Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Ft1hUkjgJfmrQ3LdqjsCDKdFrGs.roa
File: Ft1hUkjgJfmrQ3LdqjsCDKdFrGs.roa (raw, json)
Hash identifier: FG6WvHFIzX+i7iTHM9NOLHQsdMs8cU57xVeVqOlr4wI=
Subject key identifier: 16:DD:61:52:48:E0:25:F9:AB:43:72:DD:AA:3B:02:0C:A7:45:AC:6B
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 0190C965402F02D50AD22EDE2233EC87FD5A
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Ft1hUkjgJfmrQ3LdqjsCDKdFrGs.roa
Signing time: Fri 19 Jul 2024 05:09:34 +0000
ROA not before: Fri 19 Jul 2024 05:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.115.208.0/23 maxlen: 24
213.145.67.0/24 maxlen: 24
213.145.68.0/23 maxlen: 23
213.145.70.0/23 maxlen: 23
213.145.72.0/21 maxlen: 24
213.145.82.0/23 maxlen: 23
213.145.84.0/23 maxlen: 23
213.145.86.0/23 maxlen: 23
213.145.88.0/21 maxlen: 24
213.145.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 05:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c9:65:40:2f:02:d5:0a:d2:2e:de:22:33:ec:87:fd:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jul 19 05:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16dd615248e025f9ab4372ddaa3b020ca745ac6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7a:08:86:6c:73:45:5e:41:fd:37:47:31:28:
b3:b2:c9:c2:c2:0b:18:84:26:ce:84:48:77:9c:1f:
72:ec:1d:88:37:9b:91:d5:59:e8:e1:57:c6:2d:af:
ba:88:5d:e8:f7:be:7a:13:cc:2c:a4:e8:35:d6:22:
5c:6b:85:68:f6:fb:b1:26:bd:48:af:a2:05:79:ff:
82:ed:9a:71:60:00:d6:25:ff:3c:d3:8f:62:b0:c2:
43:b1:48:7d:8c:b9:b8:51:da:ea:04:1d:29:b2:76:
2f:2c:be:92:0a:f1:bb:5c:8b:a3:f0:af:83:30:1a:
45:f7:07:e5:8d:41:5e:cd:dc:db:f0:9f:9d:2d:b1:
45:0f:4b:d7:59:1e:ea:4c:58:09:33:41:80:a6:81:
82:9e:f1:92:c3:d3:d1:9f:72:dd:a8:58:ed:b5:bb:
98:27:78:52:f9:8b:0a:42:0c:cd:e2:01:5e:d1:0e:
e5:a5:d9:bc:ed:ca:d6:17:31:88:4e:66:94:26:49:
74:58:36:d0:28:31:26:e1:8a:c1:f4:11:80:80:5e:
7b:f2:5b:93:fd:5d:a4:79:cb:a6:78:ed:82:c1:ab:
33:42:94:5e:c4:ec:e8:7f:0c:71:7a:26:4e:d3:2a:
03:e7:0b:b7:56:67:8e:06:3d:1f:3b:35:0c:ee:03:
d0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:DD:61:52:48:E0:25:F9:AB:43:72:DD:AA:3B:02:0C:A7:45:AC:6B
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/Ft1hUkjgJfmrQ3LdqjsCDKdFrGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.208.0/23
213.145.67.0-213.145.79.255
213.145.82.0-213.145.95.255
Signature Algorithm: sha256WithRSAEncryption
b4:f3:af:48:9d:57:f2:08:a6:b5:87:bb:7d:e2:85:27:84:7b:
dc:29:24:b7:22:83:28:2a:69:dc:71:0b:7b:ed:27:0e:79:d4:
60:79:65:a5:8a:80:6d:d0:7c:e9:44:a2:4a:cb:5c:d9:6f:4f:
82:99:c6:17:7d:6e:36:f2:85:8c:20:9d:e8:78:e8:fa:86:56:
73:43:02:e0:94:31:34:40:8d:63:ca:72:f2:26:be:6e:70:32:
c5:ed:49:a6:30:ab:dd:26:d5:1f:91:9c:e0:c2:5a:76:38:31:
2e:e8:3e:95:d9:6f:0c:3f:87:f0:b9:1c:fc:04:45:90:fb:69:
cd:d3:37:90:1e:d9:6c:09:f1:7a:4a:54:42:48:e6:86:e9:f3:
0b:9e:85:66:f2:ac:0a:a0:20:c2:1a:a2:f6:fb:52:4b:18:9e:
a3:00:66:f3:97:54:5e:7e:7b:67:9f:c2:20:af:71:c9:e2:09:
58:a6:db:b4:d9:2f:36:6e:b0:d4:b8:0d:20:97:e0:3b:5d:ae:
40:a2:61:cc:4a:f1:07:ba:7c:b7:3a:1c:69:42:71:01:96:c9:
d8:ff:9c:73:d4:dd:63:92:77:72:9d:a2:a3:0f:14:13:75:a1:
0d:e5:d7:71:7f:91:fb:90:8d:3a:f5:d7:2e:b9:a5:60:48:d9:
65:97:b1:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 07:53:26 2024 by rpki-client on console-ams.rpki-client.org