Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/cd231b-ff1e-4b93-a5b7-85d634c5bd50/1/Nb1aqtDfzLn0Kb-6dXHaJYq9MPY.roa
File: Nb1aqtDfzLn0Kb-6dXHaJYq9MPY.roa (raw, json)
Hash identifier: Ia/xEEfvjNv6iKlVM0eTFOYIz942M6hVuY1RrLqL0m8=
Subject key identifier: 35:BD:5A:AA:D0:DF:CC:B9:F4:29:BF:BA:75:71:DA:25:8A:BD:30:F6
Certificate issuer: /CN=d1c15f0aec0e336662de9f6371521ce25e8de10f
Certificate serial: 01856F6FF2DF92049432AABF582FC9D30009
Authority key identifier: D1:C1:5F:0A:EC:0E:33:66:62:DE:9F:63:71:52:1C:E2:5E:8D:E1:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cFfCuwOM2Zi3p9jcVIc4l6N4Q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/cd231b-ff1e-4b93-a5b7-85d634c5bd50/1/Nb1aqtDfzLn0Kb-6dXHaJYq9MPY.roa
Signing time: Sun 01 Jan 2023 22:24:45 +0000
ROA not before: Sun 01 Jan 2023 22:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199381
IP address blocks: 91.223.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:f2:df:92:04:94:32:aa:bf:58:2f:c9:d3:00:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c15f0aec0e336662de9f6371521ce25e8de10f
Validity
Not Before: Jan 1 22:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35bd5aaad0dfccb9f429bfba7571da258abd30f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b2:6c:b4:6c:73:c0:38:a5:a2:7e:59:71:18:
cb:de:e2:20:e1:03:e1:96:48:53:4a:a9:b9:a2:bd:
f6:e9:82:81:c2:41:7f:fb:a6:2f:73:6a:be:6a:5c:
cf:08:c4:09:79:59:e9:7b:a0:d8:e1:7d:52:d8:bb:
6e:db:68:bb:12:0a:53:8e:3f:b5:67:ed:b6:79:47:
d5:19:b9:61:87:dd:aa:10:82:ba:72:0f:2b:d6:b5:
d1:fe:0e:87:e4:d5:33:95:ec:4b:17:38:5a:4d:94:
e1:0d:74:1c:03:d5:62:d4:5e:50:ee:cd:22:8b:50:
79:d4:ca:f9:d6:ff:e7:0d:4a:44:92:ff:09:ad:1b:
07:cc:bd:0d:07:d0:fa:62:43:23:34:1c:a7:86:5c:
37:7f:de:ea:2f:c9:61:8f:26:61:20:1a:29:91:a0:
ac:7d:26:04:4b:dc:66:3f:d1:66:df:70:fd:04:b3:
9c:26:cf:6b:76:80:e1:fa:47:3c:26:6e:f6:94:7a:
e6:0b:82:df:77:9f:5b:0c:4a:75:76:7a:fc:f0:58:
79:e3:63:d4:4e:f0:b0:31:a7:d7:9f:4d:ff:1d:e0:
df:83:b1:b9:bf:7d:14:06:1a:dd:61:94:4d:aa:45:
7d:5e:e9:8e:ad:38:36:9f:ef:fa:a4:10:11:67:f8:
b4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BD:5A:AA:D0:DF:CC:B9:F4:29:BF:BA:75:71:DA:25:8A:BD:30:F6
X509v3 Authority Key Identifier:
keyid:D1:C1:5F:0A:EC:0E:33:66:62:DE:9F:63:71:52:1C:E2:5E:8D:E1:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cFfCuwOM2Zi3p9jcVIc4l6N4Q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/cd231b-ff1e-4b93-a5b7-85d634c5bd50/1/Nb1aqtDfzLn0Kb-6dXHaJYq9MPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/cd231b-ff1e-4b93-a5b7-85d634c5bd50/1/0cFfCuwOM2Zi3p9jcVIc4l6N4Q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.57.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e4:a9:0d:f8:93:fe:ab:0a:fc:fa:c7:7f:03:02:7a:94:46:
38:06:eb:cd:34:28:04:7d:51:c4:4e:a0:e8:a2:1d:5d:13:a6:
e6:db:b5:20:33:b1:91:b5:e5:00:08:0a:4c:ac:48:b3:b8:ff:
b1:8f:8b:33:92:d4:ae:2d:20:9e:61:2d:cf:ed:39:43:7e:d0:
54:bf:58:e8:42:08:e5:7b:8a:87:a3:02:39:10:42:8d:26:1e:
6f:75:e2:49:4a:a4:99:90:11:15:1e:c9:df:9b:27:f4:09:61:
16:8d:9a:08:bf:bb:39:11:9a:03:c6:94:30:b0:c2:4a:11:ea:
23:43:4d:31:0a:df:9a:17:1c:ec:d1:53:38:21:7e:23:6a:60:
47:75:9c:11:6a:39:0a:2a:ba:7f:f7:d4:a8:5e:c1:6e:4a:cc:
14:db:83:b1:2d:f3:b5:e3:c3:ef:8a:e9:86:41:97:60:2f:b3:
7f:15:46:df:50:69:10:45:50:cc:f9:f7:8e:58:e6:1b:b9:89:
c6:35:3c:eb:7b:89:b8:bd:26:7c:ed:67:c4:70:7f:56:87:5d:
26:b9:60:88:93:75:c8:21:8b:a7:3e:f2:9b:6f:be:aa:c3:52:
8f:96:20:dd:d9:d7:40:1d:82:12:f0:46:7a:16:d9:d9:06:62:
0a:7c:1f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:48 2024 by rpki-client on console-ams.rpki-client.org