Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/NjCYFvRE4bauv0mjFVyUG0siEfE.roa
File: NjCYFvRE4bauv0mjFVyUG0siEfE.roa (raw, json)
Hash identifier: Fzk+sLLDFVs+GH+CE8oYY4u5oiTllTtNia5xYKqOoBs=
Subject key identifier: 36:30:98:16:F4:44:E1:B6:AE:BF:49:A3:15:5C:94:1B:4B:22:11:F1
Certificate issuer: /CN=121a37282dd992d88658160559e048392798c84b
Certificate serial: 01874CF4097B38C8A62188C500FEC03339EE
Authority key identifier: 12:1A:37:28:2D:D9:92:D8:86:58:16:05:59:E0:48:39:27:98:C8:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eho3KC3ZktiGWBYFWeBIOSeYyEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/NjCYFvRE4bauv0mjFVyUG0siEfE.roa
Signing time: Tue 04 Apr 2023 15:47:54 +0000
ROA not before: Tue 04 Apr 2023 15:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44902
IP address blocks: 45.13.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 12:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:f4:09:7b:38:c8:a6:21:88:c5:00:fe:c0:33:39:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=121a37282dd992d88658160559e048392798c84b
Validity
Not Before: Apr 4 15:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36309816f444e1b6aebf49a3155c941b4b2211f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c1:36:2e:36:42:2a:37:8f:b5:fb:9e:20:1a:
7e:dc:ff:f4:b3:f5:39:fd:79:3b:73:da:66:f0:a4:
da:f9:d4:86:b0:ef:f2:e8:2a:09:62:92:33:f3:8f:
e0:d3:e5:4a:42:3a:d0:ff:b8:c4:ea:d9:57:aa:f8:
41:85:26:68:89:ae:3a:8c:e1:a2:b4:08:e4:03:5f:
a8:ef:b8:33:a1:ee:bf:f3:72:a5:da:3d:07:21:40:
d7:b9:4d:6c:cb:9e:1d:39:87:42:24:28:9a:5c:44:
89:c8:67:6a:81:3c:28:94:88:b7:db:6d:9d:43:3f:
a9:3e:0b:d4:0b:35:f3:d8:33:f1:08:41:48:55:00:
39:13:dc:40:71:1a:a4:47:17:0c:64:61:85:c9:b7:
f3:bb:f5:a8:e9:3b:eb:93:6a:3e:98:d4:a8:63:c2:
d8:2e:fd:56:6e:2e:ef:f1:51:7c:4f:27:c4:86:be:
55:c6:02:43:4c:f5:c5:14:86:42:3d:0f:66:ec:c1:
17:00:c5:e4:42:93:25:71:41:1d:e5:82:4d:37:58:
61:2c:99:71:fb:9b:5d:b2:07:aa:ed:32:7c:38:5d:
e2:12:87:b9:8e:12:5a:e5:ac:ad:74:6e:8f:d4:68:
4e:8c:10:87:83:97:6f:b7:72:0e:45:bc:2c:ca:77:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:30:98:16:F4:44:E1:B6:AE:BF:49:A3:15:5C:94:1B:4B:22:11:F1
X509v3 Authority Key Identifier:
keyid:12:1A:37:28:2D:D9:92:D8:86:58:16:05:59:E0:48:39:27:98:C8:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eho3KC3ZktiGWBYFWeBIOSeYyEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/NjCYFvRE4bauv0mjFVyUG0siEfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/Eho3KC3ZktiGWBYFWeBIOSeYyEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.128.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:35:ea:ef:25:59:06:f8:a8:34:88:e5:00:57:9f:9a:4e:72:
