Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Nh2x61FvL3UQ3xYxY8QlBFoH04U.roa
File: Nh2x61FvL3UQ3xYxY8QlBFoH04U.roa (raw, json)
Hash identifier: 4vOxV29KEmVXe/yl2A1wLwT0xDpH4PZBGeODKGqrox8=
Subject key identifier: 36:1D:B1:EB:51:6F:2F:75:10:DF:16:31:63:C4:25:04:5A:07:D3:85
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018CC801FF593408724D94A36AD7B2962C88
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Nh2x61FvL3UQ3xYxY8QlBFoH04U.roa
Signing time: Tue 02 Jan 2024 02:30:23 +0000
ROA not before: Tue 02 Jan 2024 02:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12846
IP address blocks: 90.188.0.0/20 maxlen: 20
90.188.16.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 29 Mar 2024 12:34:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:ff:59:34:08:72:4d:94:a3:6a:d7:b2:96:2c:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 02:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=361db1eb516f2f7510df163163c425045a07d385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b4:ea:d1:43:36:e0:fc:61:84:54:f1:a6:ed:
a0:fa:0c:9d:1a:4b:0b:a7:aa:4f:b3:41:1c:bf:7a:
10:a6:27:62:bf:71:96:f4:f7:96:61:96:8d:62:33:
f1:40:8c:06:48:14:7e:8b:cc:64:39:73:b1:64:83:
0a:41:b0:4f:3b:a2:13:a2:b7:09:e1:b9:d8:2a:3d:
b9:73:f3:b4:dd:21:05:8b:67:ce:95:0a:f3:a7:f7:
30:53:fe:1e:90:9c:46:af:59:6a:7e:74:57:03:6a:
3e:5a:fa:00:ff:37:36:ff:5b:9c:d4:a1:68:db:96:
ce:80:b6:07:d6:d1:63:08:c9:19:94:e5:d3:ff:2d:
cf:70:b7:b0:8e:22:3f:ce:68:ed:41:be:b2:6d:b6:
c6:a2:69:cd:66:03:09:59:31:7e:e1:cd:6e:c4:e0:
d6:9c:36:cc:69:fa:b0:2b:56:ff:aa:7f:09:6f:ae:
fb:b1:49:8a:a1:70:88:68:af:4f:46:3a:72:9c:c1:
4a:7a:36:b3:f7:fc:23:37:85:e4:0e:00:45:56:2f:
84:7d:25:08:6b:cc:b8:ad:a0:e0:d2:64:26:18:c8:
2e:c1:df:53:3b:64:30:aa:b1:07:7f:fd:3b:f0:49:
e7:37:fd:1f:06:20:ed:18:cd:75:96:6e:fe:db:73:
0b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1D:B1:EB:51:6F:2F:75:10:DF:16:31:63:C4:25:04:5A:07:D3:85
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Nh2x61FvL3UQ3xYxY8QlBFoH04U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.188.0.0/19
Signature Algorithm: sha256WithRSAEncryption
09:76:30:c1:51:12:42:08:32:48:0e:4f:c0:eb:de:b2:cd:5c:
ac:38:ae:44:14:d6:ac:d2:79:e6:59:aa:e2:8c:59:08:12:66:
c4:7f:5f:b4:03:f0:e7:7e:74:9b:b9:da:b3:dd:e9:ef:d2:ee:
9e:ea:44:33:09:6e:2a:57:cd:0d:79:a0:ec:95:88:46:76:cd:
78:b6:6e:c6:5c:24:a9:dc:39:e8:48:72:35:7e:df:c5:23:28:
46:90:95:08:a3:5a:42:5f:77:a5:d7:2b:9c:88:a4:34:50:69:
54:93:da:87:e4:1b:f4:a5:9c:65:d2:27:29:e4:00:43:3a:6e:
31:a6:dd:ad:42:2f:5f:f4:c9:d9:e4:2c:c8:64:e9:4a:0a:ee:
0e:77:77:33:c4:f1:20:5e:24:8c:c7:26:cf:56:0f:ef:2e:72:
b7:a3:48:9a:c7:93:df:cf:45:eb:68:32:e2:8c:85:83:09:df:
52:66:9d:99:bf:91:97:62:ad:06:69:27:75:5d:96:fb:0b:e5:
ef:b6:92:bd:f5:da:a9:e9:68:fa:a3:85:ab:b6:a4:28:41:01:
9b:1f:99:66:d9:e7:fe:6f:8f:cd:bc:f5:7e:dc:96:b1:aa:aa:
7c:93:6e:0d:7c:59:4d:04:49:cc:ee:f7:16:11:5b:bb:20:c9:
ad:b8:c5:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org