Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/NP2UhBtGGHszKDORk-eykCAdkFI.roa
File: NP2UhBtGGHszKDORk-eykCAdkFI.roa (raw, json)
Hash identifier: HzrD5jxoqpAzaiTm1ngXs896cnxP09LR4U8DkEXWFkc=
Subject key identifier: 34:FD:94:84:1B:46:18:7B:33:28:33:91:93:E7:B2:90:20:1D:90:52
Certificate issuer: /CN=421f108882a9e2d72782db6527da4d9adeeb19cc
Certificate serial: 01856ECB6A40B9ADEB49AE18B7FECD9A1EF8
Authority key identifier: 42:1F:10:88:82:A9:E2:D7:27:82:DB:65:27:DA:4D:9A:DE:EB:19:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qh8QiIKp4tcngttlJ9pNmt7rGcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/NP2UhBtGGHszKDORk-eykCAdkFI.roa
Signing time: Sun 01 Jan 2023 19:25:02 +0000
ROA not before: Sun 01 Jan 2023 19:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.86.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:6a:40:b9:ad:eb:49:ae:18:b7:fe:cd:9a:1e:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421f108882a9e2d72782db6527da4d9adeeb19cc
Validity
Not Before: Jan 1 19:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34fd94841b46187b3328339193e7b290201d9052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:bd:10:a2:8e:f2:15:a7:f0:96:66:52:91:2c:
18:c1:18:73:c9:49:a6:ac:9d:e6:09:02:f4:5c:61:
29:93:14:32:ef:25:41:27:e6:c2:81:1b:24:3c:94:
67:46:65:37:32:31:5e:70:0b:c8:47:6c:a9:aa:01:
fa:fc:f8:3e:39:df:89:9b:b0:c3:a9:83:b4:89:c6:
e4:d9:22:45:b5:08:ab:dd:75:bb:34:b4:f9:2f:fd:
7c:9a:4a:c9:d5:d0:2f:59:c6:e5:ef:9c:6b:f6:e3:
93:8c:7b:4d:f1:de:74:06:73:e1:23:6d:bf:d9:30:
15:9e:f0:92:b3:a8:05:1b:4f:ab:5c:80:79:88:85:
31:9f:f3:27:db:a5:36:82:0f:84:eb:cb:52:42:6a:
6d:d0:cf:3c:f2:80:cc:e8:a7:89:eb:53:5e:1b:45:
07:e1:43:42:29:49:be:ec:e0:12:07:08:ad:d9:ee:
f0:3f:1f:0a:07:0e:78:2d:16:6f:75:06:c9:b6:41:
1e:3f:60:3f:99:29:7b:f1:44:7e:30:73:32:d7:dc:
77:32:93:b1:c8:d0:72:44:70:43:f0:73:8e:f3:95:
69:60:fa:d6:b5:3a:ba:7b:2e:f8:2b:a9:09:33:94:
86:65:7f:7c:1e:a5:d7:1b:fc:60:4b:35:70:36:dc:
f3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FD:94:84:1B:46:18:7B:33:28:33:91:93:E7:B2:90:20:1D:90:52
X509v3 Authority Key Identifier:
keyid:42:1F:10:88:82:A9:E2:D7:27:82:DB:65:27:DA:4D:9A:DE:EB:19:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qh8QiIKp4tcngttlJ9pNmt7rGcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/NP2UhBtGGHszKDORk-eykCAdkFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/Qh8QiIKp4tcngttlJ9pNmt7rGcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.112.0/24
Signature Algorithm: sha256WithRSAEncryption
92:7f:5e:d1:5e:0d:01:2e:47:fe:e1:dc:09:57:50:b4:7b:71:
8a:32:3e:b6:41:49:af:0e:74:9d:fb:39:64:53:0b:e0:f9:8b:
7f:f9:93:b9:9a:81:67:a3:47:84:39:55:69:94:f8:d9:01:7c:
87:95:ab:31:82:66:2b:f2:59:5f:42:41:77:b2:d6:35:81:b7:
97:02:bc:4b:97:4f:01:00:51:bc:b6:98:e7:5c:10:a3:04:89:
1c:2e:3e:9a:86:ac:f4:7f:df:9a:f5:32:da:fb:64:4e:43:1c:
35:bb:a4:bf:3f:1c:5f:13:c4:ba:0b:e4:34:70:c8:6e:c6:37:
01:62:d9:07:9a:37:e1:c6:64:2c:85:28:a3:9f:97:30:da:10:
46:51:e3:72:29:bb:3d:7e:c0:37:9d:9e:76:61:21:10:3d:8b:
d1:b4:3e:33:be:6c:f9:40:fd:bd:19:2a:57:33:85:ff:58:d9:
46:13:cf:84:8d:f3:1e:52:b0:e9:a5:65:9a:32:ac:ec:ef:d3:
dc:46:b6:75:be:dd:f1:83:a0:6e:f7:e8:bd:60:ff:25:e3:93:
29:57:91:f5:c2:1c:90:ff:96:90:90:a1:9f:38:bf:21:c5:dd:
4d:4c:d8:a8:3e:53:85:20:35:fa:a7:72:40:55:9c:e5:db:60:
9e:0e:6f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:19 2024 by rpki-client on console-fra.rpki-client.org