Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/n0lBCTJ_psC7TQfS0Y_qcv5gtSs.roa
File: n0lBCTJ_psC7TQfS0Y_qcv5gtSs.roa (raw, json)
Hash identifier: nV+6zvo/8ajdpRtRxN4DDwT1EJObTpT75uVB0znao4s=
Subject key identifier: 9F:49:41:09:32:7F:A6:C0:BB:4D:07:D2:D1:8F:EA:72:FE:60:B5:2B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEBF7057F36B2F7CA4C787EFDEF837
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/n0lBCTJ_psC7TQfS0Y_qcv5gtSs.roa
Signing time: Sun 01 Jan 2023 06:04:46 +0000
ROA not before: Sun 01 Jan 2023 06:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56872
IP address blocks: 178.16.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:bf:70:57:f3:6b:2f:7c:a4:c7:87:ef:de:f8:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f494109327fa6c0bb4d07d2d18fea72fe60b52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ac:8f:b9:9f:cc:e1:b3:a8:ed:69:ed:b1:13:
24:76:14:d5:2e:6c:f0:3b:2f:b9:bc:14:9e:d5:cd:
20:4f:22:d9:98:48:aa:8c:54:77:39:4b:2f:91:45:
88:c6:32:54:01:fd:56:1b:b1:1c:44:49:24:8f:6c:
9f:92:5b:38:a9:aa:a7:38:50:d2:ad:da:7a:05:87:
0b:c1:8c:b7:4f:32:72:f5:f6:32:06:64:e6:c1:a3:
d1:43:c4:83:10:06:b6:a6:35:5c:e6:cf:29:de:bc:
cb:01:99:21:35:75:b0:c3:9d:6e:88:f4:f9:26:1d:
e2:fc:ee:50:69:92:d3:05:95:22:42:fc:d3:af:4b:
33:85:49:80:49:89:fb:e0:13:7f:72:74:b7:78:b5:
9f:37:78:18:26:38:4d:72:ee:95:42:11:47:0b:ea:
f1:c4:63:ef:17:ed:39:fb:c6:cc:88:11:af:cd:e0:
24:25:9d:18:c0:58:42:5e:b2:f5:8e:ef:5b:21:42:
b6:fc:c3:dd:ca:d9:92:78:7e:88:53:8f:b1:b5:e7:
3a:5b:7e:82:b9:ab:b0:d8:ab:83:db:02:ed:1e:67:
2b:21:22:e9:27:8a:5e:68:1c:a8:ec:75:1c:02:40:
03:eb:83:1b:4f:00:78:7d:ac:0c:31:c3:1e:5a:bb:
f3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:49:41:09:32:7F:A6:C0:BB:4D:07:D2:D1:8F:EA:72:FE:60:B5:2B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/n0lBCTJ_psC7TQfS0Y_qcv5gtSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.125.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a4:04:e4:2c:ef:57:9c:ed:59:96:d9:cc:24:85:8a:64:be:
dc:62:20:7f:cb:1f:58:2b:23:ad:6f:e3:53:e8:94:6a:f5:ca:
8a:9a:5c:7f:32:cc:f4:1b:9a:88:d1:f4:ba:17:58:97:a2:6c:
ef:cb:41:92:0c:35:89:18:c9:64:8c:d6:76:93:38:9e:6c:00:
17:4f:1d:85:06:fa:21:7f:97:f3:65:51:f9:88:f5:14:72:27:
66:c6:29:d8:8f:22:a0:9a:c1:cd:d9:43:06:e0:a5:8f:18:e8:
ae:9b:9d:7c:73:39:ab:d2:80:2b:17:e6:8d:0e:78:e8:c5:00:
5c:6e:e8:b6:06:59:ee:50:01:5f:09:49:96:b3:a0:06:3a:8d:
3f:8a:d6:c0:3e:eb:45:85:b0:e4:37:0e:63:91:18:b1:36:2c:
19:89:9c:6c:c0:7e:e9:89:4e:80:43:a3:ee:c6:05:5a:b1:f8:
80:e6:bb:fe:99:74:a6:96:08:e7:3a:d7:4b:af:48:c4:a7:f8:
4b:e7:d1:49:bc:f5:59:94:a1:87:bd:64:c2:69:49:00:c7:f4:
ee:55:8f:cf:db:76:40:55:84:ff:40:64:5a:a1:d9:c2:16:e1:
4e:1a:e7:50:89:a0:83:3f:31:be:7d:5f:5f:0d:8e:7d:b7:69:
f8:0a:83:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org