Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FDGY-4HDDXE-7UK8Yj6P0JAf-74.roa
File: FDGY-4HDDXE-7UK8Yj6P0JAf-74.roa (raw, json)
Hash identifier: IJXSyfyZsIcJjIvoA0sgPuAc30cqxpdmIl46D/O984k=
Subject key identifier: 14:31:98:FB:81:C3:0D:71:3E:ED:42:BC:62:3E:8F:D0:90:1F:FB:BE
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0192D523F82013A588BCC167AA10C9FA4ACE
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FDGY-4HDDXE-7UK8Yj6P0JAf-74.roa
Signing time: Mon 28 Oct 2024 21:59:17 +0000
ROA not before: Mon 28 Oct 2024 21:59:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212249
IP address blocks: 213.145.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Nov 2024 13:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d5:23:f8:20:13:a5:88:bc:c1:67:aa:10:c9:fa:4a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Oct 28 21:59:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=143198fb81c30d713eed42bc623e8fd0901ffbbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a3:3a:e3:f2:a3:f9:6c:a3:86:3c:3f:64:af:
ed:b0:57:64:ee:46:2d:f5:d1:5d:b0:a9:86:36:0c:
ed:08:1d:73:ec:2e:16:a0:5c:95:1b:3a:e9:41:89:
d5:c4:68:06:95:a0:bf:11:c1:9d:f1:9c:08:84:f5:
22:3b:61:53:b2:5d:d5:70:84:ad:75:e2:02:a6:0a:
e1:97:8f:f2:6e:57:16:93:73:6b:4d:a0:a9:de:b6:
c8:dc:c5:35:63:2f:7c:f2:9e:c3:ae:29:e3:27:38:
f0:e5:a0:01:28:9e:02:6d:a7:79:d2:5b:1b:61:55:
ef:cc:56:93:e5:1e:d9:ab:ab:9c:c9:28:da:83:29:
f8:0e:52:7d:c5:f4:38:2a:1e:04:04:3c:65:33:08:
ab:20:bd:83:41:4b:8c:43:15:11:6c:81:24:a7:c4:
21:87:57:72:a4:fa:d0:59:e7:40:34:08:a2:a0:74:
7f:4a:d4:10:91:8f:5b:fa:dc:a3:98:c4:64:eb:d0:
96:a8:be:c4:b6:d7:46:a3:30:6c:10:83:2b:64:39:
de:b1:9f:35:9c:a7:1e:4b:c5:d9:35:db:e9:bd:a6:
3f:d6:2a:c9:4b:b2:61:39:64:2c:5f:e1:b7:f5:75:
b4:e2:67:72:12:5f:17:4b:70:8e:18:d3:94:2a:95:
78:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:31:98:FB:81:C3:0D:71:3E:ED:42:BC:62:3E:8F:D0:90:1F:FB:BE
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FDGY-4HDDXE-7UK8Yj6P0JAf-74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.94.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:b5:c7:cc:d1:2b:07:06:65:66:17:31:ad:0d:be:2c:66:d1:
da:85:d8:88:43:f7:8e:39:d2:ce:bc:78:7c:5f:43:a1:c6:fe:
72:9a:61:74:97:0e:f8:ab:4d:db:98:19:1d:6a:f6:d2:c8:09:
50:66:0a:07:f4:90:54:e4:7b:64:75:d1:68:25:7e:36:99:c5:
bc:7e:f4:7c:5c:31:51:a5:a8:bb:fb:5c:b3:d3:23:83:62:19:
20:e9:21:c6:98:f4:48:48:fb:f7:dd:94:fa:22:fe:35:a6:8a:
54:70:d0:e9:77:ae:a7:45:d9:e5:be:95:a0:24:48:b2:f0:59:
c6:9b:45:c9:20:53:33:6c:dd:b8:cd:6d:ff:71:a6:27:a6:61:
56:de:b2:fe:65:89:c5:e3:0e:92:61:61:34:6c:93:06:14:98:
3b:b1:5a:04:ec:3b:9a:a4:eb:2f:c5:14:6a:cd:cb:fb:58:e4:
60:ab:9d:82:e7:2b:73:8e:e9:26:3e:0f:df:9c:75:9b:4d:63:
72:9f:e1:0e:1f:e3:09:79:9e:e7:4d:53:bc:82:58:4e:9d:c0:
85:eb:51:c4:2d:86:b7:9d:49:65:30:80:dc:db:45:24:cd:a7:
64:c4:42:8b:f2:56:8e:39:5f:10:b9:15:45:14:f7:3b:33:3d:
f6:cf:9d:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZLVI/ggE6WIvMFnqhDJ+krOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjQxMDI4MjE1OTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDMxOThmYjgxYzMwZDcxM2VlZDQyYmM2MjNlOGZkMDkwMWZmYmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qM64/Kj+Wyjhjw/ZK/tsFdk7kYt
9dFdsKmGNgztCB1z7C4WoFyVGzrpQYnVxGgGlaC/EcGd8ZwIhPUiO2FTsl3VcISt
deICpgrhl4/yblcWk3NrTaCp3rbI3MU1Yy988p7DrinjJzjw5aABKJ4Cbad50lsb
YVXvzFaT5R7Zq6ucySjagyn4DlJ9xfQ4Kh4EBDxlMwirIL2DQUuMQxURbIEkp8Qh
h1dypPrQWedANAiioHR/StQQkY9b+tyjmMRk69CWqL7EttdGozBsEIMrZDnesZ81
nKceS8XZNdvpvaY/1irJS7JhOWQsX+G39XW04mdyEl8XS3COGNOUKpV4kQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBQxmPuBww1xPu1CvGI+j9CQH/u+MB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvRkRHWS00SEREWEUtN1VLOFlqNlAwSkFmLTc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ZFeMA0G
CSqGSIb3DQEBCwUAA4IBAQDUtcfM0SsHBmVmFzGtDb4sZtHahdiIQ/eOOdLOvHh8
X0Ohxv5ymmF0lw74q03bmBkdavbSyAlQZgoH9JBU5HtkddFoJX42mcW8fvR8XDFR
pai7+1yz0yODYhkg6SHGmPRISPv33ZT6Iv41popUcNDpd66nRdnlvpWgJEiy8FnG
m0XJIFMzbN24zW3/caYnpmFW3rL+ZYnF4w6SYWE0bJMGFJg7sVoE7DuapOsvxRRq
zcv7WORgq52C5ytzjukmPg/fnHWbTWNyn+EOH+MJeZ7nTVO8glhOncCF61HELYa3
nUllMIDc20UkzadkxEKL8laOOV8QuRVFFPc7Mz32z52d
-----END CERTIFICATE-----
Generated at Sun Nov 17 15:03:10 2024 by rpki-client on console-ams.rpki-client.org