Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/NxDaKKOlOSfPGqcIVNK3BRNKgzg.roa
File: NxDaKKOlOSfPGqcIVNK3BRNKgzg.roa (raw, json)
Hash identifier: apsbb1lKI4UqddgHadFGDHThPPn2/qMZ9kyQCubSm1U=
Subject key identifier: 37:10:DA:28:A3:A5:39:27:CF:1A:A7:08:54:D2:B7:05:13:4A:83:38
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 0185D928A8790B251087C32A4C7C4684C3B7
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/NxDaKKOlOSfPGqcIVNK3BRNKgzg.roa
Signing time: Sun 22 Jan 2023 11:06:38 +0000
ROA not before: Sun 22 Jan 2023 11:06:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 185.84.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 23 Jan 2023 20:24:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d9:28:a8:79:0b:25:10:87:c3:2a:4c:7c:46:84:c3:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jan 22 11:06:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3710da28a3a53927cf1aa70854d2b705134a8338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f7:d7:a8:d1:e3:6e:a7:13:ea:da:d7:a7:9d:
2f:a3:ae:59:eb:0d:f8:27:af:9d:f5:d8:0b:98:80:
48:da:ee:d2:e0:40:b1:8d:0b:e0:7e:f6:67:19:7a:
f5:31:c4:20:84:46:d1:fa:7d:fc:c6:36:5a:87:b4:
b4:d9:08:0b:2e:54:b5:c9:0b:14:7f:a2:4a:8f:a2:
ca:cb:b0:da:f4:b8:38:21:5b:93:02:b2:b4:d4:a7:
7a:ef:45:c1:71:eb:a6:d6:53:3e:85:88:83:82:01:
21:5a:15:64:df:b3:82:a7:d5:9d:4d:14:bf:e2:b9:
f1:d2:9f:3d:04:0d:64:9b:94:67:37:d9:fa:19:79:
fb:c0:d2:f8:d4:bd:73:90:34:a9:79:2d:ec:8f:3d:
98:90:b6:13:94:2e:0b:f7:2b:c0:c4:73:c2:d9:9d:
ac:5e:3e:24:29:a0:27:b7:1e:1c:ee:9b:90:8b:a9:
e8:9c:bc:b7:98:57:b6:41:ee:0e:6b:8b:fa:b0:84:
5b:19:44:68:1d:e1:43:d9:c6:20:2d:39:a1:f4:ce:
be:76:eb:ac:66:7d:28:a5:26:19:e9:d3:a9:c9:bb:
5c:86:1c:d4:f2:fa:f8:68:11:94:4d:de:46:47:d4:
08:e4:97:e1:1d:6d:43:d7:0c:12:4f:64:93:a1:e5:
0a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:10:DA:28:A3:A5:39:27:CF:1A:A7:08:54:D2:B7:05:13:4A:83:38
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/NxDaKKOlOSfPGqcIVNK3BRNKgzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.162.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:fb:5c:13:7b:5c:01:04:21:28:06:25:a2:b3:ef:a4:85:18:
c0:58:a7:f3:90:90:43:23:56:d6:35:79:90:e0:7d:a9:24:20:
21:64:4c:c4:f1:c2:e2:81:f0:bf:23:b6:c6:d1:14:39:84:b1:
68:00:45:fc:52:35:1f:c3:12:a5:f2:46:4a:09:09:5b:61:d9:
46:61:dc:38:fd:0c:e5:a5:a7:66:57:23:2c:24:ed:bf:4a:19:
61:01:bf:04:b1:e5:62:13:a2:47:f1:73:f8:ac:5b:1e:00:48:
4d:be:d3:83:66:2f:74:d9:de:86:7f:8c:15:ff:02:0d:5a:6d:
78:1c:fe:ee:8e:8e:43:58:bb:47:c9:06:d0:a4:2c:7e:7f:06:
8d:3b:2b:32:ae:0e:c3:d2:71:fb:25:dc:cb:5d:2b:72:84:75:
68:14:5c:f7:2e:2c:31:fb:62:0f:44:52:f1:ea:64:d4:73:fa:
b2:75:e0:6b:ab:f0:6f:f1:96:81:a5:27:8a:42:e8:bb:9f:69:
90:05:da:c3:6a:73:83:fb:d3:a1:68:5d:7b:59:e1:70:c8:5f:
a2:5d:9b:79:94:a2:2f:c0:3b:18:e6:9a:aa:b0:43:5f:fd:91:
2e:82:10:d0:32:26:d6:3f:a2:4c:61:d4:65:a2:7f:fb:e1:fe:
e8:4c:74:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:53 2024 by rpki-client on console-fra.rpki-client.org