd:9e:8e:58:f5:23:fa:cb:5e:
26:1b:23:a5:f7:ac:d3:26:34:02:57:b1:46:0d:6c:0b:7d:29:
32:1b:af:ce:3b:e5:08:f2:da:83:ee:20:b1:59:f2:b7:e2:43:
39:19:8e:2b:56:ab:8f:06:69:db:8e:49:82:50:04:1b:5b:83:
3f:16:fe:16:43:65:da:37:8b:f6:16:3c:2f:7e:85:a7:a1:44:
e3:fd:ff:58:a4:1d:a8:f3:9f:a7:8a:41:b3:74:7e:e7:94:90:
69:a6:08:2f:c6:7e:a2:d4:de:c8:8e:3a:3f:0a:50:b9:30:2a:
fe:d7:66:d8:36:09:3f:80:86:00:49:da:c0:c3:86:f2:a6:fa:
62:c8:4c:b3:92:d5:07:43:23:e2:79:a0:cd:9f:a7:c4:97:92:
5a:cf:ad:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:29 2024 by rpki-client on console-fra.rpki-client.org