Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/N0s7OmUS18BTeTqiwvt22ydOmng.roa
File: N0s7OmUS18BTeTqiwvt22ydOmng.roa (raw, json)
Hash identifier: hEQsgyG0c032Gv00MJGOYSf1fmZBbyTFsG+bfyjbz6k=
Subject key identifier: 37:4B:3B:3A:65:12:D7:C0:53:79:3A:A2:C2:FB:76:DB:27:4E:9A:78
Certificate issuer: /CN=bb79847a3fe8e5c78844027ccaf0bd6e9da4624a
Certificate serial: 018AE137E5B381EA4708F560A8F0B4A2CC39
Authority key identifier: BB:79:84:7A:3F:E8:E5:C7:88:44:02:7C:CA:F0:BD:6E:9D:A4:62:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3mEej_o5ceIRAJ8yvC9bp2kYko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/N0s7OmUS18BTeTqiwvt22ydOmng.roa
Signing time: Fri 29 Sep 2023 13:54:11 +0000
ROA not before: Fri 29 Sep 2023 13:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56648
IP address blocks: 185.20.5.0/24 maxlen: 24
2a13:2900::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e1:37:e5:b3:81:ea:47:08:f5:60:a8:f0:b4:a2:cc:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb79847a3fe8e5c78844027ccaf0bd6e9da4624a
Validity
Not Before: Sep 29 13:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=374b3b3a6512d7c053793aa2c2fb76db274e9a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:63:0c:13:4f:b0:8f:f0:d6:a4:e7:e7:4a:14:
6e:4c:71:5e:ad:6c:30:7e:f7:e8:60:7b:8b:9e:18:
ec:29:4f:c0:ef:0d:1f:75:e6:5a:13:c0:d1:8c:bd:
a7:cc:e1:9e:5f:11:93:a4:a8:17:05:32:4e:2f:a6:
c5:e2:5f:3c:d9:6e:8c:f9:71:83:ee:e4:4c:3a:e4:
a3:df:31:98:a2:9c:c7:ff:4a:b3:d7:b6:c8:39:97:
52:43:2f:25:d8:b5:27:0c:b3:79:10:e9:9d:4d:72:
08:ac:c0:9f:f3:ef:73:60:f8:99:1b:73:08:ff:b2:
07:bc:67:13:b3:2f:f5:23:33:e4:c4:25:39:1e:46:
8c:37:eb:13:3c:5e:15:e3:72:61:87:98:2d:ab:63:
29:b9:6e:08:9b:88:e8:1f:b9:38:2b:d0:82:d7:05:
93:4f:1d:f7:78:c4:42:ee:ba:89:56:47:26:d9:3c:
7d:58:72:99:d7:68:b8:5c:0c:69:da:f6:3d:8b:3a:
73:2f:4a:5f:cc:bc:51:24:0c:c2:63:b4:50:9e:1f:
f5:39:8d:f9:c3:82:73:37:72:66:40:d5:8b:d1:00:
e8:45:77:fb:a7:85:d6:27:4f:5d:84:30:0e:80:38:
77:fc:a4:8d:9f:e6:46:ef:56:0f:62:1b:04:fa:2a:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4B:3B:3A:65:12:D7:C0:53:79:3A:A2:C2:FB:76:DB:27:4E:9A:78
X509v3 Authority Key Identifier:
keyid:BB:79:84:7A:3F:E8:E5:C7:88:44:02:7C:CA:F0:BD:6E:9D:A4:62:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3mEej_o5ceIRAJ8yvC9bp2kYko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/N0s7OmUS18BTeTqiwvt22ydOmng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/45cc9f-6432-41c7-b62d-10e40c586498/1/u3mEej_o5ceIRAJ8yvC9bp2kYko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.5.0/24
IPv6:
2a13:2900::/29
Signature Algorithm: sha256WithRSAEncryption
40:a1:26:b7:06:d0:8f:67:fd:c6:b2:e6:db:31:76:18:70:ee:
a0:e2:10:3e:fa:f1:ea:a0:78:1d:80:e9:d0:cf:1f:0c:29:07:
63:c0:d4:4e:f3:d5:11:99:f2:ce:f7:2b:39:e8:b5:40:75:cd:
a0:36:4b:87:14:30:b2:3e:31:f3:c9:c8:b6:2f:7d:f4:a5:45:
6f:0d:af:db:48:bc:f9:a8:87:ad:d6:34:12:55:b3:c4:30:ca:
ee:bb:56:ed:49:74:2b:0e:43:d7:fa:6f:4c:41:29:b0:e7:66:
ec:3e:e3:46:b0:48:0b:67:fd:09:ce:e7:dc:93:81:c2:03:06:
bc:d4:72:e3:50:ed:19:e5:8d:09:a8:63:89:9e:2b:87:2c:88:
9b:47:5f:6a:74:2d:e0:df:c7:c6:f0:8c:f8:b8:b8:fa:ba:49:
f3:b9:56:df:9a:8d:38:ff:e8:1f:78:9e:57:69:9b:d5:96:e3:
fc:07:c1:6b:d4:14:72:8d:e1:d3:b5:df:2e:15:93:d5:fc:0b:
1a:01:6b:dc:d6:3f:14:c9:47:88:f2:1e:b4:89:79:1c:e1:52:
c1:b8:65:14:3c:a9:29:a1:1e:1a:48:b8:04:07:4a:19:45:bd:
96:0c:6b:74:a0:97:f6:f7:35:48:3b:5e:39:5f:a0:ca:e1:38:
9e:7a:cc:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:39 2024 by rpki-client on console-fra.rpki-client.org