Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FgYv1sP3G1DLYfvSArOkCHplxiw.roa
File: FgYv1sP3G1DLYfvSArOkCHplxiw.roa (raw, json)
Hash identifier: VO3Qj0YpIDYHigjLxeQR/gokR7k8rMmxdMMxaqOmXjw=
Subject key identifier: 16:06:2F:D6:C3:F7:1B:50:CB:61:FB:D2:02:B3:A4:08:7A:65:C6:2C
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0191A1B9525E90B23627A6A04F55DF7DEE07
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FgYv1sP3G1DLYfvSArOkCHplxiw.roa
Signing time: Fri 30 Aug 2024 05:19:22 +0000
ROA not before: Fri 30 Aug 2024 05:19:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 213.145.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 05:56:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a1:b9:52:5e:90:b2:36:27:a6:a0:4f:55:df:7d:ee:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Aug 30 05:19:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16062fd6c3f71b50cb61fbd202b3a4087a65c62c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:37:8b:94:d6:5f:c7:2e:18:03:0b:b1:d2:2d:
ba:6a:c8:38:cb:5d:64:8b:01:43:b1:3c:5c:e2:e7:
ae:32:5e:d5:99:9d:3c:d4:53:ee:c7:b8:5b:6f:34:
1e:01:36:99:1d:4e:9d:a7:d2:db:29:d5:40:46:5a:
d2:dd:63:51:ba:36:97:44:b3:9c:32:38:9a:92:fc:
0d:ea:7d:0d:44:36:75:84:1d:a2:3f:7b:ed:8a:48:
d1:a3:f3:8b:14:c1:c7:24:6a:64:7b:37:22:8b:24:
58:69:f2:4f:d1:c2:ae:f9:0f:70:f0:ce:e8:4f:96:
c1:19:3e:13:a0:b2:f0:0c:11:18:66:b7:4c:6b:45:
89:06:1f:e1:9e:3a:85:f2:04:a0:c5:10:de:dc:bc:
5f:f5:44:dd:c9:23:da:fe:f7:16:5c:f4:89:d1:53:
2e:43:26:32:f5:34:5d:6d:29:e7:d3:10:5a:e2:11:
ef:5c:1c:16:7a:9f:00:a2:ca:2a:4a:e9:a2:af:a0:
72:be:da:bb:b5:ae:0f:73:8d:19:b1:3e:8f:78:3c:
f0:11:d4:cd:23:01:0a:eb:d6:bd:89:81:8a:98:eb:
64:50:fc:63:9c:67:5c:98:51:e0:b5:5f:88:ab:f0:
40:00:85:12:0e:b6:ba:a6:8d:74:65:8f:da:ed:3c:
11:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:06:2F:D6:C3:F7:1B:50:CB:61:FB:D2:02:B3:A4:08:7A:65:C6:2C
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/FgYv1sP3G1DLYfvSArOkCHplxiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.89.0/24
Signature Algorithm: sha256WithRSAEncryption
17:6b:8e:ec:b3:94:d5:f1:a5:de:61:2a:6f:44:50:e6:ff:4f:
e5:0d:e4:3d:9d:3e:61:12:ef:21:42:e2:a1:d9:d3:5f:12:0a:
71:d4:b8:b1:3d:f5:45:25:f4:7c:a8:a9:a5:30:ed:53:e9:5d:
1f:17:2b:48:1d:d0:d5:f2:71:65:da:39:68:2f:41:fe:ac:d7:
06:b5:fb:3e:d8:79:f3:af:26:f9:a4:69:e5:73:08:57:29:3c:
03:ce:37:1f:fe:a5:d4:97:a9:45:9a:5e:69:4d:35:9e:f0:a5:
4f:77:15:8b:cb:b8:4c:d7:17:8f:bc:e3:13:d9:8e:10:8a:a5:
07:e3:a7:d2:f9:5b:31:ae:a5:8a:fb:ce:c0:1b:00:d8:a2:8e:
aa:0a:13:44:a2:4d:fe:1e:36:a9:46:22:cd:17:f6:95:5f:31:
8e:1c:49:9b:3b:70:60:60:fb:6f:77:5a:8c:c5:7c:2d:61:87:
15:45:72:51:30:2c:8a:c1:aa:4d:4a:9c:5a:1b:49:4a:7d:ba:
f5:c9:c5:73:d2:f8:50:26:7d:92:c7:b4:a6:69:35:38:82:91:
eb:d8:a9:60:fc:27:50:2b:90:67:09:fa:13:0e:68:01:3c:ab:
c8:36:03:43:97:97:f7:09:56:92:fd:af:66:76:cb:1e:f5:a2:
a3:8c:9e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 08:36:00 2024 by rpki-client on console-ams.rpki-client.org