Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Nwg8BM3nGGYH3DH_ETRypWAz4MY.roa
File: Nwg8BM3nGGYH3DH_ETRypWAz4MY.roa (raw, json)
Hash identifier: PM22PYd0DTJF2mEBQU16g6qMq8ZkNm7a8qupBLOkWSI=
Subject key identifier: 37:08:3C:04:CD:E7:18:66:07:DC:31:FF:11:34:72:A5:60:33:E0:C6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018769624BDCC1860CCE05CAE20D835E43A5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Nwg8BM3nGGYH3DH_ETRypWAz4MY.roa
Signing time: Mon 10 Apr 2023 04:17:42 +0000
ROA not before: Mon 10 Apr 2023 04:17:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208226
IP address blocks: 194.87.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:69:62:4b:dc:c1:86:0c:ce:05:ca:e2:0d:83:5e:43:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 10 04:17:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37083c04cde7186607dc31ff113472a56033e0c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:74:19:ea:c5:0d:6c:99:16:1b:3f:08:96:c6:
49:c0:a3:56:a3:7d:04:e8:f6:94:31:28:cc:9d:e3:
77:d0:22:06:a4:e5:57:a8:c7:9c:9b:3d:af:bc:71:
e6:00:d4:3e:68:58:7e:53:98:05:5b:a0:b5:c5:9e:
87:99:fe:ac:00:45:58:d3:cc:63:90:27:26:69:ec:
d1:2f:e8:fe:c6:6c:1b:e4:55:87:50:27:ed:03:61:
86:02:62:bf:6f:97:ed:62:2a:c3:68:b1:cc:cc:93:
45:51:e3:f3:e4:ba:70:09:42:60:f8:ac:19:0b:07:
b3:6c:83:75:e1:40:44:b8:b8:99:c3:fb:c7:ca:35:
5a:63:d4:12:0e:5c:37:c3:e4:ca:00:e9:8a:16:ff:
18:91:3f:20:d6:4f:dc:92:d8:70:92:f7:7d:a0:b1:
8d:61:12:10:05:6e:0b:77:7c:3c:34:09:ba:43:e2:
ed:e5:41:d7:14:06:3d:de:13:91:ba:cd:9e:6c:55:
60:c5:74:53:d9:95:52:43:5a:2a:2d:10:4c:4a:70:
09:3a:d7:cb:22:24:9f:14:07:54:04:da:e0:24:77:
0e:cb:d4:0a:22:ee:22:68:b3:c4:c5:58:fe:e7:6e:
ff:7b:d2:b2:e7:01:29:f3:fc:5a:09:0f:12:ca:85:
83:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:08:3C:04:CD:E7:18:66:07:DC:31:FF:11:34:72:A5:60:33:E0:C6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Nwg8BM3nGGYH3DH_ETRypWAz4MY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.217.0/24
Signature Algorithm: sha256WithRSAEncryption
90:72:bf:b0:2b:ad:cd:36:49:3c:d8:9b:4c:2a:20:5e:9e:38:
41:6f:aa:1b:75:f4:8d:aa:3d:c7:fe:b4:61:5d:19:40:f1:ba:
d8:95:0f:60:d8:14:e9:a0:a0:78:9c:94:2d:fe:71:18:66:e4:
33:cf:e2:0c:e6:8e:98:4c:d1:89:a3:2e:a3:5c:ea:33:25:87:
54:26:e5:3e:39:43:3a:72:77:be:c8:30:30:c5:05:1c:1d:a4:
66:ed:92:20:96:a7:74:1b:1e:9b:44:b4:cd:c9:c7:cd:7e:27:
29:b2:83:51:97:13:8c:f8:f2:89:5f:6a:63:42:42:9d:a2:a6:
ca:b0:e1:b5:08:58:3c:4e:3f:dc:f4:c2:8c:4b:d4:53:18:0f:
e9:48:a2:b4:c0:8e:ca:22:6b:74:27:91:c4:3e:43:b2:73:e6:
bb:54:ec:aa:8b:09:5d:32:4d:95:ec:af:b9:82:73:1f:7d:67:
d0:d2:2f:f7:3b:57:ab:34:f6:f4:30:bf:28:fb:c3:ab:b1:96:
c3:fc:eb:cc:45:d5:a5:fe:0b:96:cf:b0:17:cc:e1:9c:f9:df:
0b:6d:01:c0:2d:92:a7:45:97:ec:b1:a5:9b:50:1d:ad:fe:01:
d3:10:3d:a1:a8:79:e9:b8:a3:99:0a:f5:0f:83:49:c0:31:1d:
89:49:d1:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:14 2024 by rpki-client on console-fra.rpki-client.org