de:83:41:a3:88:3f:95:53:c3:1e:8a:ae:9f:a0:1f:39:31:7f:
bb:eb:d5:91:17:14:81:ae:cf:bf:6e:12:31:b3:ec:af:9c:02:
d3:0f:6c:00:f0:23:8c:1c:ab:83:65:f6:f9:55:66:4e:d1:fa:
4f:da:8a:09:79:0c:4a:19:11:d3:a9:78:85:7d:8e:b4:f4:63:
bd:6f:f4:03:99:8a:f4:8a:30:35:da:96:8c:58:65:e3:c6:e9:
d2:aa:11:f5:95:d3:57:94:91:3a:14:28:8e:02:f0:79:c7:8c:
2d:30:28:56:3b:81:64:d5:2c:84:ec:17:3f:9d:bb:99:ca:19:
5b:d8:e2:96:21:d0:31:d7:65:59:c1:54:71:db:5a:86:61:37:
68:62:8a:cf:30:95:2a:c3:5f:fc:00:c1:1e:cb:18:63:7c:5a:
44:09:62:0a:b7:5a:85:2d:6f:f3:1c:79:85:b5:ad:a9:d0:20:
18:24:13:13:bd:b0:6d:18:f5:d6:d5:77:3a:8d:ce:31:50:02:
08:c3:46:0e:cc:a1:66:15:86:63:fb:d0:1f:00:25:62:b1:5b:
ee:30:19:22:ec:fe:1d:56:2c:16:9a:a4:9a:c4:02:c2:15:60:
5d:64:ad:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdM9Al7OMimIYjFAP7AMznuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyMWEzNzI4MmRkOTkyZDg4NjU4MTYwNTU5ZTA0ODM5Mjc5
OGM4NGIwHhcNMjMwNDA0MTU0NzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjMwOTgxNmY0NDRlMWI2YWViZjQ5YTMxNTVjOTQxYjRiMjIxMWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg8E2LjZCKjePtfueIBp+3P/0s/U5
/Xk7c9pm8KTa+dSGsO/y6CoJYpIz84/g0+VKQjrQ/7jE6tlXqvhBhSZoia46jOGi
tAjkA1+o77gzoe6/83Kl2j0HIUDXuU1sy54dOYdCJCiaXESJyGdqgTwolIi3222d
Qz+pPgvUCzXz2DPxCEFIVQA5E9xAcRqkRxcMZGGFybfzu/Wo6Tvrk2o+mNSoY8LY
Lv1Wbi7v8VF8TyfEhr5VxgJDTPXFFIZCPQ9m7MEXAMXkQpMlcUEd5YJNN1hhLJlx
+5tdsgeq7TJ8OF3iEoe5jhJa5aytdG6P1GhOjBCHg5dvt3IORbwsynfXZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDYwmBb0ROG2rr9JoxVclBtLIhHxMB8GA1UdIwQY
MBaAFBIaNygt2ZLYhlgWBVngSDknmMhLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWhvM0tDM1prdGlHV0JZRldlQklPU2VZeUVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mZWQxMzEtZjlkNy00MWIyLWI4YmMt
MDgyYjFmN2YwZGIyLzEvTmpDWUZ2UkU0YmF1djBtakZWeVVHMHNpRWZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mZWQxMzEtZjlkNy00MWIyLWI4YmMtMDgyYjFmN2YwZGIy
LzEvRWhvM0tDM1prdGlHV0JZRldlQklPU2VZeUVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQ2AMA0G
CSqGSIb3DQEBCwUAA4IBAQDRNervJVkG+Kg0iOUAV5+aTnLeg0GjiD+VU8Meiq6f
oB85MX+769WRFxSBrs+/bhIxs+yvnALTD2wA8COMHKuDZfb5VWZO0fpP2ooJeQxK
GRHTqXiFfY609GO9b/QDmYr0ijA12paMWGXjxunSqhH1ldNXlJE6FCiOAvB5x4wt
MChWO4Fk1SyE7Bc/nbuZyhlb2OKWIdAx12VZwVRx21qGYTdoYorPMJUqw1/8AMEe
yxhjfFpECWIKt1qFLW/zHHmFta2p0CAYJBMTvbBtGPXW1Xc6jc4xUAIIw0YOzKFm
FYZj+9AfACVisVvuMBki7P4dViwWmqSaxALCFWBdZK2I
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org