Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/NSE4eQeZ9PlHNsIysq2CMnuy9fI.roa
File: NSE4eQeZ9PlHNsIysq2CMnuy9fI.roa (raw, json)
Hash identifier: LXUIMnw7XAwDFHI12RRqLYSSxgiIu1FEyivIT7lxdvU=
Subject key identifier: 35:21:38:79:07:99:F4:F9:47:36:C2:32:B2:AD:82:32:7B:B2:F5:F2
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0186CAAC951009E7570335EFEF0BE83CF778
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/NSE4eQeZ9PlHNsIysq2CMnuy9fI.roa
Signing time: Fri 10 Mar 2023 08:39:13 +0000
ROA not before: Fri 10 Mar 2023 08:39:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210993
IP address blocks: 193.232.65.0/24 maxlen: 24
194.226.42.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Mar 2023 16:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ca:ac:95:10:09:e7:57:03:35:ef:ef:0b:e8:3c:f7:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Mar 10 08:39:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=352138790799f4f94736c232b2ad82327bb2f5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:96:b6:bd:2c:c4:be:69:e4:45:c7:f9:60:f4:
de:15:6f:74:4a:61:36:1d:02:d0:99:ac:95:8b:1a:
36:10:5f:1a:6b:6f:96:9e:33:35:9b:c1:22:16:df:
d0:55:28:52:d7:63:3e:c2:8f:46:00:c4:e9:cd:39:
e9:4a:93:1f:3e:36:49:af:82:36:4a:81:d5:4b:99:
fa:20:12:59:72:98:a9:a7:e9:32:21:53:30:cb:9c:
58:32:2a:f2:54:74:8a:1d:e8:9b:b2:34:18:a3:80:
5a:e5:4d:25:ca:96:b8:7e:f3:36:a8:6b:f8:5e:a9:
75:50:e2:d1:7c:66:e0:a8:ce:29:4c:ff:38:e7:ea:
7a:b2:a1:4b:de:ee:87:25:53:5a:89:3d:ea:ed:c0:
b9:67:37:7d:7d:a4:33:7a:73:a4:be:46:e6:64:80:
3b:c4:59:46:75:7c:91:fa:09:8b:51:9a:63:21:c9:
74:03:63:26:ed:b5:12:2c:74:9f:78:92:b5:9e:ab:
b9:56:2a:8f:94:66:26:20:45:c5:e8:47:b8:64:cf:
69:7c:63:77:da:33:7d:e8:15:25:2d:3a:4b:98:eb:
79:a7:d2:60:ef:c8:f8:8a:77:18:b6:58:9e:45:15:
4f:af:ae:4f:b4:26:df:0c:32:e9:8a:ed:d3:ac:1a:
2c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:21:38:79:07:99:F4:F9:47:36:C2:32:B2:AD:82:32:7B:B2:F5:F2
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/NSE4eQeZ9PlHNsIysq2CMnuy9fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.65.0/24
194.226.42.0/24
Signature Algorithm: sha256WithRSAEncryption
11:93:12:1e:42:d6:6f:df:5d:68:b3:1f:91:a1:1e:6f:2e:6a:
2c:8a:f8:54:66:d8:5b:17:b1:0b:d4:fb:4c:17:93:51:79:3d:
82:dd:c0:8a:1e:44:0b:e7:90:f0:77:92:b5:c5:57:74:74:0e:
69:ec:c6:0b:01:db:75:55:d3:25:56:6d:22:c7:12:c1:d3:8c:
a1:c2:3c:51:6d:5f:f5:9a:cc:64:e6:1e:db:5e:77:79:d3:50:
05:90:ff:2b:07:e2:4d:e5:5f:34:5b:d4:a6:a0:6f:8b:be:b8:
57:6e:de:3b:26:9f:7c:8b:32:ea:34:d3:65:b5:d4:63:3e:ca:
96:b6:03:f1:06:ef:52:54:ac:89:54:35:40:ee:60:24:16:37:
d8:95:ab:51:3f:89:2c:47:b0:e5:0c:bd:02:4d:8f:89:9d:cf:
73:44:0a:49:f8:26:3f:e8:4a:ab:e2:01:75:60:0d:43:72:72:
78:51:c1:52:95:9d:38:5f:0b:94:7b:1f:c7:a7:2d:b3:03:cd:
55:96:38:9b:ad:97:de:1a:5e:1b:ee:ba:6f:ad:25:15:4a:01:
c8:a7:1e:c6:48:92:00:fd:76:9d:87:a0:28:3e:8c:b0:f1:6b:
98:a2:cf:e7:eb:30:e8:7d:75:e7:a7:6b:32:8b:8b:88:b2:63:
62:c0:cc:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org