Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/FjH--igjo0iu2ej3UGRR8OvFHjU.roa
File: FjH--igjo0iu2ej3UGRR8OvFHjU.roa (raw, json)
Hash identifier: TScadFTrPgaB+dLb6/WDuQp0hdO8tNbZn6cN3XVY9eA=
Subject key identifier: 16:31:FE:FA:28:23:A3:48:AE:D9:E8:F7:50:64:51:F0:EB:C5:1E:35
Certificate issuer: /CN=99fea9717c280ec879335273f022e6b0537455c2
Certificate serial: 01856E78F265B2DC692E9EE895A7F0035239
Authority key identifier: 99:FE:A9:71:7C:28:0E:C8:79:33:52:73:F0:22:E6:B0:53:74:55:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf6pcXwoDsh5M1Jz8CLmsFN0VcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/FjH--igjo0iu2ej3UGRR8OvFHjU.roa
Signing time: Sun 01 Jan 2023 17:54:58 +0000
ROA not before: Sun 01 Jan 2023 17:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398464
IP address blocks: 185.5.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:f2:65:b2:dc:69:2e:9e:e8:95:a7:f0:03:52:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fea9717c280ec879335273f022e6b0537455c2
Validity
Not Before: Jan 1 17:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1631fefa2823a348aed9e8f7506451f0ebc51e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:9c:3f:89:de:10:19:77:81:ed:7d:b6:a5:
a3:ea:82:c5:0e:e3:5b:fa:f3:f1:ef:5d:9e:34:e9:
b1:99:98:f3:57:34:b6:de:8f:f7:0e:f4:2f:5d:5c:
7f:f5:00:5d:d5:b7:4b:f2:7b:56:21:43:83:72:c3:
06:05:1d:39:92:d9:8c:32:6c:10:54:56:da:d8:51:
c7:c2:b2:6f:d8:90:86:b0:86:59:a9:18:0b:37:95:
a6:3f:b6:0c:a7:8c:83:e5:50:dd:a5:41:9c:4b:20:
c5:43:89:a6:e3:11:f7:b3:b6:c9:19:76:13:bc:4c:
00:fc:bb:14:d6:d1:56:7b:2f:4b:7b:93:0a:13:25:
62:bc:62:b7:48:f2:cc:32:c0:37:ca:25:13:58:58:
71:cc:8e:4e:5c:b4:1d:c5:a9:39:87:7b:e5:0f:25:
89:35:e1:da:4f:18:00:07:88:9e:d4:fc:97:9e:e5:
dd:00:48:1e:b5:20:25:8d:86:45:6b:bf:30:31:d2:
33:b1:2c:fe:d3:5b:53:d7:d4:e6:09:2e:52:84:1b:
88:62:f6:01:d9:b4:19:3f:61:90:64:8b:96:21:9d:
71:03:4e:f8:5a:c7:76:92:b2:fc:fa:c0:0f:cc:74:
33:fb:31:cd:e8:9c:34:ee:7b:a0:ca:4c:87:b5:12:
79:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:31:FE:FA:28:23:A3:48:AE:D9:E8:F7:50:64:51:F0:EB:C5:1E:35
X509v3 Authority Key Identifier:
keyid:99:FE:A9:71:7C:28:0E:C8:79:33:52:73:F0:22:E6:B0:53:74:55:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf6pcXwoDsh5M1Jz8CLmsFN0VcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/FjH--igjo0iu2ej3UGRR8OvFHjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/mf6pcXwoDsh5M1Jz8CLmsFN0VcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.147.0/24
Signature Algorithm: sha256WithRSAEncryption
25:b5:a0:7e:21:e4:36:39:eb:22:72:c5:3d:a1:50:e9:9f:8a:
13:1d:9a:6b:43:f7:8c:17:b6:b3:e0:2e:b7:33:a8:1d:d6:e4:
39:dc:92:11:9f:5d:17:16:04:37:7c:de:b2:dc:80:ce:0b:df:
a7:07:67:e2:83:47:d3:62:67:e0:1f:55:4f:10:b3:3c:83:c2:
a8:3b:7e:12:ba:6c:96:52:4e:65:51:c0:a9:60:cc:a5:de:5b:
24:67:74:f4:4d:c4:21:b4:91:78:96:d1:63:31:24:63:44:30:
8d:a8:99:4e:1e:6f:c8:72:5e:dc:f6:e8:07:0e:89:72:b7:d0:
2f:5f:9b:6a:fb:71:34:5a:50:73:45:0b:8a:14:73:fb:45:91:
0c:d3:55:b2:24:ef:e1:1e:47:0a:07:c3:22:44:81:db:ba:c7:
44:5a:88:89:75:03:03:6e:6b:c3:aa:23:18:8b:e2:34:92:ae:
b4:ff:bb:2d:3b:9d:87:b8:ad:88:91:a4:49:8a:5b:c1:f3:c2:
a9:87:14:a6:68:5d:04:d0:e0:6d:1e:f6:90:eb:a6:6c:19:6a:
d2:86:75:d7:83:cc:ae:3b:e0:1b:1d:d5:a9:f6:95:86:ff:ed:
ea:2a:8c:e3:d0:2f:9d:13:2d:e1:4e:8e:3d:b3:56:cd:b4:f9:
65:15:40:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:11:15 2024 by rpki-client on console.sobornost.net