Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9199eb-e8eb-404d-8955-9bd5d5138059/1/npweyYz4gEvkp1JFgeumUu2qpBY.roa
File: npweyYz4gEvkp1JFgeumUu2qpBY.roa (raw, json)
Hash identifier: eX8ee9RZfemJYC/RTvLY1CQGgOnuLdrzxErOVX6gDmU=
Subject key identifier: 9E:9C:1E:C9:8C:F8:80:4B:E4:A7:52:45:81:EB:A6:52:ED:AA:A4:16
Certificate issuer: /CN=d0baab9bd8c69d07b6501147543df74270a33a21
Certificate serial: 01856D9D1440E47C2859019B2E109FAACE72
Authority key identifier: D0:BA:AB:9B:D8:C6:9D:07:B6:50:11:47:54:3D:F7:42:70:A3:3A:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Lqrm9jGnQe2UBFHVD33QnCjOiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9199eb-e8eb-404d-8955-9bd5d5138059/1/npweyYz4gEvkp1JFgeumUu2qpBY.roa
Signing time: Sun 01 Jan 2023 13:54:48 +0000
ROA not before: Sun 01 Jan 2023 13:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43211
IP address blocks: 185.188.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:14:40:e4:7c:28:59:01:9b:2e:10:9f:aa:ce:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0baab9bd8c69d07b6501147543df74270a33a21
Validity
Not Before: Jan 1 13:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e9c1ec98cf8804be4a7524581eba652edaaa416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:12:83:52:3b:83:c0:a4:bb:36:b5:58:f4:d5:
e3:25:51:85:b4:95:23:23:14:03:eb:61:12:05:21:
7c:db:ab:62:30:24:15:fb:de:c0:b2:b9:09:3e:c1:
73:01:f2:65:80:79:dc:b1:4c:2c:a5:87:d9:7d:98:
f9:e8:73:69:be:b8:03:7b:e0:a6:39:b4:5c:b5:e1:
6c:12:31:90:23:72:11:60:f1:08:92:9f:1a:b7:4c:
9d:74:68:87:d4:3f:e2:35:54:4e:c3:0d:14:3c:53:
b9:52:bf:03:55:d0:ed:67:d7:83:58:3b:60:14:b1:
51:db:83:65:4a:a7:25:00:08:f7:40:4a:b3:69:2d:
95:f4:02:ba:16:be:8b:fa:21:a4:08:cc:a5:b5:48:
dc:17:b8:96:34:81:23:bc:66:34:2d:f3:47:03:03:
20:c6:5f:90:84:f5:2f:44:d8:b3:97:3e:a0:a3:93:
68:84:11:68:98:31:8d:49:48:aa:5c:3b:78:7f:f5:
28:c8:62:22:d4:ee:be:a6:4c:d1:ac:ff:e0:af:2a:
18:14:7c:f4:3c:e9:6a:a7:92:ef:8c:0b:a3:19:8c:
10:e3:1d:a2:3e:53:ed:21:18:bc:b2:5e:96:be:6e:
61:1a:28:2e:e2:03:ba:dc:68:c0:14:56:65:bf:24:
70:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9C:1E:C9:8C:F8:80:4B:E4:A7:52:45:81:EB:A6:52:ED:AA:A4:16
X509v3 Authority Key Identifier:
keyid:D0:BA:AB:9B:D8:C6:9D:07:B6:50:11:47:54:3D:F7:42:70:A3:3A:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Lqrm9jGnQe2UBFHVD33QnCjOiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9199eb-e8eb-404d-8955-9bd5d5138059/1/npweyYz4gEvkp1JFgeumUu2qpBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9199eb-e8eb-404d-8955-9bd5d5138059/1/0Lqrm9jGnQe2UBFHVD33QnCjOiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.104.0/22
Signature Algorithm: sha256WithRSAEncryption
86:7b:ff:53:4f:e5:f9:f7:d8:1c:e0:45:0a:ae:98:48:af:c9:
85:5c:a2:54:23:29:69:df:74:d4:c3:46:6e:bb:d4:7a:c7:ee:
7d:c7:b2:47:4f:02:34:9e:88:f2:e6:a2:f8:31:68:0b:bb:bb:
8c:a2:20:50:38:31:d6:54:11:1d:0c:84:e5:1f:34:97:8f:78:
a9:fa:15:10:ab:6e:92:bd:70:8d:51:f2:35:92:2b:33:cd:16:
6c:0f:7f:d3:9b:96:46:60:4c:08:18:76:e8:31:ae:ab:5f:32:
ac:aa:22:f4:fc:b9:77:82:7b:46:ad:7c:6c:fa:b7:f6:fb:0a:
02:c6:06:a6:09:10:00:1d:f1:c4:15:ee:72:f2:81:0b:b0:2c:
ef:a3:14:5c:2d:e4:f4:3d:74:94:d4:e0:f3:97:85:1e:08:e8:
66:cf:bc:a5:fe:ef:b0:03:ee:71:01:b4:ff:36:ee:71:f3:e6:
73:6d:02:77:2f:7e:10:74:3d:39:6c:cb:eb:de:19:ac:b8:a0:
01:55:2a:f6:29:22:5c:5b:ea:c1:be:1a:cf:aa:26:81:e0:24:
7f:ab:ee:29:34:68:60:49:d6:82:3f:4b:d4:4d:88:e2:58:f2:
1c:40:f5:f0:7c:d7:50:2f:79:0e:c9:21:dd:27:f4:e2:3e:a6:
d5:f0:87:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:51 2024 by rpki-client on console-ams.rpki-client.org