Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/NjpcY6LueAmlfO9MamWCaOSH8EY.roa
File: NjpcY6LueAmlfO9MamWCaOSH8EY.roa (raw, json)
Hash identifier: E2VHRNF8wk8WH+H/1nZgwasBntOX7OEl1v/gZvsKF0E=
Subject key identifier: 36:3A:5C:63:A2:EE:78:09:A5:7C:EF:4C:6A:65:82:68:E4:87:F0:46
Certificate issuer: /CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Certificate serial: 01856CB8426201ADD7B0931A8826E35C00DC
Authority key identifier: 5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/NjpcY6LueAmlfO9MamWCaOSH8EY.roa
Signing time: Sun 01 Jan 2023 09:44:52 +0000
ROA not before: Sun 01 Jan 2023 09:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44901
IP address blocks: 185.196.101.0/24 maxlen: 24
185.196.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:42:62:01:ad:d7:b0:93:1a:88:26:e3:5c:00:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Validity
Not Before: Jan 1 09:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=363a5c63a2ee7809a57cef4c6a658268e487f046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2d:31:a2:89:01:fb:14:67:9d:52:85:f1:a3:
de:ca:bb:a2:c4:d7:8b:84:b2:5a:9b:0e:2d:a0:67:
0e:78:ad:0a:08:16:ba:44:43:5b:e8:90:23:48:40:
76:d4:a8:11:57:00:2e:91:72:e7:fd:e1:62:5a:8b:
c9:e7:35:45:5d:b3:da:2e:c3:a7:a8:0c:d5:a7:d5:
74:16:08:51:50:0a:9c:d2:c6:39:2c:5c:4c:35:82:
eb:40:f3:d0:49:23:fe:8b:3c:e4:dc:b6:4f:b7:e5:
e9:3e:08:57:9b:9e:64:6a:e9:5c:d0:c8:48:e9:11:
5b:a0:e6:e4:cf:17:61:f2:50:a7:e1:1b:56:44:1a:
57:64:eb:c5:6c:d4:83:e0:c8:e7:e3:65:38:ef:04:
ea:c6:02:fa:fd:35:76:e4:4a:56:3e:8a:21:c8:63:
98:bc:85:e6:86:17:7d:bc:97:08:cf:01:66:8a:9a:
d2:71:95:7e:ee:7b:23:e6:58:dc:98:09:6c:aa:36:
bb:bc:6c:24:57:c5:85:21:98:77:b2:c8:40:dd:09:
17:7c:a6:cb:24:50:e4:40:04:ba:ee:48:b7:ce:57:
94:cd:91:24:ea:7d:6b:aa:49:ae:4e:65:5f:d9:0a:
25:00:90:77:ce:5d:30:d8:15:60:38:19:74:5b:5c:
07:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:3A:5C:63:A2:EE:78:09:A5:7C:EF:4C:6A:65:82:68:E4:87:F0:46
X509v3 Authority Key Identifier:
keyid:5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/NjpcY6LueAmlfO9MamWCaOSH8EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/XOGq4Mk60EtymAgraL9qVPpovPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.101.0/24
185.196.103.0/24
Signature Algorithm: sha256WithRSAEncryption
95:48:98:5e:6b:01:32:73:2b:56:85:db:67:ef:86:b6:65:9b:
3f:f5:3a:1e:1f:3e:3f:57:45:48:4c:14:63:53:9e:3b:7d:33:
70:56:f5:9a:d4:21:9d:1d:81:07:c6:6f:3a:80:a9:63:52:30:
a5:d4:b2:a0:7b:fc:f7:b4:53:e1:d1:6a:2d:b4:52:e4:f0:3a:
60:ec:6f:51:4f:3e:8e:9a:cd:d5:c3:a7:51:a3:1b:01:34:a2:
1c:b9:0a:89:6d:8d:50:c2:3b:ca:07:0e:87:61:2a:0f:78:08:
59:cd:1d:8e:b1:de:97:ae:a1:3f:76:7f:cf:45:1d:35:36:c4:
13:4c:6b:ff:6d:58:4f:f7:26:a3:6b:51:1b:9e:62:77:e5:ea:
14:c0:61:69:19:e4:4f:dc:75:49:cb:f6:e4:40:1d:1e:13:22:
74:ae:9b:04:4d:df:10:aa:a5:a5:1a:0c:99:8c:c1:cb:d5:cf:
6a:c5:7f:2f:f3:d8:83:11:95:9c:78:19:05:42:87:35:54:78:
c7:6a:eb:fa:e5:77:dc:47:ce:72:94:7e:e7:11:72:27:a6:9f:
f9:9e:78:bd:a1:83:2d:35:83:5f:77:99:3b:63:9c:c7:3a:d6:
12:53:50:fb:7d:4f:9a:9e:63:7f:5b:3d:30:ed:c9:48:74:97:
25:72:92:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org