Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/NntSZ6VYDeQAp4LyTrYS1lX-4gU.roa
File: NntSZ6VYDeQAp4LyTrYS1lX-4gU.roa (raw, json)
Hash identifier: p6AYqlvRNYPiGd2CYMikgSHIh4r79ca+TiLhdBnwk+0=
Subject key identifier: 36:7B:52:67:A5:58:0D:E4:00:A7:82:F2:4E:B6:12:D6:55:FE:E2:05
Certificate issuer: /CN=47b7054d656153d2d55add8b9dfe3f6d137ad27e
Certificate serial: 01856CB818F9D3721F2B06176AD7C64E3A21
Authority key identifier: 47:B7:05:4D:65:61:53:D2:D5:5A:DD:8B:9D:FE:3F:6D:13:7A:D2:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7cFTWVhU9LVWt2Lnf4_bRN60n4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/NntSZ6VYDeQAp4LyTrYS1lX-4gU.roa
Signing time: Sun 01 Jan 2023 09:44:42 +0000
ROA not before: Sun 01 Jan 2023 09:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208097
IP address blocks: 192.122.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 13:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:18:f9:d3:72:1f:2b:06:17:6a:d7:c6:4e:3a:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47b7054d656153d2d55add8b9dfe3f6d137ad27e
Validity
Not Before: Jan 1 09:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=367b5267a5580de400a782f24eb612d655fee205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7f:ad:4b:c0:48:59:5d:15:b7:1c:8a:eb:7a:
3e:4e:5e:91:8f:d0:d2:c5:62:70:b8:e1:a3:68:87:
2f:bd:39:3f:11:1b:5e:6a:ae:86:7d:fa:a7:98:78:
18:d5:91:e0:39:ea:d5:ff:81:23:8e:3d:ab:2f:f5:
a9:67:7c:0e:93:76:d0:21:3a:74:48:fb:ea:f8:60:
1b:25:02:b5:58:9f:0c:86:08:8d:f0:52:2d:81:f4:
97:88:4b:53:81:3c:a8:cd:9e:44:99:f5:37:1e:ca:
2f:8b:74:97:93:41:3a:66:3f:49:3e:a4:61:52:fc:
49:60:53:bd:f6:88:c8:76:c7:f1:f1:7d:fe:a7:6d:
7c:f7:52:66:39:da:c6:7d:71:05:54:14:9c:cd:5d:
e9:d3:97:20:53:dc:91:b7:7f:84:89:25:3e:aa:36:
0b:b5:40:7e:3f:c7:f1:85:03:fc:7f:28:e7:c8:44:
74:9f:09:61:9b:38:47:b8:01:cc:8a:93:f6:67:1e:
1b:90:94:a6:43:9c:82:d8:c8:61:a5:96:1e:7c:c3:
0a:9d:fd:cd:72:22:ff:59:70:48:5c:4b:db:ac:75:
a2:f4:3a:fa:12:6d:5f:db:9a:f3:3d:6e:9c:50:de:
5f:cf:b9:98:f9:23:2d:f5:48:cf:b8:e9:bf:3d:48:
84:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7B:52:67:A5:58:0D:E4:00:A7:82:F2:4E:B6:12:D6:55:FE:E2:05
X509v3 Authority Key Identifier:
keyid:47:B7:05:4D:65:61:53:D2:D5:5A:DD:8B:9D:FE:3F:6D:13:7A:D2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7cFTWVhU9LVWt2Lnf4_bRN60n4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/NntSZ6VYDeQAp4LyTrYS1lX-4gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/R7cFTWVhU9LVWt2Lnf4_bRN60n4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.122.253.0/24
Signature Algorithm: sha256WithRSAEncryption
82:96:83:26:81:a5:32:c4:71:52:20:0a:2d:6f:1e:02:19:fb:
85:e5:44:f9:ec:25:9a:bf:f9:ca:3c:92:c1:f0:ac:7c:6d:75:
ab:00:ea:64:08:48:28:a5:52:f0:51:9e:fb:fe:24:fa:5d:2f:
7f:73:09:4e:60:2b:db:b3:5b:ac:fb:64:b0:a8:ac:ec:b9:9a:
61:bb:9a:75:76:4c:13:c1:07:74:8e:08:4b:cc:44:9f:37:2d:
c5:3b:37:e0:43:35:ab:ef:3e:2d:e1:9a:d6:ec:23:75:89:78:
fc:84:4d:2b:f6:c4:02:6e:23:9e:6e:7f:e5:a6:79:f6:2a:af:
4c:a2:c1:0d:66:f7:de:ab:91:d9:a6:bf:c5:73:4d:7e:90:e9:
b2:af:a6:3e:af:76:97:c7:b7:d5:3c:3a:af:e4:70:1d:48:41:
2e:29:10:a0:67:27:5c:f0:b8:9f:0d:4c:06:eb:fb:a6:71:6b:
da:92:d8:18:61:29:1c:74:ac:62:99:49:6b:81:56:99:87:2a:
03:97:3e:d9:30:8a:ca:dd:94:85:fe:79:3b:6e:b3:6a:90:16:
7d:ff:1c:fa:68:88:75:cc:45:ec:0a:41:7d:97:7e:33:83:9f:
2a:11:02:94:30:e7:c8:bf:1f:59:0d:b6:02:21:cc:1b:ce:9a:
44:c2:7a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:55 2024 by rpki-client on console-ams.rpki-client.org