Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/NS-YDMObEOAEsnQUy5Hv_9O6szI.roa
File: NS-YDMObEOAEsnQUy5Hv_9O6szI.roa (raw, json)
Hash identifier: 8sAVKQ79KTr7dPHKHD/pSCtgbr6hFo9vlRXzonkWUos=
Subject key identifier: 35:2F:98:0C:C3:9B:10:E0:04:B2:74:14:CB:91:EF:FF:D3:BA:B3:32
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE4130C1CCDB691103568F34C8738
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/NS-YDMObEOAEsnQUy5Hv_9O6szI.roa
Signing time: Sun 01 Jan 2023 06:04:56 +0000
ROA not before: Sun 01 Jan 2023 06:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210406
IP address blocks: 77.65.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e4:13:0c:1c:cd:b6:91:10:35:68:f3:4c:87:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=352f980cc39b10e004b27414cb91efffd3bab332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bc:57:48:cc:3c:ba:8d:83:07:33:fd:54:a0:
e0:11:73:a0:9c:cb:65:8f:ea:66:21:4b:04:e8:d9:
c8:ad:ff:d9:d8:c1:48:68:ba:de:4f:90:6e:b2:a7:
da:ba:a9:09:6e:6a:71:65:0f:e1:24:fd:8b:ce:65:
9b:ad:59:6f:37:34:b4:33:da:2a:e9:f4:ce:c6:c4:
ce:01:50:ec:ff:32:04:75:29:f1:ac:f8:52:73:e0:
10:1a:88:b3:f4:25:e5:12:dd:ca:71:a6:7b:ef:3f:
e1:cf:2b:10:46:24:f3:d1:1f:9b:99:d4:37:50:b0:
b6:4d:5e:24:b5:ae:82:10:17:66:2a:8c:f3:8a:e0:
73:4b:5b:10:fb:fa:69:95:d7:47:8d:f6:b0:0b:f5:
1f:7f:27:b1:7f:1f:ce:63:5d:46:77:15:81:55:ef:
59:39:9f:cc:23:7a:f4:27:ad:e3:5d:64:07:a0:18:
92:eb:4a:28:6d:ce:38:fd:70:53:c4:f4:ae:49:7c:
06:3d:80:54:92:53:e3:f4:84:27:a7:39:3b:c5:0d:
49:3c:1f:2f:0a:c4:bb:04:b4:2d:55:b4:70:13:33:
9f:c8:af:91:e4:03:97:2c:6a:42:1f:05:26:4c:61:
4b:09:42:4d:9c:3c:1b:3c:45:4c:ef:fa:7c:40:97:
7e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:2F:98:0C:C3:9B:10:E0:04:B2:74:14:CB:91:EF:FF:D3:BA:B3:32
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/NS-YDMObEOAEsnQUy5Hv_9O6szI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.216.0/24
Signature Algorithm: sha256WithRSAEncryption
12:3f:80:f8:ec:b4:ca:77:f4:8b:f1:34:27:2c:0f:85:7f:d1:
26:25:3b:12:b9:83:31:1f:8a:60:8d:a8:9e:e6:ca:2a:f6:c5:
a4:2a:fe:5d:df:8f:5c:b9:fb:a9:93:e7:77:e2:30:cb:63:3f:
30:e2:22:36:68:c8:35:0c:50:b7:67:35:a5:ec:bd:05:d0:e4:
03:2a:da:1a:ad:01:e5:07:0d:f2:59:2f:01:96:ca:8c:b9:ec:
6d:b2:72:08:2d:c0:05:55:e2:80:3a:32:94:f9:32:bf:b8:76:
c8:a4:e5:87:3d:78:64:25:6a:b4:bf:a2:b6:75:21:fb:84:32:
99:a4:ae:81:2b:81:32:18:5e:e4:e0:e8:32:68:59:62:93:56:
ab:60:69:a8:59:48:64:b8:e5:71:2d:f5:79:d9:3b:e2:fd:08:
c5:7b:0e:5f:96:41:7f:00:74:80:d6:d1:e0:e7:61:dd:32:f5:
a0:48:22:f2:19:ed:fc:91:4f:06:07:35:8c:4b:d9:f9:a8:aa:
72:ba:a4:ad:a9:63:f8:f6:bc:58:01:42:fe:b1:8d:27:e7:98:
93:66:e3:a4:de:9a:5c:b0:f8:18:e8:0d:b4:23:e3:29:84:f1:
e7:d9:24:e3:28:bc:be:a4:1c:a5:b9:69:6d:cf:7b:74:85:bb:
81:83:bc:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org