Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/noKtVB-sA6rkDYcyZpgMINX-lQo.roa
File: noKtVB-sA6rkDYcyZpgMINX-lQo.roa (raw, json)
Hash identifier: ET+D+7DArBm2l9xF4ak/Jnh/ZamQ3SBEHfgiasSzGF8=
Subject key identifier: 9E:82:AD:54:1F:AC:03:AA:E4:0D:87:32:66:98:0C:20:D5:FE:95:0A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01884699CDD2F24CB2EE5C1AE8CB5E8324B2
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/noKtVB-sA6rkDYcyZpgMINX-lQo.roa
Signing time: Tue 23 May 2023 03:14:24 +0000
ROA not before: Tue 23 May 2023 03:14:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210654
IP address blocks: 194.87.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 07:37:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:46:99:cd:d2:f2:4c:b2:ee:5c:1a:e8:cb:5e:83:24:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 23 03:14:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e82ad541fac03aae40d873266980c20d5fe950a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:87:c6:49:58:5c:72:9c:a9:d2:20:c5:e3:
a6:0a:c1:09:14:39:49:5c:8c:53:e3:82:0c:be:bc:
32:9b:65:56:e6:eb:e5:61:c3:92:8a:01:fb:48:11:
ae:49:6f:06:24:1d:cb:ba:70:db:d5:54:46:40:d1:
e7:a9:da:e7:4c:03:97:05:91:b4:98:4b:cf:e7:15:
d8:c7:80:87:41:5d:13:fe:06:92:08:83:17:e1:e7:
5d:49:82:3a:90:7d:93:d0:3b:a8:c7:01:c7:fc:25:
0f:80:d4:ca:6b:a8:94:9c:f5:9e:72:8c:2c:66:94:
a7:f9:f1:90:91:38:41:37:1a:49:09:f8:ab:ac:1e:
9c:4c:3c:c0:2f:35:5b:ef:62:19:09:81:22:89:90:
a1:fe:c3:19:f2:43:1f:81:02:6b:4a:9c:68:5b:6f:
05:78:14:2d:55:d9:50:53:9f:0b:27:89:51:31:c9:
59:69:51:1a:16:43:c8:3d:44:42:e9:c6:b3:dc:ba:
aa:70:ab:e3:05:9f:2f:db:ab:59:39:fd:29:9a:73:
75:11:62:59:89:c3:c5:9d:c7:55:5c:44:38:c2:82:
13:2b:03:14:3c:86:aa:47:70:7d:d6:fb:13:54:2d:
77:59:2c:43:a9:d0:01:36:72:2d:57:af:ca:31:c5:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:82:AD:54:1F:AC:03:AA:E4:0D:87:32:66:98:0C:20:D5:FE:95:0A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/noKtVB-sA6rkDYcyZpgMINX-lQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.132.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:b8:24:ca:b0:0d:5e:87:16:d3:2b:be:f6:e1:88:07:68:81:
b1:fc:c7:61:4a:94:91:1d:eb:c3:5f:c5:9b:43:e9:28:46:c5:
8a:de:6a:0b:cd:df:d6:5d:06:07:73:bd:43:50:b8:af:bc:ab:
ae:fc:38:47:af:1c:42:e9:7c:ba:d9:9d:4f:75:6c:7b:ea:6f:
a4:bc:e9:8c:71:6c:7f:85:5a:75:bc:31:98:9a:ae:a6:9f:9d:
ea:76:84:f6:56:80:19:98:d7:6b:ba:3d:03:a0:b0:e2:5a:be:
c5:18:5a:25:b4:6c:dd:1d:b4:3c:99:d5:2a:14:10:06:4a:a4:
ed:68:33:10:a2:49:ff:61:35:9f:bf:32:64:a0:9a:df:51:6a:
04:fe:db:5e:a9:e9:5e:4b:bc:b1:a0:7c:f4:76:1c:ca:8e:6f:
b2:63:6e:08:bd:ac:30:23:75:a8:15:da:c1:f7:0d:27:ee:ae:
59:51:ca:6a:e1:f2:92:d4:65:1e:14:f3:1d:b0:39:29:24:fe:
83:7a:2c:e0:67:1a:96:52:af:01:e1:32:62:97:4e:1b:4d:f6:
c2:58:4b:ae:bc:eb:27:b6:be:e4:e7:15:aa:ce:70:e2:55:77:
86:72:78:3e:d1:02:a5:e2:de:be:50:dd:f8:eb:fa:ea:bc:c2:
11:46:2e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:46 2024 by rpki-client on console-ams.rpki-client.org