Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/nCbjIiO3vC0ZkpDIVQfxYc-zHtY.roa
File: nCbjIiO3vC0ZkpDIVQfxYc-zHtY.roa (raw, json)
Hash identifier: Ub+zyoyXyNzq6ZUws2tOPfTqYVFBSHaC0QbpwCQRrvc=
Subject key identifier: 9C:26:E3:22:23:B7:BC:2D:19:92:90:C8:55:07:F1:61:CF:B3:1E:D6
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018BC83FAA27209BECF5000A728BA124C000
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/nCbjIiO3vC0ZkpDIVQfxYc-zHtY.roa
Signing time: Mon 13 Nov 2023 10:34:57 +0000
ROA not before: Mon 13 Nov 2023 10:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50214
IP address blocks: 194.190.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c8:3f:aa:27:20:9b:ec:f5:00:0a:72:8b:a1:24:c0:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 13 10:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c26e32223b7bc2d199290c85507f161cfb31ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ce:b1:76:54:4d:56:26:1a:0a:00:11:e5:99:
b4:d0:2c:35:a8:9b:62:fb:bd:77:b7:d3:d3:7f:a4:
29:c7:d1:1a:3e:40:30:60:19:ae:42:20:00:72:13:
78:84:b9:61:b3:ad:3f:f5:a8:61:b1:d4:ff:fd:70:
8a:8f:3b:92:7d:80:92:41:45:46:7b:9d:e5:e6:b8:
05:63:c3:b0:6b:94:ea:94:1e:d7:90:d4:d0:a2:59:
ef:ad:ea:4d:60:ff:bd:f4:a0:7b:e6:62:d0:66:b0:
85:9c:0a:c4:76:79:12:8b:24:28:db:e1:cd:4a:4a:
10:4f:a6:db:a4:6d:82:77:92:30:98:0e:df:52:ed:
73:6e:26:96:1e:24:f8:da:22:50:85:0b:fe:02:0a:
c6:a2:4f:33:ca:a5:4a:37:d3:cf:f1:9c:eb:b2:bc:
5d:4f:34:2c:55:a3:81:c1:91:b3:84:b7:5b:f2:77:
37:ac:4c:a0:a9:8d:e7:70:e6:b8:c4:26:9f:34:61:
11:e5:9a:43:8d:56:fb:7a:b3:47:e2:06:d2:e9:fa:
b4:e4:c0:ea:75:db:bc:e6:b1:fa:10:55:c6:9a:8f:
62:5b:fb:ce:d8:0b:09:2b:4e:4c:92:71:ce:f1:c6:
26:08:3b:ba:c0:87:d1:98:5a:98:27:08:25:34:65:
b2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:26:E3:22:23:B7:BC:2D:19:92:90:C8:55:07:F1:61:CF:B3:1E:D6
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/nCbjIiO3vC0ZkpDIVQfxYc-zHtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.68.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:bc:e8:db:74:94:ca:e2:fe:28:ad:91:eb:4a:40:07:08:ae:
f2:92:62:f8:e2:1d:07:41:ba:3f:f2:12:71:85:df:bb:4b:35:
af:76:d5:27:ff:3f:c3:a2:9d:be:1c:d5:cb:10:b0:1b:6d:c9:
87:4f:59:f8:11:cd:13:07:39:28:2d:87:b3:e2:89:18:74:b6:
fc:bd:a0:d9:11:4e:de:36:b1:93:aa:ef:a4:52:a3:d5:54:37:
b4:e4:52:4b:46:2b:b6:36:f2:c9:f9:eb:47:4d:00:45:ea:9b:
89:5a:d9:fb:72:24:bc:f6:46:16:cf:31:7d:0d:d0:ba:0a:76:
d9:e3:1e:ac:1a:47:db:f3:19:c9:b7:a5:e8:d7:4b:f2:33:cb:
2b:69:58:9a:84:ac:a5:3d:1c:c4:d3:36:6a:32:ec:2d:da:fa:
95:8e:23:08:ec:12:65:a6:69:41:84:2a:52:57:ce:4d:69:13:
cd:f0:fd:d6:c0:26:c6:8e:58:f9:ef:7b:a8:c4:47:2d:11:b4:
16:d8:7d:64:ff:a2:4e:58:75:17:95:d2:8e:10:c8:83:29:58:
dc:e6:7b:f2:3c:63:69:73:be:2d:7d:02:3e:7a:16:5d:fa:7b:
64:81:41:a0:a4:25:81:78:af:73:f0:b1:f5:16:2a:49:f5:13:
64:92:5f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org