Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/FQyvaNw2BF3ii-o9CTS5w3Po5RQ.roa
File: FQyvaNw2BF3ii-o9CTS5w3Po5RQ.roa (raw, json)
Hash identifier: pwNiXD2Wk+9u/qbH22PywZcKr4CGcX8kUPj80LhhEjE=
Subject key identifier: 15:0C:AF:68:DC:36:04:5D:E2:8B:EA:3D:09:34:B9:C3:73:E8:E5:14
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 018DEE7E91015D48F7D4189E919AA1BBC18F
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/FQyvaNw2BF3ii-o9CTS5w3Po5RQ.roa
Signing time: Wed 28 Feb 2024 06:54:48 +0000
ROA not before: Wed 28 Feb 2024 06:54:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198037
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 20:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:7e:91:01:5d:48:f7:d4:18:9e:91:9a:a1:bb:c1:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Feb 28 06:54:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=150caf68dc36045de28bea3d0934b9c373e8e514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:31:de:9e:11:a7:db:59:0e:da:c6:2a:dc:56:
d8:5c:37:e4:0b:6b:77:89:fe:48:6c:aa:07:bb:82:
ee:15:d3:b3:24:65:bd:83:23:44:b7:55:af:b7:80:
d1:ed:d4:f8:4b:34:00:15:2a:33:cb:d9:7c:98:9f:
2e:67:99:05:7d:9e:3d:5c:ee:9b:ba:c7:5e:7e:ab:
03:ae:82:ed:9b:9b:d6:61:d3:2d:8e:ab:a3:61:3f:
2c:3b:87:32:ff:21:a3:7a:0e:6f:f5:72:8f:fd:e3:
44:1a:d3:e9:ee:0f:d0:bd:79:ea:57:cf:21:af:bc:
cc:c9:61:21:40:c7:93:b8:0c:b2:7e:2e:56:14:91:
71:b2:06:31:23:94:f6:3e:9f:d7:c5:2f:07:15:9e:
96:9d:ad:48:9a:e4:ab:70:44:27:6d:ee:f0:63:fb:
ad:b5:b1:f6:c2:d5:c0:82:8c:ed:e7:1e:b7:83:36:
fe:ab:a4:55:30:86:4e:fb:e8:90:db:63:d3:8e:24:
a0:aa:2b:ea:10:da:70:00:db:2c:61:7c:84:4d:c1:
6f:19:83:a4:17:23:65:9a:2b:df:49:cf:93:36:99:
62:da:67:c4:48:d7:ef:5e:58:81:1c:a7:fb:fd:0a:
4c:31:fd:2e:72:fb:b4:b9:59:c2:16:35:53:54:ce:
4d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0C:AF:68:DC:36:04:5D:E2:8B:EA:3D:09:34:B9:C3:73:E8:E5:14
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/FQyvaNw2BF3ii-o9CTS5w3Po5RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
08:89:8c:5d:3f:b3:17:47:f9:3e:51:9e:60:6d:04:af:c2:b4:
a2:0b:57:c9:3d:b6:8e:06:32:af:47:24:2b:72:87:45:97:30:
86:e8:88:94:38:62:bb:a5:72:18:ac:91:5b:9e:9f:1f:5c:43:
d1:23:3e:b7:a2:3c:56:e9:23:04:64:e4:ab:a1:d0:6c:c5:ad:
d7:a2:7a:15:5b:2e:43:b4:bf:b3:04:06:89:76:b7:0b:d9:62:
96:a5:89:14:99:58:a8:94:21:7e:43:90:5b:8d:d5:61:c3:c0:
78:de:c8:b9:47:46:d2:73:2a:d1:96:8f:b8:6f:45:ae:65:90:
c3:66:50:99:94:6d:4f:20:08:0b:80:6e:12:cd:0f:e4:5f:3d:
9f:fd:46:e2:95:e9:50:07:67:26:fd:a7:5f:84:47:5c:d3:19:
70:7f:c1:09:aa:f2:b1:c1:b4:1b:c2:a8:63:81:7e:ce:d4:76:
f2:d4:65:49:87:b7:2f:6b:af:ee:45:71:0b:c5:43:b0:fc:c2:
b3:58:1f:68:23:2f:63:f1:ae:34:78:e3:88:8c:9f:ed:5e:4d:
2a:71:a7:86:9a:bc:66:38:e9:b9:c9:5a:1d:4e:3e:a5:d1:4e:
ee:1a:c8:44:a2:2a:88:88:c0:d6:22:2b:86:0d:4f:f4:81:d2:
cf:20:8c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 04:27:56 2024 by rpki-client on console.sobornost.net