Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/NtzPzRlNsEwXwi-W0nflcXJt934.roa
File: NtzPzRlNsEwXwi-W0nflcXJt934.roa (raw, json)
Hash identifier: NkBmr21B0t+adogeaqCAXaUeqmykgOO8a5HH1u/qDFo=
Subject key identifier: 36:DC:CF:CD:19:4D:B0:4C:17:C2:2F:96:D2:77:E5:71:72:6D:F7:7E
Certificate issuer: /CN=09633ef6550a82af315146a942cf3559557c1fe2
Certificate serial: 018570154640B2F8A99CE796CE2B4BB28823
Authority key identifier: 09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/NtzPzRlNsEwXwi-W0nflcXJt934.roa
Signing time: Mon 02 Jan 2023 01:25:20 +0000
ROA not before: Mon 02 Jan 2023 01:25:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20847
IP address blocks: 193.105.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:46:40:b2:f8:a9:9c:e7:96:ce:2b:4b:b2:88:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09633ef6550a82af315146a942cf3559557c1fe2
Validity
Not Before: Jan 2 01:25:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36dccfcd194db04c17c22f96d277e571726df77e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:19:57:ce:52:63:07:b5:85:81:80:fc:02:
00:14:b8:4d:c9:f6:52:21:9a:bc:a4:a0:39:fc:dc:
a2:2d:a3:d5:28:e1:e8:10:99:2e:89:26:27:b3:94:
50:a3:02:bc:c2:d7:86:4e:a1:dd:aa:32:e2:c7:9c:
84:72:e6:e4:85:fc:c4:1c:b3:27:32:42:ab:a5:b3:
2b:87:82:4f:31:1a:85:72:e4:25:f1:38:ba:3e:4f:
28:84:80:ec:7b:49:54:58:26:38:c6:0c:ce:19:28:
ad:97:5c:3b:a6:14:1b:66:a2:3d:a8:f7:ce:01:1e:
82:a8:38:1f:fa:98:57:b8:eb:41:4c:88:2d:98:0e:
3b:ba:b5:29:18:28:47:5c:46:89:4d:6c:cf:30:3f:
87:e7:3f:04:27:15:bd:f5:60:d8:39:4b:71:24:4d:
18:82:93:81:88:5b:16:7e:8d:bd:9a:67:12:81:5a:
fe:8b:64:b2:ae:8b:54:16:3b:f9:12:a3:72:2a:9f:
e1:73:98:75:d1:93:4d:88:e5:2a:e6:ff:3f:be:d1:
bf:b6:c4:b8:6b:ab:fb:10:95:64:7c:31:92:ae:8a:
ac:42:dc:a8:a0:d6:40:90:30:54:74:66:37:bf:fe:
39:d6:b8:fc:d4:ab:93:31:57:2c:7a:0b:62:c9:78:
c7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:DC:CF:CD:19:4D:B0:4C:17:C2:2F:96:D2:77:E5:71:72:6D:F7:7E
X509v3 Authority Key Identifier:
keyid:09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/NtzPzRlNsEwXwi-W0nflcXJt934.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/CWM-9lUKgq8xUUapQs81WVV8H-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:08:46:8d:81:0d:9e:f2:bd:88:94:bb:87:bd:de:ad:43:09:
13:83:63:be:b5:0f:b8:67:3c:82:88:0f:b4:0a:91:7b:95:b5:
69:ab:f5:0e:5a:44:07:f0:ba:e0:99:a8:1c:b5:23:77:61:23:
98:80:d3:03:d4:39:86:45:0b:c4:b9:d6:3a:bf:32:27:46:6d:
5c:c1:e6:a6:aa:3c:58:1d:d7:1f:b1:3e:f4:be:b9:4c:97:74:
5a:49:5c:4b:0e:57:71:4a:06:5f:df:e2:0c:a1:b3:e8:a2:40:
30:9f:d9:6c:49:f0:30:e4:d7:b8:bd:20:f9:5e:db:a1:1e:2c:
36:7a:4a:bc:9a:df:0e:75:20:de:53:95:48:9c:47:9e:d6:25:
5f:94:80:14:d8:7f:c2:6a:81:7f:38:f3:34:ca:83:ae:a5:89:
48:e2:d7:9b:98:c3:50:11:c2:11:68:74:7c:a8:a5:d1:23:25:
58:3d:74:9c:63:50:b3:48:4e:b3:87:67:2c:92:21:11:4e:2a:
62:65:01:e3:c7:d4:c4:bf:a1:3f:d0:43:d5:aa:fe:1b:7b:a2:
3e:ca:40:3c:51:cc:70:f6:e4:59:d7:04:21:56:4f:61:aa:9e:
99:d0:00:89:72:4c:df:52:95:69:9c:27:71:ae:22:0b:52:bb:
ec:73:ad:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:43 2024 by rpki-client on console-ams.rpki-client.org