Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/NQuMne1wI6c_9neSw4jJSt7inJ8.roa
File: NQuMne1wI6c_9neSw4jJSt7inJ8.roa (raw, json)
Hash identifier: 59zeMr/822wM2q2NL1QdTyHEMsUioFFrE9cP6Ectuuw=
Subject key identifier: 35:0B:8C:9D:ED:70:23:A7:3F:F6:77:92:C3:88:C9:4A:DE:E2:9C:9F
Certificate issuer: /CN=64a0db102703082c7ca554abb5b22760018d563f
Certificate serial: 01856E38B7FAD3BEC0A0449ED457FF698818
Authority key identifier: 64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/NQuMne1wI6c_9neSw4jJSt7inJ8.roa
Signing time: Sun 01 Jan 2023 16:44:48 +0000
ROA not before: Sun 01 Jan 2023 16:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207937
IP address blocks: 45.66.16.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:b7:fa:d3:be:c0:a0:44:9e:d4:57:ff:69:88:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a0db102703082c7ca554abb5b22760018d563f
Validity
Not Before: Jan 1 16:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=350b8c9ded7023a73ff67792c388c94adee29c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fa:65:15:8c:96:f9:c6:bc:12:c5:9a:c2:92:
4d:ae:7d:6a:9d:3e:36:d3:a5:9f:0e:7d:40:2a:a1:
35:f2:56:24:d0:46:2e:75:36:44:3e:33:cd:6c:e6:
17:c6:8d:ba:87:c9:ec:3a:5d:6e:a2:33:ec:7e:02:
cc:ac:9f:a2:f2:10:d5:af:45:ef:f7:a8:fb:33:26:
69:9b:6a:d6:33:47:7b:44:8d:5b:fa:99:b3:fb:4d:
91:0d:cf:c8:3c:cb:1b:98:3a:79:16:7f:68:35:bb:
13:f8:cc:08:fd:02:7c:43:d3:d9:9a:f2:15:2e:8a:
af:75:c9:aa:48:8e:b4:9e:1a:37:dd:e7:a6:d2:ef:
df:70:01:50:3a:33:e0:93:6f:51:e3:f1:47:19:11:
96:77:1a:29:d0:b5:4c:5d:59:9e:a5:d5:e3:fd:7a:
c0:1e:3e:80:1e:25:98:d9:a3:d1:4d:fb:63:e5:51:
8c:89:9f:71:c8:f7:ac:6b:58:39:81:07:5f:cf:8a:
50:99:63:ea:4e:ba:50:23:0f:cf:af:08:34:75:fb:
b0:b1:56:59:47:ff:04:9b:f1:71:5f:a4:ce:4b:24:
92:12:84:06:62:54:e8:36:ee:2e:b0:9d:40:cf:63:
49:60:fe:4f:bf:dd:9c:f2:f2:de:00:10:f9:f6:a3:
ec:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0B:8C:9D:ED:70:23:A7:3F:F6:77:92:C3:88:C9:4A:DE:E2:9C:9F
X509v3 Authority Key Identifier:
keyid:64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/NQuMne1wI6c_9neSw4jJSt7inJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:c7:e6:b4:76:ce:f4:17:40:b8:91:7d:b2:70:ad:f9:93:8a:
d7:d3:60:e7:e6:9b:64:15:3f:88:00:70:0e:1a:a2:0c:b0:71:
17:16:ad:cc:d9:e9:e3:24:23:c6:4c:bf:53:be:3e:f1:2d:40:
5e:96:63:81:86:cd:1d:a0:2e:38:5e:65:be:f2:12:6f:d4:94:
75:ef:88:b4:90:e7:48:42:93:cd:df:8d:92:e0:99:61:aa:df:
4e:0c:f0:64:95:76:65:b4:f1:26:f1:79:05:67:b0:8d:a0:85:
75:1e:cd:dc:14:d3:35:8e:b7:c1:48:a3:43:b1:e7:3d:87:a6:
8a:97:ca:30:74:c5:cb:81:3c:1d:e5:8e:95:e4:f0:30:44:77:
94:23:db:6e:77:0e:24:24:c4:33:b2:bb:d9:bd:15:21:bc:a0:
2f:ba:0c:db:89:4f:d4:0d:2f:dc:63:3d:5b:bc:c5:9b:36:2d:
7d:49:a4:44:f0:8e:2a:2a:d6:84:89:d6:a2:c5:9a:23:f5:d4:
90:1f:1b:1a:12:c2:3c:c9:5e:87:19:2b:e4:d7:96:b3:31:e2:
b1:13:a1:a3:8b:c6:ea:76:c1:68:54:05:65:7e:5d:10:63:2c:
e3:13:cb:b2:8e:ee:f1:51:d0:6f:04:07:c1:bd:2a:dd:cf:3f:
5a:1e:7f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:16 2024 by rpki-client on console-fra.rpki-client.org