Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/NzIE4WCBWNVesbeIeJ5pgcW_QJ4.roa
File: NzIE4WCBWNVesbeIeJ5pgcW_QJ4.roa (raw, json)
Hash identifier: YDViq4Q+9HuoBC8GAiG6TlK118bUuv6o/JjBquPofBM=
Subject key identifier: 37:32:04:E1:60:81:58:D5:5E:B1:B7:88:78:9E:69:81:C5:BF:40:9E
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 01857139AC002329B9FDB7503DE99BB6DC76
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/NzIE4WCBWNVesbeIeJ5pgcW_QJ4.roa
Signing time: Mon 02 Jan 2023 06:44:42 +0000
ROA not before: Mon 02 Jan 2023 06:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31234
IP address blocks: 195.225.228.0/22 maxlen: 22
185.115.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ac:00:23:29:b9:fd:b7:50:3d:e9:9b:b6:dc:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Jan 2 06:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=373204e1608158d55eb1b788789e6981c5bf409e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c8:c5:72:0c:c4:af:55:c1:70:ae:b2:d6:2c:
93:2d:75:e1:11:27:1c:68:c7:69:46:69:7b:f3:9a:
7d:9c:7f:b3:0f:06:ad:3c:2e:29:5e:42:3d:13:ff:
50:5f:95:9c:40:3e:2d:e4:e2:99:d6:2a:aa:7f:df:
be:c4:09:9d:98:d6:68:76:a2:2e:fa:dc:0d:83:21:
1f:2a:8f:5f:2d:88:c2:d8:cb:cb:6c:36:d2:ad:8c:
cd:47:03:68:00:64:ab:0b:ae:39:da:56:21:89:ac:
94:37:1a:56:6e:a4:0f:b2:01:4f:08:da:9b:3d:f4:
54:af:e7:ed:9c:3a:7e:3e:b3:9d:f2:91:7f:d0:84:
cc:e9:d0:ed:97:57:6c:e3:08:c8:33:2f:90:44:8b:
32:ab:19:ef:b7:8b:4c:21:38:70:51:89:78:27:7d:
1d:fc:3f:ab:3e:74:ac:68:f3:a7:67:b8:61:62:98:
fb:b2:a7:c4:21:c2:9c:90:8c:48:83:53:d6:c7:7c:
d6:d2:7d:7e:87:44:b7:1d:68:b8:ec:c3:0a:3a:30:
e4:35:ac:9d:8d:8e:c0:2c:64:cd:61:f0:f8:c4:ec:
8b:40:6c:08:fc:83:cb:be:dd:2e:46:e2:a7:0c:61:
38:c2:74:13:32:a8:42:09:0c:4b:32:93:53:32:d4:
5a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:32:04:E1:60:81:58:D5:5E:B1:B7:88:78:9E:69:81:C5:BF:40:9E
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/NzIE4WCBWNVesbeIeJ5pgcW_QJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.36.0/22
195.225.228.0/22
Signature Algorithm: sha256WithRSAEncryption
da:50:55:c0:2c:dc:f6:bf:1b:4a:77:99:40:29:0e:7b:9b:e9:
1a:11:15:2a:e3:f8:41:64:bd:6b:98:6f:5b:e7:97:89:2b:a4:
7c:2a:59:e6:fe:83:6e:2e:c4:d6:7e:8e:45:93:c3:3e:44:be:
97:ec:e9:58:3b:c8:3a:10:8d:0b:33:15:e2:0c:36:26:91:85:
85:e6:a3:29:07:9a:d8:01:14:87:09:73:6e:17:9d:44:af:14:
2d:7c:54:a2:1e:0f:4e:1f:56:b2:ef:41:43:21:0f:ce:b5:0f:
44:ed:3a:16:b7:df:91:e8:d9:c0:6a:ab:22:7c:30:48:1c:bc:
3d:b9:9f:af:fe:a7:dc:f6:87:c9:98:70:3e:f7:fb:e5:8b:91:
17:68:00:39:d4:19:bc:95:69:33:ec:39:02:0b:9f:81:70:a4:
67:d7:d1:ab:70:23:d9:84:d9:84:9c:25:af:75:9e:ab:e8:e6:
53:b1:d2:7d:f3:c1:92:8f:af:3d:f0:cc:22:2a:ea:2d:c1:26:
5f:70:29:6f:d1:cb:b4:b4:47:1c:13:db:bc:64:a7:a0:2f:4f:
d6:75:40:5e:ce:e8:98:77:21:6f:4d:ca:3a:38:66:fc:78:db:
0e:03:ad:28:ae:47:96:92:14:ea:f8:97:f5:87:de:b4:37:23:
73:22:61:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:31 2024 by rpki-client on console-fra.rpki-client.org