Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/nvMTu-1CFNZPwGmkicuBnf3s22M.roa
File: nvMTu-1CFNZPwGmkicuBnf3s22M.roa (raw, json)
Hash identifier: 6QJop39YXzxGwU76m8o6LRDzCt6n1urcdR0DwFgmUdY=
Subject key identifier: 9E:F3:13:BB:ED:42:14:D6:4F:C0:69:A4:89:CB:81:9D:FD:EC:DB:63
Certificate issuer: /CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Certificate serial: 018BBA982E251B8237611E49FD2ACBBE2B23
Authority key identifier: 8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/nvMTu-1CFNZPwGmkicuBnf3s22M.roa
Signing time: Fri 10 Nov 2023 18:56:57 +0000
ROA not before: Fri 10 Nov 2023 18:56:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210531
IP address blocks: 45.139.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ba:98:2e:25:1b:82:37:61:1e:49:fd:2a:cb:be:2b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Validity
Not Before: Nov 10 18:56:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ef313bbed4214d64fc069a489cb819dfdecdb63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:91:91:32:09:e8:d8:08:f1:d8:d5:4d:57:5d:
14:e2:6c:cd:05:75:fe:83:d7:4c:98:d3:72:ed:ec:
7b:5b:68:70:02:ef:15:8f:bd:39:aa:3a:33:76:1e:
8b:7d:6a:3b:be:09:29:e9:a1:9d:e9:74:63:8d:a3:
ad:6d:52:56:19:63:b1:b1:a3:22:d9:3c:3e:1a:3d:
0e:9a:7d:b1:9d:db:d9:6c:15:59:0b:8f:ec:64:93:
e7:4f:35:ee:59:06:6e:fe:2a:04:70:6f:09:82:57:
fe:9a:cb:22:6d:a0:0f:47:29:8f:f3:95:24:7d:44:
98:79:08:6d:97:74:01:f9:b3:36:ec:92:d6:c9:7f:
5d:fe:cb:6b:57:85:d6:72:35:bd:c1:b9:18:a7:74:
8f:71:ed:d6:ed:52:72:75:07:94:e4:7b:72:5f:d0:
67:22:a1:1a:f8:a8:b6:55:23:59:ef:ff:a4:dc:2c:
f6:50:29:e5:9d:b4:61:93:6c:df:fb:8d:03:3c:99:
b6:c8:28:f8:a2:e4:a8:b0:c7:1b:d3:b8:e7:7c:05:
f5:3b:6f:03:7f:fb:50:ed:cf:37:3d:64:17:a5:65:
09:d8:71:eb:d8:b3:6e:b3:b8:f5:7a:74:7a:d5:f8:
15:75:29:ab:42:76:d6:20:f4:f2:0a:3f:33:e9:bd:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F3:13:BB:ED:42:14:D6:4F:C0:69:A4:89:CB:81:9D:FD:EC:DB:63
X509v3 Authority Key Identifier:
keyid:8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/nvMTu-1CFNZPwGmkicuBnf3s22M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/jj8WY5lr4XB2Ef3OHd6okg3TmKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.211.0/24
Signature Algorithm: sha256WithRSAEncryption
09:87:31:4e:e8:b2:52:40:58:57:61:1c:68:04:ec:cc:ad:0f:
bd:81:71:85:7d:cf:17:d3:c8:73:83:ed:2f:15:54:0d:18:a1:
65:1f:72:e9:d6:03:a9:06:fa:22:cf:18:c3:f1:e3:b0:c0:4e:
0c:e6:d4:d3:c0:fc:90:88:f1:e5:ee:87:3c:bc:8d:ef:4e:92:
8d:90:65:f0:ef:7d:5d:be:62:22:5b:9f:87:a8:79:48:26:01:
8c:7d:22:34:7f:92:d5:91:d1:3f:9a:25:94:88:c9:f3:e8:d9:
4a:5c:89:e5:07:cf:d3:32:03:80:f9:6f:1e:7d:66:1e:08:38:
f2:9a:f6:d4:d4:6a:71:e7:85:25:4f:61:4b:8f:2b:a1:0e:c9:
23:65:13:d5:d8:41:c4:2d:94:fb:ec:9c:e7:61:d1:c5:33:ef:
62:7c:de:fd:02:45:96:a4:a3:84:a3:34:60:44:6c:af:2b:7f:
fb:cf:49:82:c7:f4:6b:fd:f4:5e:70:d1:0e:9d:a5:97:8e:3d:
25:bb:30:48:6e:1b:45:b7:d7:c9:e4:2b:95:be:f5:62:ee:8c:
8f:a5:7f:f3:b8:0f:b0:70:85:4f:5b:45:cb:0d:58:30:07:3f:
80:62:a2:0b:bc:71:b5:91:35:35:26:cb:8e:96:5e:61:c4:48:
67:5b:46:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:15 2024 by rpki-client on console-fra.rpki-client.org