Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/NQr_zcgEoTV95sfilVS7EflsU8g.roa
File: NQr_zcgEoTV95sfilVS7EflsU8g.roa (raw, json)
Hash identifier: mDkeW5+ZstNFh8Ox+MkxczETL3io9xJp4Bzo4wCQVbk=
Subject key identifier: 35:0A:FF:CD:C8:04:A1:35:7D:E6:C7:E2:95:54:BB:11:F9:6C:53:C8
Certificate issuer: /CN=d283616f1362c25d82ec2a70c4b9750565b1197f
Certificate serial: 01856F391D0C0E1CB33D53D77824D1BB68B9
Authority key identifier: D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/NQr_zcgEoTV95sfilVS7EflsU8g.roa
Signing time: Sun 01 Jan 2023 21:24:51 +0000
ROA not before: Sun 01 Jan 2023 21:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.54.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:1d:0c:0e:1c:b3:3d:53:d7:78:24:d1:bb:68:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d283616f1362c25d82ec2a70c4b9750565b1197f
Validity
Not Before: Jan 1 21:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=350affcdc804a1357de6c7e29554bb11f96c53c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:74:6a:ad:82:21:c6:55:2a:72:6e:a8:aa:cd:
71:0a:79:14:41:bf:79:df:66:f5:40:67:5a:05:1e:
37:5b:f9:ef:be:69:85:ee:a9:7c:07:77:e6:3f:6b:
e8:ee:dd:ea:a4:37:7d:89:ad:fe:63:c1:bc:ae:a4:
38:9b:1a:8a:66:32:d6:b2:9b:df:db:eb:b5:db:9e:
58:9e:8a:0e:92:27:63:65:f2:c3:7d:5e:fe:e9:72:
c8:3f:ea:ed:ea:24:c4:dd:22:c5:93:fe:17:18:20:
14:a6:bd:11:22:12:4d:1b:5f:d0:a6:29:54:ae:be:
69:25:50:ca:ac:1e:a0:e9:db:dd:2c:91:f8:65:d7:
61:19:d5:7e:a4:ff:1b:9d:58:2d:ea:54:63:22:a4:
1a:7e:7a:75:01:90:33:33:f4:04:52:f1:69:d2:e6:
dc:da:3c:ec:58:e1:c4:91:cf:51:68:7e:8d:de:1d:
b5:c9:f6:ad:98:09:93:a8:24:a8:f3:7d:a4:5c:3f:
23:e4:52:37:0c:27:08:bf:95:0d:25:4e:56:a6:b3:
c9:fd:53:bb:00:af:b1:ae:39:09:d7:8a:d9:7c:72:
79:84:73:8e:ac:c1:ea:07:e8:9c:78:08:74:a2:49:
52:0e:9d:36:d1:38:ec:99:36:cd:69:0c:4d:da:d2:
e4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0A:FF:CD:C8:04:A1:35:7D:E6:C7:E2:95:54:BB:11:F9:6C:53:C8
X509v3 Authority Key Identifier:
keyid:D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/NQr_zcgEoTV95sfilVS7EflsU8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.72.0/22
Signature Algorithm: sha256WithRSAEncryption
53:15:c6:d2:98:6c:4f:61:6a:28:3f:33:1a:9b:12:c7:30:34:
83:36:75:bb:1a:09:00:a4:78:f0:f0:9f:2a:aa:dd:e9:27:2e:
c8:08:20:20:2d:f2:35:21:c9:89:c5:a9:3f:65:42:4a:af:bf:
ea:4f:ba:9c:b6:12:98:9c:cf:52:ea:27:1f:95:c2:64:82:9d:
72:c8:2a:f1:f0:89:45:fc:80:89:bf:89:f6:05:53:80:0d:2c:
91:5e:dc:bc:39:61:43:36:8f:a4:35:d6:d7:52:22:43:a6:1c:
1b:5e:c1:4d:84:42:6a:3e:5c:6d:6e:de:81:a4:96:11:55:f7:
8b:4b:c5:07:cb:91:a9:88:a1:fc:98:aa:8b:4e:b2:67:fe:c5:
cb:2d:b6:17:c4:a0:8e:e4:02:af:f7:12:83:88:26:b9:5b:0d:
e5:2f:d1:09:f4:43:21:3c:29:80:59:76:3f:0f:62:8d:36:97:
29:3d:86:db:3a:f8:b6:40:d3:0d:2c:a2:b5:78:7c:68:47:48:
75:14:ec:75:2f:ac:c7:69:8c:dd:d6:e7:f0:87:fa:e9:5e:63:
32:00:b4:03:8f:f8:0c:e3:5e:a0:eb:09:1a:d3:fc:98:da:27:
e0:70:b8:67:83:c0:7b:65:8b:98:2b:ad:92:dc:d0:88:6b:f9:
7e:66:78:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:35 2024 by rpki-client on console-ams.rpki-client.org